SAP Security/GRC Consultants

Company Description

Cosima Solutions is expanding its SAP Security & Compliance practice and is seeking experienced SAP Security / GRC Consultants to support our U.S.-based clients. If you have strong experience in Role Design, Access Administration, SoD Compliance, and SAP GRC Access Control, we’d love to connect with you.

Role Description

• Provide SAP Security and GRC Access Control support across multiple landscapes (DEV, QA, PROD).
• Manage user administration processes including user creation, role assignment, password resets, and periodic access reviews.
• Configure and maintain SAP Security roles (Single, Composite, Derived) in PFCG, including authorization objects, profiles, and menus.
• Support integration of Security models with MM, SD, FI/CO, PM, PP, QM, HR, and Fiori applications.
• Analyze access requirements, design secure authorization concepts, prepare functional specifications, and coordinate with technical teams for development.
• Work on SAP Fiori security — creation of catalogs, groups, spaces/pages, activation of OData/ICF services, and mapping roles to apps.
• Perform GRC Access Control activities including:
• ARA – Access Risk Analysis
• ARM – Access Request Management
• BRM – Business Role Management
• EAM – Emergency Access Management (Firefighter)
• Conduct SoD checks, risk remediation, mitigation control mapping, and compliance monitoring.
• Lead Unit, SIT, and UAT testing, validate access, prepare test scripts, and support go-live and hypercare operations.
• Troubleshoot authorization failures using SU53, ST01, SU56 and provide root cause resolution.
• Support data migration activities with secure temporary access and validation for technical roles.
• Collaborate with U.S. onshore teams and business users for compliance requests and governance rollouts.
• Document Security processes, GRC configurations, SOPs, authorization design, and training materials.

Qualifications

• 5–10 years of experience in SAP Security and/or GRC Access Control.
• Strong experience in PFCG Role Design, SoD risk frameworks, and audit compliance.
• Hands-on knowledge of SAP ECC / S/4HANA, Fiori, HR Security, and Cross-module authorization concepts.
• Experience supporting U.S. clients in an offshore delivery model is highly desirable.
• Excellent troubleshooting, communication, and stakeholder coordination skills.

Location: Work from Office — Hyderabad, Telangana, India

Timings: 4:00 PM to 12:30 AM IST (U.S. client support)

Work Mode: No remote. No hybrid. Fully Onsite.

Start: Immediate

info@cosimasolutions.com