About Us
Turnkey is helping to make the world a safer place to do business. As a global consulting provider of risk management, identity and access management and cyber security solutions to companies who run enterprise software, we help some of the largest companies in the world to manage their business risks and protect their most important assets from internal and external threats.We are a fast growing and dynamic company with a fun, relaxed but professional culture. We have an exciting opportunity to appoint a Senior SAP Security Consultant to join our team who will be key in supporting our rapid growth plans and ambitious over the next five years.In joining our team, you can expect to be working on challenging SAP projects across a wide range of global clients and industries. The nature of projects will be diverse and will vary across the categories of advisory, assurance, managed services, and system implementation. Whilst being actively engaged in solving business problems, our core practice remains specialised in technical solutions for our clients.
About You
The Senior SAP Security & GRC Consultant will have extensive experience in SAP Security, GRC Access Control (AC), Process Control (PC), Identity Access Governance (IAG), SAP Business Technology Platform (BTP) and Cloud solutions. This individual will be responsible for the design, implementation, and maintenance of security configurations and access controls across the SAP landscape to ensure compliance, security, and optimal performance.
Key Responsibilities:
-  Design and manage SAP security roles, profiles, and authorizations for SAP environments including ECC, S/4HANA, BW, SRM, CRM, Solman, HCM etc.
-  Designing, building and implementing SAP Security & Authorisation solutions.
-  Lead the implementation, configuration, and maintenance of SAP GRC Access Control, ensuring effective user access management and segregation of duties (SoD).
-  Configure and manage GRC workflows for user provisioning, access requests, and role design.
-  Perform risk assessments, remediation of access violations, and continuous improvement initiatives in SoD and security controls.
-  Design and implement SAP GRC Process Control to ensure that internal controls, policies, and processes are compliant with regulatory frameworks.
-  Support automated control monitoring and audit functions for SAP business processes and mitigate financial and operational risks.
-  Develop and maintain audit trails, documentation, and reporting for compliance purposes (e.g., SOX, GDPR).
-  Implement and maintain SAP Identity Access Governance (IAG) solutions to ensure efficient identity management and governance across SAP systems.
-  Lead the integration of SAP IAG with existing identity management systems to streamline user provisioning, deprovisioning, and access reviews.
-  Drive the automation of user lifecycle management and improve operational efficiency.
-  Design and implement audit strategies for monitoring and reporting on security events and access controls.
-  Create and maintain reports and dashboards for internal and external audit purposes.
-  Ensure compliance with industry regulations, including GDPR, SOX, and other applicable security standards.
-  Stay updated on the latest trends in SAP security, GRC, IAG, and cloud technologies, recommending improvements to systems and processes.
-  Proactively identify security vulnerabilities and mitigate risks to protect the organization’s SAP infrastructure.
 
Qualifications:
-  Bachelor's degree in computer science, Information Technology, or a related field (or equivalent work experience).
-  Over 8 years of hands-on experience in SAP Security, GRC (Access Control and Process Control), IAG, and BTP.
-  Extensive experience in configuring and implementing SAP GRC Access Control (AC), Process Control (PC), and IAG solutions across complex SAP landscapes (ECC, S/4HANA, BW, SRM, CRM, Solman, HCM etc.).
-  In-depth understanding of SAP Security architecture, role-based access control, and identity governance.
-  Strong experience with SAP BTP security integration and cloud-based SAP environments.
-  Expertise in SAP GRC, including Access Control, Process Control, Risk Management, and IAG.
-  Experience with SAP Identity Access Governance (IAG) tools and integration with identity management systems.
-  Familiarity with SAP Business Technology Platform (BTP) security configurations and integration with on-premise systems.
-  Strong knowledge of security best practices, compliance frameworks (SOX, GDPR, etc.), and regulatory requirements.
 
Certifications (Preferred):
-  SAP Certified Technology Associate - SAP Security.
-  SAP Certified Application Associate - SAP GRC Access Control
-  SAP Certified Technology Associate - SAP BTP or Cloud Platform Security.
-  CISSP (Certified Information Systems Security Professional) or equivalent security certifications are a plus.
 
Skills and Competencies:
-  Strong analytical and problem-solving skills with the ability to manage complex security and compliance challenges.
-  Excellent communication and interpersonal skills with the ability to collaborate across various teams.
-  Strong leadership and mentoring abilities.
-  Detail-oriented, with a focus on accuracy and security compliance.
-  Ability to manage multiple projects and priorities in a fast-paced environment.
-  This is a contractor role for 6 months with option to renewal.