What are the responsibilities and job description for the SAP Security & GRC Consultant position at Vantage Point Consulting?
JOB Description
- Experience managing SAP application security and SAP GRC Access Control for the client's SAP landscape, from development up to production.
- Ability to design, configure, develop, and maintain SAP roles (composite and single) to align with business requirements.
- Participate in role redesign projects during upgrades or business transformations.
- Deep understanding of SAP authorization concepts catering to SAP ECC, SAP S/4 HANA systems, and SAP GRC Access Control (10.x and 12.x).
- Experience in Security/GRC implementation and maintenance, to include minor enhancements as well as support pack/version upgrades.
- Extensive hands-on experience with GRC master data creation and maintenance, performing risk analysis and remediation activities, batch job monitoring, audit & compliance support activities (user management controls, access certification, etc.), and BRF and MSMP workflows.
- Ability to troubleshoot security access issues effectively and efficiently, interacting with key functional/business stakeholders as necessary in order to resolve SAP Security/GRC errors/exceptions.
- Keeps oneself constantly abreast of the latest advancements on SAP ECC, S/4 HANA, and other emerging security authorization concepts.
- Knows the risks associated with application security vulnerabilities and proposes solutions to eliminate and/or mitigate those risks.
- Understanding of NIST, SOX, SOD, and SAP IT General Computer Controls, how these compliance requirements impact security, and provide solutions to address them.
- Support, develop, and enable junior team members.
- Provide SAP security technical training to client counterparts, as needed.
- Anyone with Public Sector experience will have added advantage