Description:
We are seeking an Intermediate SAP Security Analyst to support day-to-day and project-based security needs across a hybrid SAP landscape, including SAP S/4HANA, SAP ECC, SAP BTP, SAP Cloud ALM, BDC, and governance solutions such as SAP GRC and SAP IAG.
Key Accountabilities
- Access Management & Operational Support - Provide security administration and support for SAP S/4HANA and SAP ECC, including user provisioning, role updates, access troubleshooting, and issue resolution.
- Support end-to-end access processes: request intake, approvals, provisioning, validation, and periodic reviews. Diagnose and resolve authorization issues (e.g., missing authorizations, role conflicts, user master problems) and recommend sustainable fixes.
- Role Design, Build, and Maintenance - Assist in designing and maintaining role-based access using least-privilege principles and standardized naming/documentation.
- Perform role updates and remediation activities aligned to business requirements, compliance controls, and segregation of duties (SoD). Support role testing for projects/releases, including test user setup, role validation, and defect triage.
- SAP BTP, Cloud, and Identity Enablement - Support security needs across SAP BTP, including role collections, app access, and environment-specific security configurations (as applicable).
- Assist with identity and authentication integrations (e.g., SSO, OAuth/SAML concepts) in collaboration with IAM and platform teams. Support security for SAP cloud services such as SAP Cloud ALM and BDC (as applicable), including access setup and ongoing maintenance.
- Governance, Risk & Compliance (GRC / IAG) - Support GRC/IAG processes such as access risk analysis, SoD checks, provisioning workflows, firefighter/emergency access (if applicable), and audit reporting.
- Project & Release Support - Support project teams during S/4HANA initiatives (implementations, rollouts, enhancements), including security design input and cutover/hypercare support.
- Collaborate with Basis, development, functional, and integration teams to ensure security requirements are built into solution delivery. Contribute to security documentation: role catalogs, access matrices, procedures, and runbooks.
Qualifications
- Requires eexperience in SAP security/authorizations supporting SAP S/4HANA and/or SAP ECC.
- Requires working experience supporting a multi-system SAP landscape with exposure to: BTP, BDC, Cloud ALM, GRC, and/or IAG.
- Requires practical experience with SAP authorization concepts (roles, profiles/authorizations, user administration, troubleshooting).
- Requires understanding of Segregation of Duties (SoD) principles and access governance controls.
- Requires strong communication skills with the ability to work effectively with business users, technical teams, and auditors.
- Requires strong organizational skills-able to manage multiple access requests, incidents, and project tasks concurrently.
- Requires hands-on experience with SAP IAG and/or SAP GRC Access Control (ARA, BRM, EAM/Firefighter, workflows).