Senior Engineer, SAP Security

This role will perform the following:

· SAP authorization concepts, including role design (Single/Composite/Derived roles), securing custom transactions, maintaining SU24, and ensuring compliance with SOX and IT general controls.

· SAP security across modules and Basis components, including ECC and S/4. Familiarity with at least one S/4 implementation cycle, along with GRC Access Control configuration (10/10.1/12), BRF+, and SAP GRC AC components (ARA, EAM, ARM, BRM).

· Developing and maintaining SAP roles to ensure Segregation of Duties, clear access controls, and adherence to security and audit requirements. Good understanding of SOX requirements and develop standard work in security space to enforce SOX standards. Participates in audits (SOX and others) and enforces effective control and monitoring processes.

· Thorough understanding of business processes and dependencies between SAP modules and systems, working cross-functionally with teams (Functional, Developers, BASIS) to support user access needs, issue resolution, and system monitoring.

· Develop and refines security processes, assists in testing and implementing system changes, and contributes to documentation, blueprinting, and user requirements gathering to enhance security efficiency and compliance.

The essential qualifications of the job include:

• Bachelor’s degree (prefer Computer Science or related field)

• 7+ years of SAP experience with SAP authorizations (ERP and HANA) as a consultant or worked in a customer facing environment (Internal or External) with at least 2 years of SAP GRC in Access control (12.x)

• Understanding of Business Rule Framework, BRF+. Knowledge and experience of initial GRC Access Control 10/10.1/12 configuration, knowledge and experience of configuring SAP GRC AC Components (ARA, EAM, ARM, BRM)

• Experience of working with Internal and External Audit - SAP security audit skills.

• Knowledge of SAP Public Cloud security integration (SAP BTP) and access risks.

It would be a plus if you also possess previous experience in:

• Exposure to ITIL Framework.

• Understands and applies “Best Practice” methodologies and procedures.

• Awareness of Information Security principles.

Industries:Hospital & Health Care, Medical Practice, Pharmaceuticals