SAP GRC Security& Authorization

Number of Openings* 2 Duration of contract* 12 months Total Yrs. of Experience* 3 to 10 years Relevant Yrs. of experience* 3 to 10 years Detailed JD *(Roles and Responsibilities) Detailed JD as below Mandatory skills* SAP Security Desired skills* As per below JD Domain* Life Science Approx. vendor billing rate Rate is 8000 to 10,000 INR/day Work Location* Remote -India Background check process to be followed: Before onboarding Mode of Interview: Telephonic/Face to Face/Skype Interview* Microsoft Teams
Mandatory skills

• Experience in GRC access control, RAR (Risk Analysis and Remediation) and SOD (Segregation of Duties), mitigation and remediation
• Perform high level support including problem determination for all SAP security needs within Development, QA, and Production SAP clients
• Design and implement new authorization concepts along with business departments and IT stakeholders
• SAP role design, user administration on approved procedures and analysis
• Responsible for integration of SoD conform processes and authorization validation, monitoring of security access logs, evaluate and execute system monitoring procedures, monitor system security events and any unauthorized activity and completion of archiving
• Should be able to understand and generate reports on traffic light system, and identify non-compliant topics along with risk level, residual risk, security exceptions and define suitable remediation plans
• Perform Impact Assessment of security patches and keep the relevant stakeholders informed of the patch updates

What we are looking for

• Proven experience as a Security Consultant.
• Certified in SAP, X.509, SAML, HANA, S/4, GRC, CISSP, AWS, CISM, CISA
• Bachelors and Masters Degree in Computer Science, Information Technology, Information Security

Number of Openings* 1 Duration of contract* 12 months Total Yrs. of Experience* 3 to 10 years Relevant Yrs. of experience* 3 to 10 years Detailed JD *(Roles and Responsibilities) Detailed JD as below Mandatory skills* SAP Knowledge Desired skills* As per below JD Domain* Life Science Approx. vendor billing rate Rate is 8000 to 10,000 INR/day Work Location* Remote -India Background check process to be followed: Before onboarding Mode of Interview: Telephonic/Face to Face/Skype Interview* Microsoft Teams
Mandatory skills

• Collaborate with functional teams, IT, and business stakeholders to analyze business processes, understand system requirements and changes, and define authorization requirements.

• Assist in the design and implementation of SAP authorization concepts, roles, and profiles in line with security policies and compliance standards.

• Oversee user access requests, modifications, terminations in SAP systems, authorization configurations and maintain comprehensive documentation of SAP authorization processes, configurations, and changes, and enable restrictions as per Privileged and Emergency procedures.

• Analyze security access logs, respond to and investigate security incidents related to SAP authorizations, and collaborate with IT support teams to troubleshoot and resolve authorization-related issues.
• Collaborate with security and internal audit teams to support SAP security audits and assessments and provide support for CAPA - user access issues and implement timely resolutions.

• Generate and analyze reports on user access, authorizations, and security-related metrics.

• Identify opportunities for process improvements and automation in SAP authorization management.

What we are looking for

• Proven experience as an SAP Authorization Specialist.
• In-depth knowledge of SAP modules, its integration points, SAP security concepts, authorization objects, and role design.
• Knowledge on regulatory requirements and industry best practices related to SAP security.
• Exposure to S/4 HANA and SAP authorizations in SAP HANA.
• Able to work interdependent with little to no direction/guidance
• Strong collaboration, written and oral communication skills in English is a must - additional language knowledge is a good asset.