SAP Security Consultant

Overview

On Site
Depends on Experience
Contract - Independent
Contract - W2
Contract - 24 Month(s)
Able to Provide Sponsorship

Skills

ARM
Access Control
Auditing
Authentication
Authorization
CISA
CISSP
CRM WebClient UI
Cloud Computing
Computer Science
Customer Relationship Management (CRM)
Database
Database Security
Documentation
Encryption
Enterprise Asset Management
IPS
ITIL
Management
Management Information Systems
Microsoft Azure
Microsoft IAS
Migration
OAuth
Open Data Protocol
Provisioning
Regulatory Compliance
Risk Analysis
SAML
SAP
SAP BI
SAP ECC
SAP ERP
SAP Fiori
SAP GRC
SAP HANA
SAP SUIM
SAP Security
SOD
SQL
SSO
SailPoint
Taxes
UI
Web Dynpro
Web Portals

Job Details

We are seeking an experienced SAP Security Consultant with strong expertise in architecting and implementing comprehensive security frameworks across SAP ECC, CRM, BW, Portal, S/4HANA, BW/4HANA, and SAP BTP environments. The ideal candidate will be skilled in Fiori authorization design, GRC Access Control (ARA/EAM/ARM), segregation of duties (SoD) analysis, HANA database security, and enterprise IAM integration. This role requires the ability to design secure, scalable, and audit-compliant role structures while ensuring governance and compliance across hybrid SAP landscapes.

Required Experience:

10+ years of SAP Security experience across ECC, BW, CRM, and S/4HANA transitions.

Strong expertise in role-based access control for S/4HANA and BW/4HANA.

Proficient in Fiori/UI5 security design (catalogs, groups, OData services, business roles).

Hands-on with SAP security tools (SU24, SU25, SUIM, SU53, STAUTHTRACE).

Implementation of BW/4HANA analysis authorizations and row-level security.

Deep understanding of HANA DB security (encryption, audit policies, SQL-level controls).

Integration with third-party IAM tools (Azure AD, SailPoint, Saviynt) via SCIM, SAML, OAuth.

SAP BTP security knowledge (Launchpad, Work Zone, CAP, SAC).

IAS/IPS configuration for identity provisioning and SSO federation.

GRC Access Control (ARA, ARM, EAM) implementation and SoD risk analysis.

Familiarity with compliance frameworks (IRS 1075, OCSE audit controls).

Duties and Responsibilities:

Design and maintain SAP roles/authorizations across S/4HANA, ECC, BW/4HANA, CRM, and Portal.

Conduct readiness and impact assessments for S/4HANA and HANA DB migrations.

Provide SAP Security support across on-prem and cloud environments.

Implement and troubleshoot SAP Fiori/UI5 security.

Perform backend role design (transaction codes, Web Dynpro, CRM Web UI, OData).

Configure/manage IAS/IPS for authentication and identity provisioning.

Maintain/support GRC Access Control modules (ARA, ARM, EAM).

Conduct SoD analysis and support audits.

Design hybrid security and identity architecture integrating AD, GRC, IAS/IPS, and SAP.

Manage HANA DB security (roles, encryption, audit policies).

Configure/support SSO, CUA, and secure system integrations.

Develop documentation (technical designs, SOPs, audit artifacts).

Provide ongoing monitoring, remediation, and 24/7 on-call SAP Security support.

Education & Certifications:

Bachelor s degree in Computer Science, MIS, or related field (or equivalent experience).

Preferred: SAP Security & System Certifications, ITIL Foundation.

Preferred: CISA or CISSP certifications.

Experience with Florida state tax systems (CAMS or SUNTAX) is a plus.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.