Senior/Lead SAP Security Consultant

We are seeking a skilled and experienced Senior/Lead SAP Security Consultant to join our team.

This role involves spearheading the design, implementation, and management of SAP security solutions while ensuring robust protection and seamless access management for critical business systems.

This position offers remote setup with the flexibility to work from any location in Georgia, whether it's your home, well-equipped offices in Tbilisi and Batumi or a coworking space in Kutaisi.

RESPONSIBILITIES

• Lead the implementation of SAP Security solutions, including GUI authorization, role-based design, and Fiori-first access strategy, while ensuring compliance and adherence to best practices
• Oversee the provisioning/deprovisioning of user access, implement automation for streamlined access management, and manage compliance with Segregation of Duties (SoD) standards, remediation, and risk mitigation
• Manage and optimize SAP GRC modules, including Access Risk Analysis, Emergency Access Management, Access Request Management, and Business Roles Management, to enhance security governance
• Conduct ongoing security health checks for activities like onboarding/offboarding, inactive user audits, and excessive access reviews. Ensure SAP systems align with IT standards (e.g., ITIL, SOX) and provide support for auditing processes
• Serve as the escalation point for resolving complex authorization issues, ensuring system stability and efficient user access provisioning across SAP environments
• Develop and implement effective monitoring practices and controls for SAP systems, including auditing tools and policies to detect and mitigate security risks
• Utilize tools such as ServiceNow (SNOW), Jira, and ChaRM to manage incidents, changes, and requests effectively
• Act as a trusted advisor and mentor within the team, providing guidance on SAP security advancements, emerging best practices, and innovative approaches to security challenges

REQUIREMENTS

• Hands-on experience with SAP Security, including classic GUI authorizations and role-based design
• SAP roles management, troubleshooting, users' administration, custom tcodes/apps compliance management
• Fiori authorization conception, app access provisioning, and access issues troubleshooting. Fiori's first approach methodology
• Access provisioning / deprovisioning automation
• Segregation of Duties Methodology. Rule set management. SOD Risks remediation and mitigation
• GRC Access Control - Access Risk Analysis, Emergency Access Management, Business Roles Management, Access Request Management
• Security system ongoing health check controls - onboarding/off-boarding, inactive users, users' termination, excessive access management, etc
• SAP Security auditing
• Experience with Application Management Services and tools (SNOW, Jira, Charm, etc.)
• General understanding of security standards (ITIL, SOX, etc.)

NICE TO HAVE

• GRC Process Control - data sources management, business control rules configuration, continuous monitoring
• GRC Risk Management
• SAP BW, HR, HANA DB authorizations
• SAP Cloud security & authorization and access provisioning conception
• BTP authentication and authorization concept. IdP providers. Identity Access Service. IAG experience
• Any non-SAP access management tools usage, like Saviynt, SalePoint, Security Bridge, etc
• Cyber Security hands-on experience. SAP Enterprise Threat Detection. UI Masking / UI Logging
• End-to-end SAP Security system implementation

WE OFFER

• We connect like-minded people
• Delivering innovative solutions to industry leaders, making a global impact
• Enjoyable working environment, whether it is the vibrant office or the comfort of your own home
• Opportunity to work abroad for up to two months per year
• Relocation opportunities within our offices in 55+ countries
• Corporate and social events
• We invest in your growth
• Leadership development, career advising, soft skills and well-being programs
• Certifications, including Google Cloud Platform, Azure and AWS
• Unlimited access to LinkedIn Learning and Get Abstract
• Free English classes with certified teachers
• We cover it all
• Participation in the Employee Stock Purchase Plan
• Monetary bonuses for engaging in the referral program
• Comprehensive medical & family care package
• Five trust days per year (sick leave without a medical certificate)
• Benefits package (sports activities, a variety of stores and services)