Fiori Security Consultant
Main Sail LLC is seeking a Fiori Security Consultant to support secure design and access control for S/4HANA Fiori applications.
The SAP Fiori Security Consultant supports the SAP Application Security and Identity Access Management (IAM) capability for the S/4HANA program. Working within an Agile team, this role executes the technical design, implementation, and maintenance of the security framework, ensuring that all user management functions align with the "Least Privilege" principle and federal compliance standards. The Consultant performs hands-on configuration of SAP GRC (Governance, Risk, and Compliance) to automate User Management (UM) and execute Segregation of Duties (SoD) analysis.
Key Responsibilities:
-Execute User Access Management (UAM): Perform the end-to-end design, build, and maintenance of S/4HANA security roles, with a specific focus on Fiori-specific authorizations, catalogs, and groups.
-Configure GRC Security Components: Execute the technical setup and testing of SAP GRC Access Control (ARA, ARM, EAM) to facilitate automated and compliant user provisioning.
-Security & Authorizations: Partner with the Fiori specialists to integrate Fiori authorizations with backend PFCG roles, ensuring that the "App-to-Action" security model is robust and audit-compliant.
-Maintain User Provisioning & Role Design: Ensure all role development and testing activities adhere to established Security Management controls and federal audit requirements.
-Support User Access Reviews (UAR): Execute the technical tasks for periodic certification processes to validate user entitlements and ensure continued business necessity.
-Facilitate Audit & Compliance Requests: Support internal and external audit inquiries related to user access by pulling system evidence, running reports, and performing remediation of findings.
-Monitor Security Posture: Perform regular monitoring and reporting on SoD violations and high-risk access, providing visibility into the overall health of the security environment.
-Technical Documentation: Maintain rigorous documentation of security matrices, role definitions, and mitigating controls to ensure a transparent and defensible security posture.
Basic Qualifications
-Core Experience: Professional experience in SAP Security Management, with hands-on proficiency in S/4HANA Security, SAP GRC (10.x/12.0), and Fiori Catalog/Group design.
-Technical Proficiency: Experience with the SAP GRC Global Rule Set and the implementation of mitigating controls in a complex ERP environment.
-Fiori Authorization Knowledge: Foundational understanding of the integration between Fiori Front-End (FE) and Back-End (BE) authorizations.
-Problem-Solving Skills: Ability to troubleshoot complex authorization failures (SU53, ST01) and GRC workflow bottlenecks.
-Collaborative Communication: Strong interpersonal skills with the ability to support security workshops and clearly communicate technical risk status to team members.
Location: Remote
Period of Performance: Anticipated start in April 2026 with 1 year base PoP. Expectation of multiple option years for client to exercise.
***United States Citizenship Required (Dual citizenship not authorized)***
Never miss an opportunity! Create an alert based on the job you applied for.
