What are the responsibilities and job description for the SAP GRC Architect position at Steneral Consulting?
- Location: Houston, TX
- Title: SAP GRC Architect
- Employment Mode: Contract / Corp-to-Corp
- Contract Duration: 12 mos. Contract
- Experience: 10 years
- Skills: SAP GRC, SOD Checks, Cloud Identity Access and Gorvernance, GRC Access, SOX, SAP Security Optimization
Skills and Experience_
- 10 years of experience in SAP security administration and SAP GRC implementation.
- Proficiency in configuring and administering SAP GRC Access Control, Process Control, and Risk Management modules.
- Strong understanding of SAP security concepts, including user provisioning, authentication, authorization, and encryption.
- Experience with SAP security tools, such as SAP Security Optimization Service (SOS) and SAP Solution Manager.
- Knowledge of regulatory compliance frameworks, such as SOX, GDPR, and PCI-DSS, as they relate to SAP systems.
- Excellent analytical, problem-solving, and communication skills.
- Design and configure activity groups, manual profiles/authorizations and users within the systems and clients.
- Design roles for each business functionality
- Work with the business users to understand role requirements
- Optimize roles for the given job positions and job title needs
- Gather job titles from the business teams
- Derive roles based on the org structure
- Maintain project team user access.
- Work with functional teams and change management teams to understand the business requirements and gather application security requirements needed to build roles based on those requirements. Obtain necessary approvals.
- Design and build end user roles for various processes and reports with appropriate restrictions. Perform unit tests as roles are developed. Assist in SOD analysis.
- Ensure integrity and confidentiality of information residing in SAP systems.
- Integrate SAP cloud platform with Active directory for user Authentication and Single Sign On
- Assist in coordinating security for SAP interfaces, user training, user acceptance testing, and data conversions where necessary.
- Follow SAP-related policies and procedures such as those around access controls, change management and development to ensure preparation for the variety of audits that occur throughout the year.
- Assist with compliance for SAP corporate, security, and legal requirements.
- Develop and deliver training sessions to educate end users on SAP security policies, controls, and procedures.
- Monitor SAP security events and incidents, investigate security breaches, and implement corrective actions as needed.
- Stay informed about emerging SAP security threats, vulnerabilities, and best practices, and recommend proactive measures to mitigate risks.
- Participate in SAP system upgrades, enhancements, and projects to ensure the security and integrity of SAP systems and data.
- Document SAP GRC configurations, processes, and procedures for knowledge sharing and compliance purposes.
