Roles And GRC Access Control Manager

Job Title: SAP Roles And GRC Access Control Manager
Location: Remote
Salary/Rate: £700 Inside IR35
Start Date: March
Job Type: Contract

SAP GRC Manager is needed to support a variety of SAP Security Operations and Governance, Risk and Compliance (GRC) initiatives for our public sector client. You will have experience with SAP Security architecture and implementation, SAP GRC solutions (Access Control, Identity Access Governance) and experience of complex SAP implementations and security risk assessments.

Candidates with active SC clearance will be preferred.

Your Responsibilities:

• Implement the SAP security and GRC strategy, policies, and procedures to protect the integrity and confidentiality of enterprise systems.
• Lead and manage the design, build, and testing of SAP security and access controls.
• Oversee SAP Security during implementation ensuring compliance with audit and regulatory requirements.
• Lead the design, configuration, implementation, and testing of SAP GRC modules including Access Control (AC) and Identity Access Governance (IAG).
• Understand and enforce the access policy requirements for user and role/authorisation management ensuring least access principle is applied leveraging the segregation of duties (SoD) principles.
• Lead GRC activities such as user access review and segregation of duties (SoD) analysis.
• Work with internal and client stakeholders including technical teams, internal/external auditors, and business process teams to ensure a secure integrated solution.
• Conduct risk assessments to identify and mitigate potential SAP security risks across all modules, including S/4HANA, Fiori, and other SAP applications.
• Strong understanding of IT Controls for S/4 HANA and other relevant SAP application suites.
• Understanding of risk rule sets and compliance aspects such as segregation of duties, sensitive access, and mitigation controls.

Essential Skills & Experience:

• Extensive experience in SAP implementations, especially security role design, GRC Access Control, Identity Access Governance (IAG), user management, and authorisation configuration.
• Experience in integrating SAP IAG with GRC Access Control including Business Technology Platform (BTP) integration and security design.
• Proficiency in SAP Security for applications such as ECC, S/4HANA, Fiori, and SAP cloud applications.
• Deep knowledge and hands-on experience of SAP authorisation concepts, user roles, profiles, and SAP security best practices.
• Understanding of segregation of duties requirements and embedding them in the security role design.
• Excellent project management skills and strong organisational skills with the ability to lead the delivery, manage multiple priorities, drive deadlines, and lead the team effectively.
• Support and guide the team in delivering high-quality documentation.
• Strong analytical, problem-solving, and communication skills in explaining technical concepts to non-technical stakeholders.

If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format.

Disclaimer: Notwithstanding any guidelines given to the level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies.

Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.