Comptech Associates
SAP GRC Access Control Administrator
Comptech Associates, Raleigh, North Carolina, United States, 27601
Overview
Job Title: SAP GRC Access Control Administrator About the Job
– This role focuses on SAP GRC Access Control within the SAP landscape, ensuring compliance with IAM standards, regulatory requirements, and industry best practices through user access provisioning and risk analysis. Responsibilities
Administer SAP user provisioning and de-provisioning workflows and access requests using GRC Access Control (ARM). Ensure proper segregation of duties (SoD). Manage privileged access assignments and monitor usage logs (EAM). Design, maintain, and test SAP roles with functional and technical teams. Support periodic role clean-up, redesign, and optimization; perform risk analysis for new and existing roles to identify SoD conflicts. Lead the execution of regular SoD and critical access reviews using GRC Access Risk Analysis (ARA). Support internal and external audits by providing evidence of access controls. Assist in remediation and mitigation strategies for identified access risks. Lead efforts to design, plan, enhance, and test identity management technologies in the SAP landscape, including baselining current systems, trend analysis, and capacity planning for future requirements and new technologies. Ensure GRC system connectivity with the SAP landscape; support configuration and ongoing maintenance of SAP GRC Access Control modules. Collaborate with BASIS and security teams to troubleshoot and resolve access-related issues. Contribute to the enforcement of enterprise cybersecurity standards, policies, and procedures in the SAP landscape. Recommend improvements to access control processes, automation, and reporting. Provide technical support for information security technologies, delivering expert problem analysis and resolution in a timely manner. Qualifications
Required qualifications
Bachelor’s degree in information technology, computer science, or related field. Five years of experience in GRC Access Control administration and SAP Security. Hands-on experience with SAP GRC Access Control 12 modules (ARA, ARM, BRM, EAM). Strong knowledge of SAP Security concepts, role design, and user administration, including experience with S/4HANA, BTP Security, and Cloud Identity Services. Understanding of compliance frameworks such as SOX, GDPR, or ISO 27001. Excellent analytical, troubleshooting, and problem-solving skills. Strong communications skills and ability to drive work to completion. Preferred qualifications
Master’s degree or MBA and ten years of experience or an equivalent combination of education and work experience. Banking or financial services experience. Familiarity with other SAP GRC modules (Process Control, Risk Management). Experience with Active Directory integration for authentication and provisioning (On-Premises and EntraID / Azure AD). Certification in Information Security Management (e.g., CISSP), and/or CRISC or CISM, or related. Employment type
Contract Job function
Information Technology Industries: IT Services and IT Consulting EEO statement: Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
#J-18808-Ljbffr
Job Title: SAP GRC Access Control Administrator About the Job
– This role focuses on SAP GRC Access Control within the SAP landscape, ensuring compliance with IAM standards, regulatory requirements, and industry best practices through user access provisioning and risk analysis. Responsibilities
Administer SAP user provisioning and de-provisioning workflows and access requests using GRC Access Control (ARM). Ensure proper segregation of duties (SoD). Manage privileged access assignments and monitor usage logs (EAM). Design, maintain, and test SAP roles with functional and technical teams. Support periodic role clean-up, redesign, and optimization; perform risk analysis for new and existing roles to identify SoD conflicts. Lead the execution of regular SoD and critical access reviews using GRC Access Risk Analysis (ARA). Support internal and external audits by providing evidence of access controls. Assist in remediation and mitigation strategies for identified access risks. Lead efforts to design, plan, enhance, and test identity management technologies in the SAP landscape, including baselining current systems, trend analysis, and capacity planning for future requirements and new technologies. Ensure GRC system connectivity with the SAP landscape; support configuration and ongoing maintenance of SAP GRC Access Control modules. Collaborate with BASIS and security teams to troubleshoot and resolve access-related issues. Contribute to the enforcement of enterprise cybersecurity standards, policies, and procedures in the SAP landscape. Recommend improvements to access control processes, automation, and reporting. Provide technical support for information security technologies, delivering expert problem analysis and resolution in a timely manner. Qualifications
Required qualifications
Bachelor’s degree in information technology, computer science, or related field. Five years of experience in GRC Access Control administration and SAP Security. Hands-on experience with SAP GRC Access Control 12 modules (ARA, ARM, BRM, EAM). Strong knowledge of SAP Security concepts, role design, and user administration, including experience with S/4HANA, BTP Security, and Cloud Identity Services. Understanding of compliance frameworks such as SOX, GDPR, or ISO 27001. Excellent analytical, troubleshooting, and problem-solving skills. Strong communications skills and ability to drive work to completion. Preferred qualifications
Master’s degree or MBA and ten years of experience or an equivalent combination of education and work experience. Banking or financial services experience. Familiarity with other SAP GRC modules (Process Control, Risk Management). Experience with Active Directory integration for authentication and provisioning (On-Premises and EntraID / Azure AD). Certification in Information Security Management (e.g., CISSP), and/or CRISC or CISM, or related. Employment type
Contract Job function
Information Technology Industries: IT Services and IT Consulting EEO statement: Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
#J-18808-Ljbffr