EY
Risk Consulting – Risk Tech – SAP GRC & Security – Manager
Apply to join EY as a Risk Technology Manager with responsibility for SAP Application Security and Governance, Risk, and Compliance (GRC) in a rapidly expanding practice. Build solutions, partner with clients, and serve as an expert advisor across multiple industries.
Location Atlanta, Chicago, Cleveland, Dallas, EY‑Pitts ONE (Pittsburg), Hoboken, Los Angeles, New York, Philadelphia.
About the Role We’re looking for an experienced SAP Security and GRC leader who can design, implement, and manage secure SAP environments. The role will involve client engagements, solution design, and driving business performance through effective risk management.
Opportunity Our Risk Technology practice is expanding, offering substantial career progression and exposure to complex SAP transformation projects. You’ll work across on‑premise, cloud, and SaaS platforms while leveraging EY’s intellectual property.
What We Look For Professionals with a deep understanding of SAP Application Security and GRC who are eager to apply EY’s standard tools and practices. A passion for building trusted client relationships is essential.
Your Key Responsibilities
Connect with clients to design and implement security and GRC processes throughout transformation journeys.
Leverage EY intellectual property to deliver SAP ERP solutions with Application Security or GRC Access Control.
Apply own implementation experience to guide clients in effective change management.
Build and maintain strong client relationships to address complex issues.
Skills And Attributes for Success
Experience deploying large‑scale, cross‑functional SAP transformation projects, including Application Security and SAP GRC Access Control.
Design, develop SAP Security solutions across on‑prem, cloud, and SaaS, meeting regulatory and compliance standards.
Leadership experience managing onshore and offshore teams throughout project life cycles.
Participate in SAP audit discussions (internal & external) and resolve governance and compliance issues.
Excellent cross‑functional communication skills.
Proactive coaching and development of teams.
Identify and manage business development opportunities.
Qualifications
6+ years in an SAP Security and GRC lead role.
Bachelor’s or master’s degree in computer science, information security, or related field (preferred).
Hands‑on experience designing, building, testing, and deploying application security frameworks across SAP S/4, FIORI, ECC, ARIBA, HCM, Success Factors.
Experience with SAP HANA DB security (preferred).
Strong SAP GRC Access Control implementation experience (v12.0 or others) and integration with IAM tools such as Saviynt, SailPoint, SAP IAG.
Designing processes for Segregation of Duties (SOD) and Critical Actions (CA) review, emergency management, user provisioning.
Risk framework/ruleset design for SOD and CA compliance.
Understanding of aligning application security to risk and controls frameworks.
Experience with ticketing tools (ServiceNow, HP ALM) – added advantage.
Ability to support multiple projects with shifting priorities.
Project, team, and client management skills.
Strong analytical, interpersonal, and communication skills.
Willingness to travel (~80%). Valid US driver’s license and passport required.
Preferred Additional Credentials
Industry certifications such as CISA, PMP, CIA, RICS; non‑certified hires must obtain certification within 1 year.
SAP Application Security or GRC AC certification.
Knowledge of SAC, BTP, AI, RPA.
Knowledge of SAP audit processes and compliance frameworks such as GDPR, JSOX, KSOX.
What We Offer You
Competitive compensation: base salary $142,600 – $261,500 nationwide, with higher ranges for NY, WA, CA.
Comprehensive benefits: medical, dental, pension, 401(k), paid time off.
Hybrid work model: in‑person collaboration 40‑60% of the time.
Flexible vacation policy with paid holidays, winter/summer breaks, personal/family care, and other leaves.
Senior‑Level & Employment Type
Mid‑Senior level
Temporary
Industry: Professional Services
Ready to Shape Your Future? Apply today. EY accepts applications on an ongoing basis. California applicants, please click
here
for additional information.
EY upholds high ethical standards, integrity, and equal employment opportunity. All qualified applicants will receive consideration regardless of race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any legally protected basis.
For disabilities requiring accommodations, call 1-800-EY-HELP3 (Option 2, Option 1, Option 2) or email ssc.customersupport@ey.com.
#J-18808-Ljbffr
Location Atlanta, Chicago, Cleveland, Dallas, EY‑Pitts ONE (Pittsburg), Hoboken, Los Angeles, New York, Philadelphia.
About the Role We’re looking for an experienced SAP Security and GRC leader who can design, implement, and manage secure SAP environments. The role will involve client engagements, solution design, and driving business performance through effective risk management.
Opportunity Our Risk Technology practice is expanding, offering substantial career progression and exposure to complex SAP transformation projects. You’ll work across on‑premise, cloud, and SaaS platforms while leveraging EY’s intellectual property.
What We Look For Professionals with a deep understanding of SAP Application Security and GRC who are eager to apply EY’s standard tools and practices. A passion for building trusted client relationships is essential.
Your Key Responsibilities
Connect with clients to design and implement security and GRC processes throughout transformation journeys.
Leverage EY intellectual property to deliver SAP ERP solutions with Application Security or GRC Access Control.
Apply own implementation experience to guide clients in effective change management.
Build and maintain strong client relationships to address complex issues.
Skills And Attributes for Success
Experience deploying large‑scale, cross‑functional SAP transformation projects, including Application Security and SAP GRC Access Control.
Design, develop SAP Security solutions across on‑prem, cloud, and SaaS, meeting regulatory and compliance standards.
Leadership experience managing onshore and offshore teams throughout project life cycles.
Participate in SAP audit discussions (internal & external) and resolve governance and compliance issues.
Excellent cross‑functional communication skills.
Proactive coaching and development of teams.
Identify and manage business development opportunities.
Qualifications
6+ years in an SAP Security and GRC lead role.
Bachelor’s or master’s degree in computer science, information security, or related field (preferred).
Hands‑on experience designing, building, testing, and deploying application security frameworks across SAP S/4, FIORI, ECC, ARIBA, HCM, Success Factors.
Experience with SAP HANA DB security (preferred).
Strong SAP GRC Access Control implementation experience (v12.0 or others) and integration with IAM tools such as Saviynt, SailPoint, SAP IAG.
Designing processes for Segregation of Duties (SOD) and Critical Actions (CA) review, emergency management, user provisioning.
Risk framework/ruleset design for SOD and CA compliance.
Understanding of aligning application security to risk and controls frameworks.
Experience with ticketing tools (ServiceNow, HP ALM) – added advantage.
Ability to support multiple projects with shifting priorities.
Project, team, and client management skills.
Strong analytical, interpersonal, and communication skills.
Willingness to travel (~80%). Valid US driver’s license and passport required.
Preferred Additional Credentials
Industry certifications such as CISA, PMP, CIA, RICS; non‑certified hires must obtain certification within 1 year.
SAP Application Security or GRC AC certification.
Knowledge of SAC, BTP, AI, RPA.
Knowledge of SAP audit processes and compliance frameworks such as GDPR, JSOX, KSOX.
What We Offer You
Competitive compensation: base salary $142,600 – $261,500 nationwide, with higher ranges for NY, WA, CA.
Comprehensive benefits: medical, dental, pension, 401(k), paid time off.
Hybrid work model: in‑person collaboration 40‑60% of the time.
Flexible vacation policy with paid holidays, winter/summer breaks, personal/family care, and other leaves.
Senior‑Level & Employment Type
Mid‑Senior level
Temporary
Industry: Professional Services
Ready to Shape Your Future? Apply today. EY accepts applications on an ongoing basis. California applicants, please click
here
for additional information.
EY upholds high ethical standards, integrity, and equal employment opportunity. All qualified applicants will receive consideration regardless of race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any legally protected basis.
For disabilities requiring accommodations, call 1-800-EY-HELP3 (Option 2, Option 1, Option 2) or email ssc.customersupport@ey.com.
#J-18808-Ljbffr