SAP GRC Consultant
Purple Drive
Overview: Role Overview: We are looking for a seasoned SAP GRC professional who has led end-to-end GRC implementations , optimized SoD and risk frameworks , and worked closely with Security, Audit, Compliance, and Business teams to strengthen governance and control maturity across complex SAP landscapes. Key Responsibilities:
- Lead design and implementation of SAP GRC Access Control (ARA, ARM, BRM, EAM)
- Configure MSMP workflows and BRF+ rules for access provisioning
- Define and optimize SoD rulesets, risk functions, and mitigating controls
- Manage Firefighter (EAM) setup, log reviews, and compliance workflows
- Implement and operate Process Control (PC) including:
- MDUG mass uploads
- Control libraries, ToD & ToE
- Continuous Control Monitoring (CCM)
- MCP planning and control assessments
- Drive Risk Management (RM) initiatives including:
- Risk frameworks, scoring models, and risk-to-control mapping
- Risk assessments, surveys, and response strategies
- KRI monitoring and executive reporting
- Integrate SAP GRC with IAM tools (SAP IDM, Azure AD, SailPoint, Okta) and ticketing tools (ServiceNow, Jira)
- Support internal/external audits , compliance tracking, and remediation
- Collaborate with stakeholders across IT Security, Audit, Compliance, and Business teams
- Strong hands-on experience in SAP GRC AC, PC, and RM modules
- Deep knowledge of SAP authorization concepts (PFCG, SU24, SUIM, Fiori roles & OData services)
- Expertise in SoD management, BRF+, mitigating controls, and Firefighter processes
- Experience with CCM automation, MCP scheduling, and control frameworks (SOX, ITGC, ISO 27001, COBIT, GDPR)
- Strong reporting experience (GRC reports, SAP BW/BI, SAP Analytics Cloud preferred)
- Excellent stakeholder management and communication skills
- Experience with S/4HANA implementations or migrations
- Exposure to SAP IAG / Cloud Identity Access Governance
- Integration with SuccessFactors, Ariba, Concur, Fieldglass
- Certifications such as SAP GRC, CISA, CISM, CRISC, CISSP, ISO 27001, ITIL
Vacancy posted more than 2 months ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to SAP GRC Consultant. Be the first to apply!
