Senior SAP Security & GRC Consultant

Devire IT Outsourcing is a collaboration model dedicated to IT specialists based on B2B contracts, delivering projects for clients engaged in innovative and modern ventures. The client specializes in scalable backend development, Big Data, cloud services, data engineering, and DevOps/SRE consulting, offering comprehensive software lifecycle support and agile project management for effective outsourcing.

• Very good understanding of security principles (least privilege, SoD, risk-based approach) and compliance/IKS in SAP environments.
• Practical experience with SAP GRC AC (at least ARA + EAM/Firefighter; ideally ARM/BRM), including maintaining rulesets and SoD simulations.
• Deep experience with Fiori authorizations (spaces/pages, catalogs, OData) and PFCG role design.
• Strong knowledge of SAP HANA authorizations (roles, privileges, HDI) and ability to read SQL for analysis purposes.
• Strong analytical skills, structured documentation approach, and communication skills in German and English.
• Willingness to travel to Germany for business trips.
• Willingness to travel to the office in Zielona Góra.

• SAP GRC Access Control (AC): Design, operation, and further development of ARA analyses and rulesets, EAM/Firefighter processes (including logging and review), ARM workflows, and BRM catalogs if used; defining and maintaining SoD rules and control points.
• Fiori and ABAP authorizations: Architecture and maintenance of PFCG roles for Fiori (spaces/pages, catalogs, OData services, SICF), transaction/object authorizations, reference and technical users; quality assurance (role testing, evidential documentation).
• SAP HANA Security: Designing and administering HANA roles and privileges (system/object/schema/analytical), HDI context, permission controls, and recertifications; closely linked with GRC controls.
• Internal Control System (IKS) and Audits: Managing audit evidence (ITGC, A1/A3 audits), recertifications/UAR, evidence-based processes, risk documentation, and remedial measures.
• Change and Automation: Integration with ALM/ChaRM processes, maintaining ticket/workflow paths, continuous improvement (automation, templates, standardization).
• Consulting and Collaboration: Acting as a subject matter partner for business areas and role owners, ensuring clear segregation of duties (four-eyes principle), and knowledge transfer within the team.