SAP Senior Security & Authorization

The client is a global leader in specialty vehicles, generating around $2 billion in revenue and listed on NASDAQ. The company operates in over 17 countries with 70+ locations and approximately 6,000 employees worldwide. It provides a wide range of solutions across sectors such as commercial transport, municipal services (including snow removal and de-icing), airport operations, and specialized terrain vehicles, supported by a diverse portfolio of well-established brands.

• Functional security and authorization consultant with hands on system experience
• Understands the business context of the position and is willing to proactively work with the different business counter parts
• Open personality which likes to work in an international and distributed team setup
• Acts service and solution oriented and is eager to learn new topics
• Works independently within the team and is willing to go the extra mile if required
• Good communication and organization skills
• Excellent command of spoken and written English (German is a plus)
• Willing to handle projects and support activities in parallel
• Experience with problem solving situations; includes approaches used, tools, tactics used to manage for effective outcomes
• Minimum 5 – 10 years’ experience as functional SAP security and authorization consultant
• Strong knowledge of SAP system architecture, including SAP Basis/BTP, SAP S/4HANA, SAP ECC
• Strong experience in working with SAP GRC/IAG systems
• Strong experience in managing user, roles in SAP ECC and S/4, profiles, and security in SAP
• Familiarity with regulatory frameworks such as SOX, ISO27K, or similar compliance standards
• Experience with SAP system audits and security assessments
• Good understanding on the end-to-end SAP processes like procure to pay or order to cash

• Responsible for all SAP on premise and public cloud-based systems in terms of authorization and security management (SAP ECC, SAP S/4 Public Cloud, SAP BW/4HANA, SAC, IBP, Ariba)
• IT system owner for the SAP GRC system(S) and the implemented processes for access management and FireFigher processes
• Manage and maintain system security, including user roles, authorizations, and password policies, while ensuring segregation of duties (SoD) compliance for all relevant SAP systems
• Design, implement and secure SAP roles and authorization models tailored to business need
• Ensure SAP systems meet standards like SOX, GDPR, ISO27K, and collaborate with auditors for documentation and compliance reviews (access and role reviews)
• Serving as the main contact for SAP-related security incidents, efficiently resolving them, and conducting thorough investigations with proper documentation and follow-up actions
• Support the 1st level support for day-to-day operations in the user access management process, give guidance to use the GRC processes in the best possible way.
• Work on SAP projects representing the security stream (SAP rollouts & large company projects)
• Create and maintain the SOPs for all relevant SAP systems
• Be involved into the internal IT control framework by providing the required data for testing the ITGC in the SAP security and authorization area
• Provide training to global & local business users for the SAP GRC processes