JD : SAP Security Admin
Location : Remote
Role Purpose
The SAP Security Admin is responsible for maintaining secure access to SAP systems, enforcing role-based controls, monitoring authorization risks, and ensuring compliance across finance, BRIM, P2P, data, and integration domains.
This role is mission-critical in reducing audit exposure, protecting financial data, and supporting successful transition away from external vendors while building internal security capability.
Key Responsibilities
• Administer SAP security roles, authorization objects, profiles, and user provisioning
• Monitor access risks, SoD conflicts, control violations, and sensitive transaction use
• Maintain and enforce role governance processes across BRIM, S/4 Finance, SAC, Ariba & IAG
• Support audits, compliance reporting, and remediation of control findings
• Own ticket resolution for access issues, security failures, and role derivation requests
• Partner with Basis, Functional Leads, and Security Leadership to define least-privilege access
• Track elevated user access, system audit logs, and suspicious behavior alerts
• Contribute to knowledge transfer from Deloitte and ensure secure execution after vendor exit
• Build documentation, security operating procedures, and runbooks for repeatability
Skills & Experience Requirements
• 5+ years SAP Security experience across ECC/S4, GRC/IAG preferred
• Strong knowledge of authorization concepts, role design, SoDframeworks, and access workflows
• Familiarity with finance + BRIM posting flows to evaluate access risk exposure
• Experience supporting audits, SOC/SOX controls, and remediation tracking
• Ability to work cross-functionally with Basis, Functional, and Internal Audit teams
• Detail-oriented, structured thinker — comfortable owning highly sensitive responsibilities