Job Summary:
We are seeking an experienced SAP GRC Consultant to support the implementation, configuration, and maintenance of SAP Governance, Risk, and Compliance (GRC) solutions. The successful candidate will ensure enterprise-wide adherence to compliance, risk management, and access control standards while enabling secure and efficient business processes.
Key Responsibilities:
Implement and support SAP GRC Access Control (AC), Process Control (PC), and Risk Management (RM) modules.
Design, configure, and manage SAP GRC workflows including Access Request Management (ARM), Business Role Management (BRM), Emergency Access Management (EAM), and Access Risk Analysis (ARA).
Analyze Segregation of Duties (SoD) conflicts and recommend appropriate mitigations.
Integrate GRC solutions with SAP and non-SAP systems to ensure comprehensive compliance coverage.
Provide governance around role design, user provisioning, and access reviews.
Collaborate with security, audit, and compliance teams to meet regulatory requirements (e.g., SOX, GDPR).
Monitor and optimize GRC rulesets and controls to align with evolving business risks.
Deliver user training and documentation on GRC tools and compliance processes.
Stay updated with SAP GRC innovations, patches, and regulatory changes.
Required Skills & Qualifications:
Bachelor’s degree in Information Technology, Computer Science, or a related field.
3–5+ years of hands-on experience in SAP GRC implementation and support.
Strong knowledge of SAP GRC Access Control (AC 10.0/12.0), Process Control, and Risk Management.
Solid understanding of SAP security architecture, role-based access control, and SoD principles.
Familiarity with SAP Fiori, S/4HANA, and cross-system integration.
Experience with compliance frameworks such as SOX, ISO, or GDPR.
Analytical thinking, problem-solving mindset, and attention to detail.
Strong communication, presentation, and stakeholder engagement skills.
Preferred Qualifications:
SAP GRC certification.
Experience working in regulated industries (e.g., finance, pharmaceuticals, public sector).
Knowledge of audit practices and working with internal/external auditors.
Understanding of SAP Identity Management (IDM) or cloud security solutions (e.g., SAP BTP, Azure AD integration).
