Lead Consultant, SAP Security

Job title: SAP Security Consultant
Primary Purpose
SAP Security consultant with minimum 8 years of experience to join the existing team to assist in SAP Security Administration of the SAP system landscapes including but not limited to SAP S/4HANA, Fiori, BW on HANA, Business Suite (for example SCM, ECC etc), SAP SOLUTION MANAGER, SAP BW/BPC, SAP XI & PO, SAP EP Portal, SAP SLT, BOBJ, etc.
Responsibilities
• User Access Management: Create, modify, and revoke user access rights within the SAP environment based on approved business roles, ensuring appropriate segregation of duties and compliance with company policies and regulations.
o User, Role Administration AS ABAP and Java
o Troubleshooting and maintenance for Users – business and RPA
• Role Administration: Administer SAP roles, profiles, and authorizations to ensure that users have the necessary access to perform their tasks efficiently and effectively.
o Analysis and customization of authorizations (ECC, BW and BPC) – example: models, query / dataset objects, analysis authorizations and transaction calls
o Role enhancements via maintenance tools in SAP solutions.
o Troubleshooting and maintenance for Roles (application + database access [example: HANA access])
• Security in SAP Gateway and SAP Fiori system landscapes
o App and roles customization based on design requirement (spaces, pages, tiles, sections)
o Troubleshooting scope knowledge covering build and setup of the apps and roles (both UI and backend)
• Authorization Troubleshooting: Investigate and resolve authorization-related issues and incidents promptly, collaborating with SMEs or business stakeholders when necessary.
o Security tables and objects knowledge
o Standard objects call knowledge and design understanding
o Examine and update critical authorizations – special roles access
• Security Policy Enforcement: Ensure compliance with security policies, implementing necessary controls (eg: tweak authorization roles) to protect sensitive information.
o Security Audit Log – configuration and customization
o License consolidation, setup and monitoring knowledge using SAP Solution Manager
• User Training and Support: Provide support to end-users on authorization-related inquiries, conduct training sessions to educate users about security best practices and access management procedures.
• Access Reviews and Audits: Perform regular access reviews and audits to ensure that user access rights remain appropriate, up-to-date, and aligned with job responsibilities.
• Security Enhancements: Propose and implement improvements to the SAP authorization model, continuously optimizing security controls, and enhancing data protection.
o Authorization for SAP Business Suite, SAP HANA, S/4 HANA
• Security Documentation: Maintain accurate and up-to-date documentation related to SAP authorization processes, user access management, and security policies.
• Collaboration: Collaborate with cross-functional teams, including SAP functional teams, IT operations, and compliance, to address security-related requirements and resolve any potential issues.
• Incident Response: Participate in incident response and remediating activities related to security breaches or audit findings, ensuring proper analysis, containment, resolution, RCA, for security incidents