Sap Security Grc

We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges.

In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients – including governmental agencies and private companies – throughout the United States and India.

We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career.

REQUIRED SAP GRC Modules

• ARA (access risk analysis)
• EAM (Emergency Access Module)

WORK ACTIVITIES/CONTEXT:

• Supports SAP security design for SAP ECC, Portal, and GRC to ensure that all application modules are functional and secure.
• Ensures alignment with security policies, procedures, and industry standards.
• Collaborates with Technology on the development and maintenance of SAP security policies and procedures based on industry-standard best practices.
• Keeps current with emerging SAP Security or GRC alerts and issues.
• Attends formal training sessions and/or conferences to enhance skills relevant to position.
• Evaluates new processes and systems for gaps, risks, or improvements to security processes, and makes recommendations for aligning with the SAP Program and controls structure.
• Stays current on upcoming system implementations and business process changes that impact SAP security or GRC processes.
• Manages and supports the SAP GRC Access Risk Analysis module for segregation of duties, emergency access, and access provisioning oversight.
• Troubleshoots existing user roles, security objects and authorizations to resolve issues for various SAP Landscapes (ECC, Portal, GRC)
• Maintains knowledge in designated core business processes (i.e. Accounts Payable, Payroll) and is knowledgeable in how SAP facilitates those business processes from a controls perspective. Maintains an understanding of applications that interface with SAP through continuous learning, participation in user forums and “best practice” research.
• Provides legendary Customer Service to Internal and External Customers by providing security process improvement guidance related to changes to existing processes or development of new processes that utilize SAP and peripheral systems.
• May assist in the development of business cases to help prioritize opportunities and champion security improvement projects. May be required to facilitate discussions with various Internal Customers to facilitate business case development.
• Participates heavily in SAP ECC, Portal, or GRC design, data conversion, testing, and implementation of security changes and associated documentation.
• Responsible for ensuring that SAP security changes implemented adhere to Company change management policies. Documentation requirements for SAP security-related are completed timely and as expected to ensure that appropriate technical documentation exists.
• Documents requirements for SAP security-related interfaces (inbound and outbound), including data mapping, functional specifications, test plans, and error handling procedures. Will be responsible for creating test data, testing interfaces, defect resolution, and ongoing production support of SAP interfaces.
• Reviews test results for SAP enhancements, defects, and project implementations to ensure integrity and completeness of testing activities as it relates to…