Role: SAP IAG IAM Consultant
Job Type: Permanent
Location: UK
Mode of Working:
Hybrid
Number of hours: 40 hours per week – full time
Responsibilities- Identity and Access Governance Implementation
- Implement and configure SAP IAG modules using Access Risk Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM), Role Design & Provisioning (RDP).
- Support deployment across SAP S/4
HANA, ECC, and cloud applications.
- Access Risk & Compliance Management
- Perform Segregation of Duties (SoD) risk analysis.
- Identify and mitigate critical access risks and compliance violations.
- Define and maintain risk rulesets and mitigation controls.
- User Access and Role Management
- Design and maintain business roles, technical roles, role hierarchies, and authorizations.
- Manage user provisioning and de-provisioning, and access request and approval workflows.
- Integration and System Connectivity
- Integrate SAP IAG with SAP IAS, SAP IPS, SAP GRC systems, and non-SAP systems via connectors/APIs such as SailPoint.
- Configure cloud connectors and identity federation.
- Workflow and Process Configuration
- Configure access request workflows, multi-level approval processes, risk-based approvals.
- Customize business rules and notification mechanisms.
- Testing and Deployment
- Perform unit testing, integration testing, and support UAT.
- Manage transport of configurations and production deployments.
- Documentation and Governance
- Maintain functional and technical documentation, access governance policies.
- Define standards for role naming conventions and access control practices.
Essential skills, knowledge, and experience:
- Strong hands‑on experience with SAP IAG modules:
Access Risk Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM), Role Design & Provisioning (RDP). - Deep understanding of SAP authorization concepts (roles, profiles, objects), user administration and access control.
- Experience with SAP S/4
HANA/ECC security. - Segregation of Duties (SoD) & risk management experience in rule set configuration and maintenance, risk identification and mitigation strategies, compliance frameworks (SOX, audit controls).
- Identity & Access Management concepts including user lifecycle management (joiner‑mover‑leaver), role‑based access control (RBAC).
- Hands‑on experience with SAP IAS, SAP IPS.
- Integration of SAP IAG with SAP applications and cloud systems.
- Workflow & access request configuration using multi‑stage approval workflows, risk‑based access request processes, customizable access provisioning workflows.
- Strong problem‑solving and analytical skills; communication with business and tech stakeholders; agile/scrum experience.
- Experience with advanced SAP landscapes (hybrid, multi‑system).
- Basic knowledge of technical & development exposure such as ABAP, SAP Fiori/UI5, APIs, automation.
- Experience integrating IAG with third‑party IAM tools (SailPoint), cloud applications.
- Knowledge of compliance & governance – regulatory standards SOX, GDPR, ISO
27001, audit handling and governance frameworks. - Preferred SAP certifications (Security, IAG, GRC) or related certifications (CISA, CISSP).
Our competitive salary packages include pension, health care, life assurance, laptop, phone, access to extensive training resources and discounts within the Tata network. We also offer health and wellness initiatives and sponsor sports events such as the London Marathon.
Diversity, Inclusion & WellbeingTata Consultancy Services UK&I is committed to meeting accessibility needs of all individuals and embraces diversity in race, nationality, ethnicity, disability, neurodiversity, gender identity, age, and more. We are a disability‑inclusive employer and offer accommodations for applicants with disabilities.
#J-18808-LjbffrTo Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: