Job Description :
Role: Sr SAP GRC/Security consultant Location:plano,TX Duration: 6 + months Role Design Activities - Baseline 1. Review and approve production role changes for NA SAP systems (ECC, BW, CRM, GRC, HCM, HCM BW, SCM/APO, SRM, XI, SUS) 2. First and final review of all changes using our documented Risk Assessment process 3. Adhere to task based design, SOD impact assessment and control points SAP GRC Rule Set updation 1. Perform Rule Set Updation Activities in the NA and PI SAP GRC systems. SAP Quarterly Recertification Activities 1. SAP production sensitive access is recertified quarterly by managers and role approvers using the PepAGM tool. 2. Admin monitors responsibilities for all (NA and PI) SAP production sensitive access quarterly recertifications: 3. Technical project management and schedule/calendar each quarter for the NA and PI SAP production sensitive access quarterly recertification's. Liaison with various teams involved like SAP GRC Technical team, ISG (Information Security Group - PepAGM Team) and Sector coordinators/Technical SAP security teams. NA SAP Role Approver updates 1. Work with various NA business contacts to identify role approvers & work with GRC technical team to get the changes updated in BOR/GRC 2. Publish BOR on a weekly basis. SOD Request Management 1. Review NA SAP production access requests with SOD conflicts and resolve via access removal or apply mitigation controls. 2. SAP GRC FFID Owner/Controller Updates 3. SAP GRC FFID Mass Assignment during Period Downtime. 4. Weekly User/Role level SoD Monitoring 5. Approve Temp Role Creation / Assignment to FFIDs in PROD 6. Provide On-Call Support from Governance Team side. 7. Perform Semi Annual Mitigation Control Review. 8. Provide SPA mailbox support: SPA - IT Controls & Compliance Support 9. Compliance and audit support in NA and PI data for SAP application security controls 10. Audit support documentation requests for external auditors (KPMG) GRC Access Controls 1. GRC Access Controls projects (Upgrade/ SP level etc) experience mandatory 2. should have experience in integrating GRC with HANA, FIORI, LDAP 3. Should be well versed in GRC 10.1 Configuration ARM , ARA , EAM modules 4. Having experience in troubleshooting GRC - IDM integration issues 5. Having experience on GRC Web-services 6. Having experience on SPRO, MSMP, BRF+ Configuration 7. Have expertise in designing the Ruleset and mitigation Controls in SAP GRC 8. Should have experience in handling mass EAM,ARM and ARA master data updates 9. Should be able to use tools/excel to reduce the manual effort while uploading master data 10. Trouble shooting skills to any GRC issues such workflow issues, provisioning errors , FF issues SAP Security: 11. Security support experience in SAP HCM, ECC, BI, HANA 12. Security upgrade experience in SAP HCM, ECC, BI, HANA 13. Expertise in SAP Security Role design of SAP HCM, ECC, BI, HANA 14. Should have experience working with Controls team on SOD Violations/ remediation 15. Expertise in analyzing GRC SOD analysis 16. Troubleshoot access issues with ECC, HCM, BW/BI, CRM 17. Soft skills: Experience in onsite/ offshore model Excellent communication & presentation skills Good interpersonal skills