Specialist, SAP Security

Job Summary

Reporting to the Corporate Controller, the SAP Security Specialist is responsible for the design, implementation, and governance of the organization’s SAP security architecture and access control framework.

The role serves as a subject matter expert in SAP Security and SAP GRC Access Control, establishing scalable role-based access control (RBAC), governance processes, and control frameworks across the SAP landscape, aligned with business requirements and regulatory obligations, including NI 52-109.

The SAP Security Specialist also contributes to enterprise transformation initiatives and continuous improvement efforts, supporting the evolution of security design, access governance processes, and alignment with the organization’s target architecture.

Key Accountabilities

•    Define and support the execution of the SAP Security and Access Control strategy, including governance frameworks, standards, and procedures;
•    Design, implement, and maintain enterprise RBAC models (task, derived, and composite roles) aligned with business processes;
•    Govern and maintain the Segregation of Duties (SoD) and sensitive access framework, including ruleset management and mitigation controls;
•    Lead the planning and execution of the SAP Security roadmap, driving prioritization, deliverables, and resource coordination;
•    Execute and monitor key ITGC controls, ensuring compliance with internal controls, audit requirements, and SAP security best practices;
•    Administer and support SAP GRC Access Control processes, including ARA, ARM, EAM (Firefighter), and periodic user access reviews;
•    Conduct SoD risk assessments and security workshops, and support definition and implementation of mitigation controls;
•    Act as a key contact for internal and external audits, including support for audit requests, testing, and issue remediation;
•    Collaborate with SAP Basis, development, and functional teams to design and implement secure, scalable role structures and access solutions;
•    Support SAP Security activities across major initiatives (e.g., S/4HANA, EWM), ensuring alignment with target architecture and control frameworks;
•    Drive continuous improvement of access governance processes, including role optimization and operational efficiency.

Job Requirements

•    Bachelor’s degree in Information Technology;
•    5+ years of experience in SAP Security and SAP GRC Access Control, including hands-on and implementation experience;
•    Experience with SAP S/4HANA security design and implementation, including Fiori authorization concepts;
•    Strong experience with SAP GRC (ARA, ARM, EAM) and SoD / critical access risk management;
•    Proven experience in RBAC design, role management, and access governance frameworks;
•    Experience working in ITGC, audit, or control-driven environments;
•    Ability to translate business requirements into scalable, risk-based security solutions;
•    Strong stakeholder collaboration across Finance, IT, and audit teams;
•    Strong analytical, problem-solving, and communication skills;
•    Ability to manage multiple priorities in a fast-paced environment;