ERP and Finance Applications Lead
Backblaze
CloudERPSDLC
Job Level
Mid-LevelSenior
Tech Stack
CloudERPITSMSplunk
About the role
- Digital Platforms Practice: helps large global firms deliver digital ERP solutions and services.
- As a SAP Security/GRC Consultant, work with diverse clients to assess SAP security risks, design and implement tailored SAP Security and GRC solutions, and drive project delivery.
- Act as a trusted advisor, aligning SAP security frameworks with business objectives and compliance mandates.
- Lead SAP Security and GRC assessment, design, and implementation projects across industries.
- Conduct client workshops and requirements gathering sessions.
- Design and configure SAP security roles, authorizations, and GRC Access Control components (Access Risk Analysis, Emergency Access Management, Access Request Management).
- Develop and enforce Segregation of Duties (SoD) policies to mitigate risks and ensure compliance.
- Deliver SAP Security and GRC gap analysis, risk assessments, and remediation plans.
- Support clients during audits by preparing documentation, reports, and facilitating access reviews.
- Provide strategic advice on SAP security best practices, compliance frameworks (SOX, GDPR, HIPAA, etc.), and process improvements.
- Collaborate with cross-functional teams (Basis, functional consultants, IT auditors) to implement secure SAP landscapes.
- Conduct end-user training sessions and knowledge transfer workshops.
- Stay abreast of SAP security trends, new releases, and regulatory changes to provide proactive consulting.
Requirements
- At least 5 years of consulting experience is necessary.
- 3+ years of SAP Security and GRC consulting experience with multiple end-to-end implementations.
- Hands-on expertise with SAP ECC and/or S/4HANA Security.
- Strong experience configuring SAP GRC Access Control modules (Access Risk Analysis, Emergency Access Management, Access Request Management).
- Excellent client-facing and communication skills with the ability to explain technical concepts to non-technical stakeholders.
- Proven track record of managing multiple client engagements and delivering quality results on time.
- Strong knowledge of Sarbanes-Oxley (SOX), Business Process controls, IT General Controls and IT governance.
- Deep understanding and practical experience in analysis and design/re-design of business process and ITGCs in SAP and non-SAP landscapes.
- Strong analytical skills and understanding of the overall context of underlying business processes and technologies.
- Understanding the purpose, procedures and ways of work of internal/external audits.
- Ability to support audits and provide required information, data and to mitigate/solve identified deficiencies and gaps.
- Ability to retrieve, analyse and report/present data from various sources.
- Understanding of data structures, sources, flow and integration across infrastructure platforms and application landscapes.
- Up-to-date understanding of concepts & integration of cloud services, and multi-cloud environments.
- Experience with a variety of ERP systems (SAP & non-SAP), operating systems, databases and financial applications.
- Experience with Identity and Access Management and monitoring solutions (e.g., Splunk, Qualys, Tripwire) and authorization/SoD tools.
- Analytics & reporting experience in ITGC/GRC area.
- Experience with IT Service Management tools (SNOW, BMC, JIRA, etc.).
- Experience with SAP Identity Management (IdM).
- Knowledge of cloud-based SAP security and hybrid environments.
- Experience working in Agile/Scrum environments.
- Experience in global delivery and working with offshore resources.
- Project-related mobility/willingness to travel.
- Bachelor’s degree in Computer Science, Information Technology, or related field.
- More than 7 years of experience in financial/IT compliance, risk management, IT audit and/or IT controls; strong experience in an audit firm (e.g., Big Four) is desirable.
- SAP Security or GRC certifications are a plus (e.g., SAP Certified Technology Associate – SAP Access Control).
- Submit CV in English (application requirement).
