SAP Security Admin – Functional 5+ years

AM53

  • São Paulo - SP
  • Permanente
  • Período integral
  • Há 2 dias
Role Overview:We are seeking a seasoned SAP Security Administrator – Functional to support a strategic divestiture programme in Brazil. The role involves designing and implementing SAP security frameworks across ECC, S/4HANA, Fiori, and cloud platforms, with a strong focus on functional role design, compliance, and audit readiness. The consultant will ensure secure separation of systems and data, enabling a smooth transition to a standalone entity.Key Responsibilities:Define and implement SAP security roles and authorisations across ECC, S/4HANA, Fiori, and GRC platforms
Collaborate with business and IT teams to design functional role matrices aligned with business processes.
Conduct risk analysis and remediation using SAP GRC Access Control and Process Control tools
Manage user provisioning, role-based access control (RBAC), and segregation of duties (SoD) analysis.
Support internal and external audits by generating access review documentation and ensuring compliance with SOX and other regulatory frameworks
Maintain secure configuration of SAP applications and support secure incident resolution
Participate in divestiture planning, data separation, and TSA (Transition Service Agreement) security design.
Document security policies, procedures, and role definitions for audit and operational use.Requisitos:Required Qualifications:Bachelor’s degree in Computer Science, Information Systems, or related field.
Minimum 5 years of hands-on experience in SAP Security Administration with a functional focus.
Strong expertise in SAP GRC, Fiori security, and role design.
Experience with SAP ECC and S/4HANA platforms.
Familiarity with Brazilian regulatory and data protection standards.
Excellent problem-solving and communication skills.
Fluency in Portuguese and English.Preferred Qualifications:SAP Security and GRC certifications.
Experience with SAP Identity Management (IDM), Single Sign-On (SSO), and audit tools like CyberArk or SailPoint.
Knowledge of audit frameworks (SOX, GDPR, ISO 27001).
Exposure to divestiture, carve-out, or M&A projects.

AM53