SAP Security Expert

Övergripande uppdragsbeskrivning

• Govern and update System Roles & Authorization strategy
• Participate in Design, build, and maintenance of SAP roles and authorization concepts across SAP systems (e.g. S/4HANA, IBP, Solution Manager).
• Ensure efficient role design considering also impact on licensing dimensions.
• Supervise the creation and maintenance of single, composite, and derived roles following best practices.
• Support organization in guidance around user administration, role assignments, and access provisioning in line with approval processes.
• Troubleshoot and resolve authorization issues using tools such as SAM4U, SU53, ST01, and STAUTHTRACE.

• Implement and enforce Segregation of Duties (SoD) controls.
• Support internal and external audits by providing evidence and remediation plans.
• Work with GRC tools (e.g. SAP IAG, Firefighter/Emergency Access Management).
• Ensure compliance with security policies, regulatory standards, and data protection requirements.

• Partner with functional consultants and business users to translate business requirements into secure authorization designs.
• Advise project teams during SAP implementations, upgrades, and rollouts.
• Provide guidance and training to users and support teams on SAP security best practices.

• Review and optimise existing roles to reduce risk and improve usability.
• Document security processes, role designs, and operating procedures.
• Stay current with SAP security updates, new technologies, and industry best practices.

Skallkrav

Strong hands-on experience in SAP Roles & Authorizations.
In-depth knowledge of SAP authorization concepts (authorization objects, profiles, role design)
Experience across one or more SAP platforms: ECC, S/4HANA.
Practical experience with SAP GRC Access Control or equivalent tools.
Familiarity with user lifecycle management and access request workflows.
5+ years’ experience in SAP security and authorizations.
Experience supporting audits and compliance initiatives.
Understanding of SoD principles and risk management.
Understanding of SAP licencing principles (FUE) and how role design impacts.

Börkrav

SAP Security or GRC certification.

Övriga krav

Bifoga CV i Wordformat under fliken Dokument. CV:t är en viktig del i utvärderingen av konsulten. Det ska tydligt visa att konsulten har den kompetens och erfarenhet som efterfrågas för det aktuella uppdraget.
Offert för detta uppdrag måste skickas in via KeySourcingTool. Svar via mail kommer att få begränsad feedback.
Beskriv gärna kort i ”Kommentar” vid de olika kraven hur konsulten uppfyller dessa.
Leverantören intygar att konsult- och ansvarsförsäkring finns som täcker denna typ av uppdrag enligt branschstandard.

Personliga egenskaper

Strong analytical and problem-solving skills.
Excellent communication and stakeholder management abilities.
Ability to balance security requirements with business needs.
Well-organised with strong attention to detail.

Övrig information