SAP S/4HANA Security & GRC Specialist
São Paulo, São Paulo, Brazil
Full Time
2 hours ago
No H1B
Key skills
ITSMServiceNowSAP
About this role
Role Overview
- SAP S/4HANA GRC & Security Specialist – Global CoE
- Creation, maintenance and optimization of roles and profiles
- Analysis and troubleshooting of authorization errors
- Impact assessment of new access requests or process changes
- Technical review of critical and privileged accesses
- SAP Fiori Security – Configuration of Fiori roles
- Mapping of backend ↔ frontend authorizations
- Troubleshooting access to Fiori apps
- Secure activation of new standard applications
- Ensure adherence to segregation of duties (SoD) in the Fiori environment
- SAP GRC – Access Control – Administration of SAP GRC
- GRC technical support (workflow configuration and tool maintenance)
- Segregation of Duties (SoD) analysis
- Definition and maintenance of the risk matrix
- Emergency Access (Firefighter) management
- Conducting User Access Reviews (UAR)
- Risk assessment for new processes and Change Requests
- Support for internal and external audits
- Global COE Responsibilities – Act as guardian of the global SAP security model
- Define and maintain global authorization standards
- Assess the impact of new processes or integrations from a risk perspective
- Participate in the CAB (Change Advisory Board) to evaluate security impacts
- Ensure the access model aligns with corporate policies
- Monitor SoD risks and propose mitigation plans
- Support continuous evolution of the security model
- Support multiple regions
- Ensure global standardization while allowing justified local exceptions
- Technical support for projects, releases and global rollouts
- Management and control of SAP application licenses and FUEs
- Interface with Compliance, Audit and Corporate Security areas
- N2 Support – Act as Tier 2 for access and security incidents
- Ensure SLA compliance in handling access requests
- Manage the service queue, including support for N1 when needed
- Identify recurring error or risk patterns
- Propose structural improvements to the role model
- Document technical standards and procedures
- Interface with Technology and Business users for request management and execution.
Requirements
- Bachelor's degree in Information Technology, Information Systems, or related fields
- Proven experience in SAP Security within an S/4HANA environment
- Experience creating and maintaining roles and profiles
- Strong knowledge of Segregation of Duties (SoD)
- Experience with SAP Fiori Security
- Experience with SAP GRC Access Control
- Risk analysis and mitigation experience
- Experience managing exceptions and compensating controls
- Experience with ServiceNow or a similar ITSM tool
- Experience in a global SAP environment
- Experience in S/4HANA implementation or rollout projects
- Experience in access governance
- Fluent English to support regions in Europe and North America
Tech Stack
- ITSM
- ServiceNow
Benefits
- Health insurance
- Dental plan
- Life insurance
- Gympass
- Meal voucher
- Discount on Alpa products
- Birthday day off
- Flexible working hours
- Flexible work model
- Transportation voucher
- Private pension
- Profit Sharing (PLR)
- Courses, training and other development activities through ALU (Alpa Learning Universe), our corporate university!