Manage daily operations of SAP GRC 12 Access Control (ARA, ARM, BRM, EAM), ensuring stability, automation, and audit readiness.
Measure and improve performance via KPIs and monitoring (ARM SLA, EAM log reviews, SoD false‑positive rate).
Plan and execute upgrades/service packs, including testing, cutover, and validation.
Integrate SAP security with enterprise identity platforms and directory services for reliable provisioning and de‑provisioning.
Lead the transition from SAP IDM to an enterprise identity governance platform; define secure joiner/mover/leaver processes and decommission IDM safely.
Maintain and optimize SoD rulesets, onboard new cloud applications, and sustain governance through mitigating controls and periodic access reviews.
Prepare and support audits, providing clear evidence and driving timely remediation.

10+ years in SAP security with deep, hands‑on expertise in SAP GRC Access Control (ARA, ARM, BRM, EAM).
Proven SoD design, remediation, and governance experience; EAM and BRM proficiency.
Experience managing SAP IDM and leading transitions to enterprise identity governance platforms.
Demonstrated success in GRC upgrades, service packs, and lifecycle management in complex landscapes.
Strong audit/compliance background (e.g., SOX) and clear stakeholder communication.
Advanced troubleshooting and problem‑solving skills.

SAP GRC Access Control Security Specialist

Key skills