SAP Security Analyst

Responsibilities:

• Design, develop, and maintain SAP security roles and authorizations within BODS, SLT, Ariba, and Signavio environments, aligning with security policies, standards, and SoD requirements.
• Administer user access, troubleshoot issues, and oversee GRC implementation and user access reviews for the specified SAP applications.
• Conduct security assessments, monitor and report on security events, and support audits.
• Collaborate with IT and functional teams to define and implement security policies and provide user support.
• Lead SAP security tasks in projects, supporting implementations and managing change control processes.
• Develop and maintain the SAP Signavio Process Intelligence security model and ensure secure data access control.
• Manage SSO, user provisioning, and integrations with IdMGRC if applicable.
• Analyze and troubleshoot access issues, ensuring least privilege and SoD compliance.
• Maintain audit trails and ensure system compliance with internal and external controls e.g., SOX.
• Work closely with SAP Basis and Cloud Identity Services for user lifecycle and identity federation.
• Participate in system upgrades, patching, and cutovers by validating security impacts.
• Provide documentation and knowledge transfer to support and audit teams.

Qualifications:

• Bachelor's degree in a relevant field.
• Minimum of 10+ years of SAP Security experience with proven project delivery.
• Strong knowledge in:
• SAP BODS repository and runtime user security.
• SLT rolebased access control and connection configurations.
• SAP Ariba user provisioning via Ariba Administration, CIG or BTP, integration with SSO and Active Directory.
• Signavio cloud user management and role assignments through SAP BTP cockpit or SCIMbased provisioning.
• Expert knowledge of SAP authorization security, implementation methodologies, and SoD concepts.
• Experience with SAP GRC Access Control.
• Demonstrated ability to design SAP security solutions and experience in endtoend SAP security project lifecycles.
• Excellent communication and collaboration skills.

Preferred Qualifications:

• SAP Ariba certification.
• Experience with EIMSailPoint, SAP Solution ManagerChaRM, and SAP Business Technology Platform BTP.
• Bachelor's degree in Computer Science, Information Technology, or related discipline.
• SAP Security or GRC certification is a plus.
• Experience in multitenant SAP Ariba or Signavio deployment models.
• Knowledge of compliance frameworks e.g., ISO, NIST, SOX.
• This job description provides an overview of the responsibilities and qualifications required for an SAP Security Specialist role with a focus on BODS, SLT, Ariba, and Signavio. It can be further customized based on specific organizational needs and the seniority level of the position