IT/OT Compliance Specialist

We are seeking a highly skilled SAP Security and GRC Access Control Specialist to join our IT Security & Compliance team. The successful applicant will be responsible for designing, implementing, and maintaining secure access across SAP systems, ensuring alignment with internal control frameworks, regulatory compliance (e.g., SOx), and best practices in identity and access governance.

Responsibilities include:

1. Supporting the management of SAP user access processes, roles, and authorizations across SAP environments (ECC, S/4HANA, BW, Fiori, etc.).
2. Designing and maintaining security roles in line with segregation of duties (SoD) and least privilege principles.
3. Operating and optimizing SAP GRC Access Control components (ARA, BRM, CUP, EAM).
4. Performing risk analysis, access request workflow configuration, and firefighting management.
5. Supporting SOx audits by providing evidence and remediation plans for access-related findings.
6. Collaborating with business owners, internal auditors, and IT teams to define and enforce access governance standards.
7. Monitoring SAP security logs and conducting regular reviews of sensitive access and elevated privileges.
8. Contributing to the continuous improvement of SAP security policies, procedures, and role design methodology.
9. Assisting in delivering SAP security controls during projects, system changes, or M&A integrations.
10. Providing training and support to users and stakeholders on access requests and GRC workflows.

Qualifications and qualities:

1. Bachelor’s degree in Information Technology, Computer Science, or a related field.
2. Minimum of 3-5 years’ experience in SAP Security and GRC Access Control.
3. Strong knowledge of SAP authorization concepts (PFCG), role design, and user administration.
4. Hands-on experience with SAP GRC Access Control (especially ARA and EAM).
5. Understanding of compliance requirements such as SOx, GDPR, and ITGC controls.
6. Familiarity with audit processes and remediation practices.
7. Strong analytical, communication, and problem-solving skills.
8. SAP certifications (e.g., SAP Certified Technology Associate – System Security Architect or GRC Access Control) are assets.

Assets include:

1. Experience with S/4HANA security concepts, including Fiori and HANA DB authorizations.
2. Exposure to other GRC tools or Identity Management platforms.
3. Project experience in SAP security design, migrations, or role redesign.
4. Ability to work in a global, multicultural environment.
5. More than 5 years' experience.
6. Fluent in French.

We value diversity and inclusion:

BRP is dedicated to fostering a culture that invites, connects, and propels the ambitions of people of all backgrounds, profiles, beliefs, and experiences. We believe diversity fuels our ingenuity and shapes our future.

Benefits at BRP include:

• Annual bonus based on company performance
• Generous paid time off
• Pension plan
• Collective savings opportunities
• Industry-leading healthcare fully paid by BRP

Additional perks include flexible work schedules, summer schedules, holiday shutdowns, educational resources, and discounts on BRP products.

About BRP:

We are a world leader in recreational vehicles and boats, driven by innovation and customer focus. Headquartered in Valcourt, Quebec, with facilities worldwide, our team of nearly 20,000 is committed to the journey of continuous improvement and adventure.