Our Vancouver-based client is seeking an experienced SAP GRC Specialist contractor to join their team on a one-year contract with the possibility of extension. The ideal candidate should have a minimum of 8 years of progressive experience in GRC and administrative roles, with prior experience leading similar teams. They should also possess knowledge of Governance, Risk, and Compliance (GRC) modules, including Access Control, Process Control, and Risk Management. This will be a hybrid role, with the exact number of required in-office days to be confirmed.
Key Responsibilities :
- Design, configure and mature SAP S / 4HANA, SAP GRC AC / IAG application security matrix using industry best practices.
- Plan, design, and deliver internal controls i.e., ITGC and SAP Business Process controls which adhere to industry’s best practices and organization’s requirements.
- Engage with SI partners and take part in solution design workshops and configure SAP GRC Access Control, Process Control, and SAP IAG.
- Engage with business and project users to understand the security access requirements and help the Lead, ERP Security, to document security deliverable(s).
- Provide day-to-day technical support to project and business users and resolve SAP S / 4HANA, SAP GRC 12.0, other SAP Cloud application security defects.
- Work closely with the Security Lead and SI partner to build the SAP roles, troubleshoot, and resolve security defects from various testing phases, and complete various cutover tasks.
- Perform SoD risk analysis and suggest remediation strategies to project stakeholders.
- Provide training and support for security role design to end-users and stakeholders in business terminology.
- Monitor compliance with internal controls and external regulations. Generate and analyze audit reports.
- Work with internal audit, compliance, and IT teams to address findings.
- Prepare reports for audits and compliance reviews.
Preferred Qualifications (Nice to have skills) :
- Previous project experience in SAP S / 4HANA transformation projects.
- Knowledge of audit / compliance, privacy and regulatory requirements and its applications in SAP application security design.
- Experience in creating Business Rules using BRF+ and MSMP workflows, configurations, analyzing and Identifying issues in MSMP workflows and recommending solutions for the same.
- Must have in-depth knowledge and experience in SAP GRC Access control functionalities ARM, ARA, EAM and BRM and Process Control functionalities – CCM and Manual Control monitoring.
- Independently handle the Configurations, maintain Master data both in Access control and Process Control. Including MDUG template preparation and upload.
- Administration of SAP GRC configuration, SOD rule sets, workflows and maintaining approvers for user provisioning, emergency access.
- Expertise in design and deliver SAP IAG solution tailoring to organization’s requirements.
- Would be an asset to have certifications like SAP GRC certifications, CRISC, CISA, or similar.
- Bachelor’s Degree required in computer or applied science, business, or a related field.
- Must be legally authorized to work in Canada.