Roles and Authorization Analyst

Social network you want to login/join with:

6 months

Competitive (Inside IR35)

Working with the Deloitte Associate (Contractor) Programme means we can offer you the opportunity to work on a variety of industry and client-related projects. Our aim is to retain the best talent, and as your project end date approaches, our Talent Community Advisors will work with you to explore alternative projects within the firm that match your experience should you wish to continue with Deloitte.

We are seeking an experienced Role and Authorization Analyst to support and implement robust security solutions for our SAP landscapes. The ideal candidate will have deep expertise in SAP Security and hands-on experience with SAP tools and methodologies for managing security and compliance across SAP environments. This role will be crucial in designing, implementing, and re-designing security roles to ensure secure and compliant systems for our clients. You will develop your capabilities in the following areas:

• Support design and build roles, profiles, and authorizations for on-premise and cloud SAP systems (e.g., ECC, S/4HANA, BW) to enforce appropriate access controls.
• Support configuration and implementation of SAP Identity Access Governance (IAG) and Access Controls (AC) tools for auto-provisioning and access risk management.
• Understand segregation of duties requirements and embed them in security role design.
• Provide regular updates on assigned tasks and highlight any issues or dependencies.
• Contribute to producing documentation for security approaches, role design matrices, and user guides.
• Prepare training content and support knowledge transition activities.
• Understand IT controls for S/4HANA and other relevant SAP applications.
• Understand risk rulesets & compliance aspects such as segregation of duties, sensitive access, and mitigation controls.
• Have a good understanding of SAP (S/4HANA) authorization concepts, user roles, profiles, and best practices with hands-on experience.
• Proficient with SAP GRC Access Controls/Identity Access Governance tools.
• Ability to analyze segregation of duties reports and remediate role risks.
• Assess risks, conduct root cause analysis, and implement best practice solutions for SAP security issues.
• Troubleshoot security issues efficiently.
• Communicate effectively, lead discussions, and collaborate with teams.
• Work independently under tight timelines in a client-facing role while maintaining professionalism.
• Proficient in Microsoft Office Excel for analytics; Word and PowerPoint skills are a plus.
• Willing to obtain UK Government Security Clearance.
• Educated to degree level; professional certifications such as SAP Certified Technology Professional, SAP Access Control 12.0, CISSP, CISM, or relevant security certifications are desirable.
• Qualify for UK Security clearance.
• Strong understanding of business process controls for S/4HANA and other SAP applications.

To manage tax, commercial, and reputational risks, Deloitte prohibits the use of Associates through Personal Service Companies (PSCs). All Associates must contract under PAYE arrangements through a Deloitte-approved 'Employment Company' (umbrella company).