Sr. SAP Security and GRC Developer

Clearance Level
None
Category
Technology Consulting
Location
Remote, Working from the USA
Key Skills For Success

AWS Cloud Computing

Leadership

SAP Governance Risk and Compliance (SAP GRC)

SAP HANA

SAP HANA Security

REQ#: RQ169512
Public Trust: MBI (T2)
Requisition Type: Regular
Your Impact

Own your opportunity to serve as a critical component of our nation’s safety and security. Make an impact by using your expertise to protect our country from threats.

Job Description

Please be aware that this program only accepts U.S. Citizens or Green Card Holders / Permanent Residents.

Transform technology into opportunity as a Sr. SAP Security / GRC Developer with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you’ll be at the forefront of innovation and play a meaningful part in improving how agencies operate.


At GDIT, people are our differentiator, and as a Sr. SAP Security / GRC Developer you will help ensure today is safe and tomorrow is smarter.  

HOW A SR. SAP SECURITY AND GRC DEVELOPER WILL MAKE AN IMPACT:

  • Work side by side with business leaders to solve complex client challenges.

  • Responsible for steady state maintenance and enhancements of SAP ECC, S/4 HANA Security and SAP CCM process workstream.

  • Troubleshoot security access issues, interacting with key functional/business stakeholders for providing a resolution to SAP Security/GRC errors/exceptions.

  • Keep current of the latest advancements on S/4 HANA CCM and other emerging authorization concepts.

  • Analyze and identify issues in MSMP workflows and recommend solutions

  • Administer SAP GRC configuration, SOD rule sets, workflows and maintain approvers for user provisioning and emergency access.

  • Analyze standard Tcodes and custom Tcodes added to SAP roles

  • Assess Tcodes to Update SOD ruleset

  • Perform Segregation of Duties analysis and support and manage the remediation and mitigation of risks in consultation with process and risk owners

  • Become a subject matter expert on risks associated with application security exposures and solution proposals to eliminate/ minimize risk

  • Work with the internal security teams to ensure compliance.

  • Create SOP necessary for GRC procedures, and security role designs.

WHAT YOU’LL NEED TO SUCCEED:

  • Experience working on HANA DB Security as well as understanding of leading practices as it relates to ERP security. Security experience with S/4 HANA

  • Deep expertise working on SAP Fiori authorization concepts - Catalogs, Groups, oData services.

  • Experience with SAP Hana AWS Cloud Platform.

  • Experience in configuration and implementation of SAP GRC Access Control modules and process Control knowledge across all environments such as dev, test, QA, Prod, etc.

  • Strong understanding of Segregation of Duties frameworks.

  • Strong understanding of various SAP authorization concepts catering to SAP ECC, SAP S/4 HANA systems and SAP GRC Access & Process Control (10.x and 12.x).

  • Experience in GRC activities for minor enhancements and support pack/version upgrades.

  • Experience working on maintenance of GRC master data, running risk analysis, batch job monitoring, audit & compliance support activities (user management controls, access certification, etc.), BRF+ and MSMP workflows maintenance.

  • SOX Compliance, SOD and SAP IT General Computer Controls experience.

  • Experience with SAP GRC Access control functionalities: ARM, ARA, EAM and BRM and Process Control functionalities: CCM and Manual Control monitoring.

  • Experience with Configurations, maintaining Master data both in Access control and Process Control, including MDUG template preparation and upload.

  • MSMP Workflow configuration experience.

  • Expert understanding of SAP's security authorization concepts and profile generator.

  • Ability to understand various compliance requirements that impact security and provide solutions to address them.

  • Ability to provide technical oversight and guidance across multiple projects.

  • Experience working with cross functional team members.

OTHER REQUIREMENTS:

  • Bachelors Degree

  • 10+ years of relevant experience

  • SAP Certified Consultant plus

  • CISSP, CISM, or CISA certification plus


GDIT IS YOUR PLACE:

  • 401K with company match

  • Comprehensive health and wellness packages

  • Internal mobility team dedicated to helping you own your career

  • Professional growth opportunities including paid education and certifications

  • Cutting-edge technology you can learn from

  • Rest and recharge with paid vacation and holidays

Work Requirements
Years of Experience

10 + years of related experience

* may vary based on technical training, certification(s), or degree

Certification

Travel Required

Less than 10%

Salary and Benefit Information

The likely salary range for this position is $110,000 - $165,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
View information about benefits and our total rewards program.

About Our Work

We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.