SAP Security and GRC Access Control Senior Consultant Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success. Work you'll do As a Senior Consultant, you will be part of our SAP practice and will be responsible for delivering SAP ECC and S/4 HANA security implementations and assessments. Responsibilities will include assessment, design and implementation of end user security, and/or SAP GRC 10.x/12.0 Access Control. The team Our Enterprise Security offering embeds security in all aspects of digital transformation by securing a client's technical backbone while enabling secure digital transformation. Includes security architecture, secure development and deployment, end-to-end cyber cloud capabilities, application security, and security for emerging technologies and connected products. Qualifications Required: + 4+ years of experience with SAP Security and GRC Access Control + Minimum 2 end-to-end implementation projects in SAP S/4 HANA security + 2+ years of experience in designing, building, testing, and deploying business and support roles with S/4 and Fiori roles + 2+ years of experience in developing solutions for securing custom transactions, tables, and programs + 1+ year of experience in large and complex projects with multiple rollouts for countries/regions + 2+ years of experience in participating the security design workshops + 2+ years of experience working with the business process, ABAP development and organization change management workstreams on the overall project delivery + 1+ year of experience in designing, building and deploying HANA database security + 1+ year of experience in designing and implementing security for SAP reporting and analytics solutions such as SAP Business Objects, SAP Cloud Analytics and BW/4HANA + 2+ years of experience in designing, configuring and implementing SAP GRC Access Request Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM), and Business Role Management (BRM) + 2+ years of experience in building and updating Segregation of Duties (SOD) ruleset, configuring ruleset in SAP GRC 10.x/12.0 systems and performing SOD risk analysis at user and role level + 1+ year of project, budget, and resource management + Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve + Bachelor's degree + Limited immigration sponsorship may be available Preferred: + Previous consulting or Big 4 experience preferred + Professional certifications such as CISSP, CISM, or CISA is desired + Knowledge/experience in SAP identity and access governance (IAG) + Excellent written and verbal communication skills + Knowledge/experience in cloud security and cloud migrations + Knowledge/experience in IT general computer, data conversion and integration controls + Knowledge/experience in SAP business process inherent configurable controls + Knowledge/experience in data protection tools and techniques + Knowledge/experience in identity access management tools + Understand leading practices as it relates to SAP Security, and provide recommendations to clients on security role design and implementation Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.