Platform Engineer, SAP GRC

Responsibilities and Accountabilities: SAP GRC Configuration and Management: Configure, manage, and optimize SAP GRC modules, including Access Control, Process Control, and Risk Management, to ensure effective governance, risk mitigation, and compliance with internal and external regulations. Develop and manage SAP security roles and authorizations across SAP ECC, S/4HANA, SAP Fiori, SAC, other modules and also support SAP security upgrades and patching activities Conduct risk analysis and remediation using SAP GRC and Monitor and manage SAP system security logs and alerts Application Control Implementation: Design and implement robust application controls within SAP and other Applications / systems to safeguard against unauthorized access, data breaches, and fraud. Ensure controls are in place for critical business processes and are aligned with best practices. Compliance and Auditing: Conduct regular audits and compliance checks within SAP and other JSOX related systems to identify potential vulnerabilities or non-compliance issues. Work closely with internal and external auditors to facilitate audits and address findings. Risk Assessment and Mitigation: Perform risk assessments related to SAP and other applications and GRC processes. Develop and implement strategies to mitigate identified risks and ensure that risk management practices are integrated into the Enterprise platforms and applications. Incident Response and Resolution: Respond to security incidents and compliance breaches within SAP and other systems. Collaborate with DigitalX cybersecurity teams to investigate incidents, implement corrective actions, and prevent future occurrences. Training and Support: Provide training and support to SAP users on GRC processes and application controls. Develop user guides, training materials, and support documentation to enhance understanding and compliance. Continuous Improvement: Continuously monitor and evaluate the effectiveness of SAP GRC processes and controls. Recommend and implement improvements to enhance security, compliance, and efficiency. Stakeholder Collaboration: Collaborate with DigitalX, business units, and external partners to ensure SAP GRC initiatives align with business objectives and technology strategies. Communicate effectively with stakeholders to provide updates and gather feedback. Requirements

Required Qualifications:

Bachelor’s or Master’s degree in relevant field, e.g., Computer Science, Data Science, Finance. SAP GRC Expertise: Strong technical knowledge of SAP GRC modules and functionalities, including experience with configuration and management of Access Control, Process Control, and Risk Management. Understanding of Application Controls: Deep understanding of application control frameworks and the ability to design and implement controls within SAP to mitigate risks. Risk Management and Compliance: Knowledge of risk assessment methodologies, compliance requirements (e.g., JSOX, GDPR), and the ability to apply these in an SAP and other relevant enterprise applications context. Analytical Skills: Excellent analytical and problem-solving skills, with the ability to identify issues, analyze complex data, and develop effective solutions. Technical Proficiency: Familiarity with SAP architecture, security principles, and data protection practices. Strong knowledge of SAP authorization concepts, tables, objects, and transactions Communication: Strong communication and interpersonal skills, with the ability to explain complex GRC concepts to non-technical stakeholders and collaborate effectively across teams. Adaptability: Ability to adapt to changing regulatory environments and technology landscapes. Willingness to continuously learn and stay updated with the latest SAP GRC developments.

Preferred Qualifications:

Knowledge of SAP IDM (Identity Management). Experience with SAP Cloud Security and BTP. Exposure to SAP GRC Process Control and Risk Management. Understanding of ABAP code for security trace/debug purposes. 2 years of experience working with agile software design methodology for development and documentation Strong experience in Workflow , Flexible Workflows Excellent ABAP debugging and strong troubleshooting skills Strong communication and interpersonal skills Ability to interface with the business Self-motivated with dedication to continuous learning Ability to develop innovative SAP solutions. SAP Certification (not mandatory). Experience in Application of SAP correction instructions, hot notes, SPAU & SPDD during upgrades. Experience with SAP BTP, SAP IAS/IPS, and cloud platform security.

---