Bridgephase - Chantilly, VA

posted 3 days ago

Full-time - Mid Level
Chantilly, VA
Publishing Industries

About the position

We are seeking a skilled SAP Security Specialist to lead the security and controls team in delivering and maintaining solutions tailored to our client's complex needs. This hands-on role requires deep expertise in SAP, specifically in managing SAP application security and GRC Access Control, with a focus on SAP ECC and SAP S/4 HANA systems. The position is based on-site in Chantilly, VA, and involves adapting to evolving responsibilities as client needs change.

Responsibilities

  • Manage SAP application security and GRC Access Control from development through production, focusing on SAP ECC and SAP S/4 HANA systems.
  • Lead Security/GRC implementations and maintenance, including minor enhancements, support pack updates, and version upgrades.
  • Oversee GRC Access Control (10.x and 12.x) activities, including master data creation and maintenance, risk analysis, remediation, batch job monitoring, and audit/compliance support.
  • Troubleshoot SAP Security and GRC issues by collaborating with key functional/business stakeholders.
  • Stay informed on advancements in SAP ECC, S/4 HANA, and new security authorization concepts, applying this knowledge to security vulnerabilities and mitigation.
  • Support NIST, SOX, SOD, and SAP IT General Controls compliance, providing security solutions to address regulatory requirements.
  • Provide training to team members and client counterparts, ensuring ongoing development and technical skill growth within the team.

Requirements

  • 4+ years' experience in SAP application security management and GRC Access Control across the full project lifecycle.
  • Strong understanding of SAP authorization concepts for ECC and S/4 HANA systems.
  • Hands-on expertise with GRC data management, compliance activities, BRF+ and MSMP workflows.
  • Knowledge of security risks and application vulnerabilities, with skills to propose and implement mitigation.
  • Familiarity with NIST, SOX, SOD, and IT general controls, with solutions to ensure compliance.
  • U.S. citizenship due to client requirements.

Nice-to-haves

  • Experience in GRC Access Control (10.x and 12.x) tools and frameworks.
  • Hands-on in compliance support activities such as user management controls, access certification, and audit response.
  • Ability to support and mentor junior team members.

Benefits

  • Competitive compensation and a flexible PTO plan
  • 401k plan with 6% matching (zero vesting period)
  • Health, medical, and vision benefits
  • Professional development budget for certifications and skills-building
  • Paid community service days and social outreach opportunities
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service