SAP Security & GRC Consultant

Devire IT Outsourcing is a collaboration model dedicated to IT specialists based on self-employment (B2B), executing projects for clients engaged in innovative and modern ventures. The client specializes in scalable backend development, Big Data, cloud services, data engineering, and DevOps/SRE consulting, offering comprehensive software lifecycle support and agile project management for effective outsourcing.

• Very good understanding of security principles (least privilege, SoD, risk-based approach) and compliance/IKS in SAP environment
• Practical experience in SAP GRC AC (at least ARA + EAM/Firefighter; ideally ARM/BRM), including rule set maintenance and SoD simulations
• Deep experience with Fiori permissions (spaces/pages, catalogs, OData) and PFCG role design
• Strong knowledge of SAP HANA permissions (roles, privileges, HDI) and ability to read SQL for analysis
• Strong analytical skills, structured documentation approach, communication skills in German and English
• Willingness to travel to Germany for business trips
• Willingness to travel to the office in Zielona Góra

SAP GRC Access Control (AC):

• Designing, maintaining, and developing ARA analyses and rulesets
• Managing EAM/Firefighter processes including logging and review
• Handling ARM workflows and BRM catalogs if used
• Defining and maintaining SoD rules and control points

Fiori and ABAP Permissions:

• Architecture and maintenance of PFCG roles for Fiori (spaces/pages, catalogs, OData services, SICF)
• Managing transaction/object permissions, reference and technical users
• Ensuring quality through role testing and evidential documentation

SAP HANA Security:

• Designing and administering HANA roles and privileges (system/object/schema/analytical)
• Managing HDI context, permission controls, and recertifications
• Close integration with GRC controls

IKS and Audits:

• Managing audit evidence (ITGC, A1/A3 audits), recertifications/UAR
• Evidence-based processes, risk documentation, and remedial measures

Change and Automation:

• Integration with ALM/ChaRM processes
• Maintaining ticket/workflow paths
• Continuous improvement through automation, templates, and standardization

Consulting and Collaboration:

• Acting as a subject matter partner for business areas and role owners
• Ensuring clear segregation of duties (four-eyes principle)
• Knowledge transfer within the team