SAP Security & Authorization expert

Functie-eisen

Security expert to lead Authorization Projects


Objectives of the position:

- Define an authorization concept per project
- Define a security strategy per project and domains or reuse if possible
- Perform analysis impact on the current projects to avoid impacts in built roles
- Secure Role build (planning, workload assessment, tests, …) without SoD conflicts
- Manage SoD conflicts

Required Skills:
- Strong security skills in ECC, BW, BPC, MDG, HANA, SAP Fiori (Transactional, Analytical, Factsheets)
- Capacity, in full autonomy, to organize and lead workshops with business, consultants to discuss about business rules definition (authorization restrictions, functional fields to be upgraded in organizational fields, …), SoD conflicts discussion, and define authorization concept for build of roles.
- Capacity to steer people and actions in order to manage planning milestones as well as realization efficiency
- Strong operational leadership to coordinate all actions with business stakeholders, functional and technical consultants, and able to challenge business, consultants, developers to define the best strategy of solution implementation versus authorization in term of role and authorization tests

Required Knowledge:
- Functional experience/knowledge in Finance, Controlling, Sales, Purchasing, Logistics, Warehousing, MRO, Pool Management, Internal Control, Audit, SAP IDM and SAP Access Control, Solution Manager
- From Finance, Controlling, Sales, Purchasing, Logistics, Warehousing, MRO, Pool Management, Internal Control, SAP IDM and SAP Access Control business processes able to define Role Design matrix


Abilities to deliver:

- Able to define/design Role Design Matrix
- Able to define/design Role Build Matrix
- Able to define/design Role-To-Job mapping
- Able to define SoD matrix and to update it with all adds of additional t-codes, Fiori apps, …
- Able to identify SoD conflicts in system and cross-systems
- Able to perform a technical analysis of SoD risks extraction and fix certain technical issues before organizing workshops
- Able to organize and lead workshops to discuss with business, Internal Control about SoD risks: risks impacts, what are the risks, propose mitigating controls if risk accepted, ….
- Able to provide all technical information for managing authorization objects and provide correct values to be maintained in roles to Switch team
- Able to highlight contamination in roles
- Able to test t-codes, BW queries, workbooks, Fiori apps
- Access Control knowledge: firefighter management, ruleset update, mitigating controls management, analysis, …
- Able to update SoD matrix and translate it in technical information for providing to Access Control consultant
- IDM knowledge: privileges, context linked to requestors, approvers, IDM business roles definition, ….
- Capable to manage a team and challenge business

Solliciteer Direct