SAP Security & GRC Consultant (S/4HANA & Fiori)

Client of YALLO Retail

Job Title: SAP Security & GRC Consultant (S/4HANA & Fiori)

Job Type:Permanent

Location : Riyadh

Experience:8+yrs

We are seeking an experienced SAP Security & GRC Consultant with strong expertise in SAP S/4HANA, Fiori Security, and SAP GRC (Access Control). The role involves end-to-end security design including role redesign, GRC enhancements, access request management, and implementation of customized rulesets aligned with business requirements.

Key Responsibilities:

SAP Security (S/4HANA & Fiori):

• Design and implement business roles and derived roles for SAP S/4HANA

• Configure and manage Fiori catalogs, groups/spaces, and OData services

• Perform PFCG role creation, SU24 proposal maintenance, and authorization troubleshooting

• Ensure Fiori launchpad security and app-level authorization control

• Role Redesign initiatives based on business process mapping

• Implement single/derived/composite roles strategy

• Align roles with organizational structure (company codes, plants, etc.)

• Optimize roles to reduce redundancy and improve compliance

SAP GRC (Access Control):

• Configure and support:

• Access Risk Analysis (ARA)

• Access Request Management (ARM)

• Emergency Access Management (EAM)

• Business Role Management (BRM)

• Design and maintain customized rulesets (SoD & critical access risks)

• Perform risk analysis, mitigation control design, and compliance reporting

• Integrate SAP GRC with S/4HANA, Fiori, and other systems

• GRC Enhancements

• Implement workflow enhancements for access requests

• Customize MSMP workflows and BRF+ rules

• Enhance risk ruleset based on project-specific requirements

• Automate provisioning and approval processes

• Access Request Management

• Handle end-to-end ARM configuration

• Define request types, approval stages, and provisioning settings

• Monitor and resolve access request issues and workflow bottlenecks

Audit & Compliance:

• Support internal/external audits

• Provide SoD reports, firefighter logs, and compliance evidence

• Ensure adherence to security policies and regulatory standards

Required Skills & Experience:

• 8+ years of SAP Security & GRC experience

• Strong hands-on in SAP S/4HANA Security & Fiori Authorization

• Extensive experience in SAP GRC 12 Access Control

• Experience in role redesign and large transformation projects

• Expertise in custom ruleset design and SoD analysis

• Knowledge of MSMP workflow, BRF+, and GRC configurations

• Experience in integration with SAP BTP and cloud systems (preferred)

Preferred Skills:

• Experience in SAP BTP Security / IAS / IPS

• Knowledge of Fiori Spaces & Pages architecture

• Exposure to MDG, SCM, SRM, FI modules security

• Understanding of automated role mining tools

• Soft Skills

• Strong stakeholder communication

• Ability to handle multiple entities / large-scale implementations

• Problem-solving and analytical mindset

• Ability to work under tight deadlines