Manager | SAP Security & GRC AC | Bengaluru | SAP

Role Overview We are seeking an experienced Manager SAP Security & GRC Access Control to lead SAP Security operations, govern access management, and drive compliance initiatives across SAP landscapes (ECC/S/4HANA). The ideal candidate will manage end-to-end SAP security design, user administration, role governance, GRC AC workflows, audits, and risk remediation. Key Responsibilities SAP Security Leadership & Governance Lead the SAP Security team handling provisioning, authorization design, and role maintenance. Oversee role design, redesign, and SoD (Segregation of Duties) compliance across all SAP environments. Ensure strong role governance, standardization, and documentation practices. Act as the Security SME during implementations, upgrades, rollouts, and migrations. GRC Access Control (AC) Management Manage full lifecycle of SAP GRC AC modules : Access Request Management (ARM) Access Risk Analysis (ARA) Emergency Access Management (EAM/Firefighter) Business Role Management (BRM) Maintain GRC rulebooks, mitigate risks, and administer firefighter IDs. Monitor SoD risks and drive remediation plans with business and IT owners. SAP Landscape & Integration Expertise Manage security across multiple systems: ECC / S/4HANA BW/BI EWM / TM CRM / SRM Fiori / Gateway Ensure secure integration with non-SAP systems and interfaces. Work closely with Basis, Functional, and Audit teams for cross-functional solutions. Required Skills & Qualifications Strong hands-on experience in ECC and/or S/4HANA Security concepts . Expertise in: User & role administration SoD analysis & mitigation GRC AC modules SU24, PFCG, SUIM, ST01, ST22, and related tools Deep understanding of SAP authorization concepts and access control frameworks. Strong experience working with audits, compliance teams, and risk functions. Ability to lead teams, run projects, and communicate with senior stakeholders. Good to Have Experience in S/4HANA migration projects. Exposure to IDM, SAP Fiori Security, and cloud product security. Working knowledge of SAP CPM, Ariba, SuccessFactors, or Concur Security. SAP Security or GRC certification.