SAP GRC Controls | 100% Remote | C2C Profiles
Posted 6 days ago by 1756880269
Negotiable
Outside
Remote
USA
Summary: The SAP GRC Controls role focuses on designing, implementing, and maintaining SAP GRC Access Control solutions in a fully remote setting. The position involves performing Segregation of Duties analysis, supporting audits, and collaborating with various teams to ensure compliance and effective access governance. Additionally, the role includes developing training for users and identifying opportunities for process improvement. This position is classified as outside IR35.
Key Responsibilities:
- Design, implement, and maintain SAP GRC Access Control solutions (AC 10.x / 12.x), including:
- Access Risk Analysis (ARA)
- Access Request Management (ARM)
- Business Role Management (BRM)
- Emergency Access Management (EAM / Firefighter)
- Perform Segregation of Duties (SoD) analysis and remediation for SAP roles and users.
- Define and monitor key risk indicators (KRIs) and key performance indicators (KPIs) related to SAP controls.
- Support internal and external audits (e.g., SOX, ITGCs) by providing evidence and resolving audit findings.
- Maintain and update risk/control matrices (RCMs), narratives, and process documentation related to SAP controls.
- Collaborate with business process owners, IT security teams, and compliance teams to manage access governance and control requirements.
- Develop and deliver training for end-users and stakeholders on GRC tools and processes.
- Assist in the continuous improvement of SAP GRC processes, identifying automation opportunities.
- Monitor and ensure compliance with company policies, industry standards, and regulatory frameworks.
Key Skills:
- Experience with SAP GRC Access Control (AC 10.x / 12.x)
- Knowledge of Segregation of Duties (SoD) analysis
- Familiarity with internal and external audit processes
- Ability to define and monitor key risk and performance indicators
- Strong documentation and process management skills
- Collaboration skills with cross-functional teams
- Training and development experience
- Understanding of compliance and regulatory frameworks
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Role: SAP GRC Controls
Location: 100% Remote
Key Responsibilities:
- Design, implement, and maintain SAP GRC Access Control solutions (AC 10.x / 12.x), including:
- Access Risk Analysis (ARA)
- Access Request Management (ARM)
- Business Role Management (BRM)
- Emergency Access Management (EAM / Firefighter)
- Perform Segregation of Duties (SoD) analysis and remediation for SAP roles and users.
- Define and monitor key risk indicators (KRIs) and key performance indicators (KPIs) related to SAP controls.
- Support internal and external audits (e.g., SOX, ITGCs) by providing evidence and resolving audit findings.
- Maintain and update risk/control matrices (RCMs), narratives, and process documentation related to SAP controls.
- Collaborate with business process owners, IT security teams, and compliance teams to manage access governance and control requirements.
- Develop and deliver training for end-users and stakeholders on GRC tools and processes.
- Assist in the continuous improvement of SAP GRC processes, identifying automation opportunities.
- Monitor and ensure compliance with company policies, industry standards, and regulatory frameworks.