SAP Application Security Consultant
Posted 2 days ago by Experis
£550 Per day
Inside
Onsite
London
Summary: The SAP Application Security Consultant role involves embedding within a UK Government SAP S/4HANA programme to establish a secure and compliant security model. The consultant will oversee the full lifecycle of SAP security design and implementation, focusing on role design, authorisation configuration, and compliance with security policies. A strong understanding of Fiori authorisation concepts and experience with IAM solutions is essential for this position. Candidates must have SC clearance or be eligible for it, along with the right to work in the UK.
Key Responsibilities:
- Design and implement SAP security models for the S/4HANA programme.
- Conduct role concept design and authorisation object configuration.
- Perform Segregation of Duties (SoD) analysis and remediation.
- Produce and maintain security documentation, including role matrices and access control policies.
- Provide expert advice on security-by-design principles to workstreams.
- Act as the key point of escalation for security incidents and access queries.
- Support audit, compliance, and penetration testing activities.
- Integrate SAP security with IAM solutions and SSO frameworks.
- Utilize GRC tools, preferably SAP GRC Access Control.
Key Skills:
- Strong understanding of Fiori authorisation concepts.
- Experience with IAM solutions and SSO frameworks.
- Knowledge of NCSC guidance for enterprise security.
- Experience with GRC tools, preferably SAP GRC Access Control.
- Ability to produce comprehensive security documentation.
- Expertise in security policies and compliance.
- Strong communication and advisory skills.
Salary (Rate): £550/day
City: London
Country: UK
Working Arrangements: on-site
IR35 Status: inside IR35
Seniority Level: Senior
Industry: IT
SAP Application Security Consultant
London based and minimum of 3 to 4 days onsite
12 Months SC eligible would be considered but SC cleared are preferred
£550
We are seeking a specialist SAP Application Security Consultant to embed within a UK Government SAP S/4HANA programme and deliver a robust, compliant, and well-governed security model. You will be responsible for the full lifecycle of SAP security design and implementation, including role concept design, authorisation object configuration, Segregation of Duties (SoD) analysis, and remediation across both SAP GUI and SAP Fiori environments.
A strong understanding of Fiori authorisation concepts - including business catalogues, business groups, and Fiori Launchpad security - is essential, as is experience integrating SAP security with Identity Access Management (IAM) solutions and Single Sign-On (SSO) frameworks. You will work to security policies and support audit, compliance, and penetration testing activities throughout the programme.
The successful candidate will produce and maintain comprehensive security documentation including role matrices, SoD rulesets, and access control policies, ensuring alignment with Government Security Classifications and Cabinet Office guidance.
You will provide expert advice to functional and technical workstreams on security-by-design principles and act as the key point of escalation for security incidents and access queries. Experience with GRC tools (SAP GRC Access Control preferred) and a working knowledge of NCSC guidance for enterprise security will be advantageous.
Due to the sensitive nature of this UK Government programme, SC clearance is required; active SC clearance is highly desirable, with eligibility for SC being the absolute minimum. Candidates must have the right to work in the UK and consent to pre-employment security vetting.