SAP Security & GRC Manager

Role Title: SAP Security & GRC Manager

Location: London hybrid – travel to London Deloitte/client office on an ad-hoc basis with occasional travel to Leeds and Manchester

Contract Duration: 6 months (with potential to extend)

Deloitte Working with the Deloitte Associate (Contractor) Programme means we can offer you the opportunity to work on a variation of industry and client related projects. Our aim is to retain the best talent and so when your project end date nears our team of Talent Community Advisors will be working with you to look at alternative projects within the firm that suit your experience should you wish to continue with Deloitte.

The Role We are seeking an experienced SAP IAG Technical Consultant to lead and implement robust security solutions for an S4 Hana Transformation project for one of our Public Sector clients. The ideal candidate will have deep expertise in SAP Security and hands-on experience with SAP tools and methodologies for managing security and compliance across SAP environments. You will be responsible for designing, implementing and re-designing security roles, ensuring secure and compliant systems for our clients.

Essential Skills & Experience:

• Must be eligible and willing to obtain UK Government Security Clearance (i.e. lived and worked in the UK for a minimum for 5 years)
• Experience in SAP implementations , especially security role design, GRC Access Control, Identity Access Governance (IAG), user management, and authorisation configuration.
• Experience in integrating SAP IAG with GRC Access Control including BTP integration and security design.
• Strong understanding of SAP authorisation concepts , user roles, profiles, and SAP security best practices.
• Proficiency in SAP platforms such as ECC, S/4HANA, Fiori, and other relevant modules.
• Deep knowledge of SOX compliance , segregation of duties (SoD), GDPR, and other relevant regulatory requirements.
• Experience of conducting risk assessments to identify and mitigate potential SAP security risks across all modules, including S/4HANA, and Fiori and other sap applications.
• Ability to manage multiple priorities, drive deadlines and work with technical and functional teams.
• Strong analytical, problem-solving, and communication skills, with the ability to explain technical concepts to non-technical stakeholders
• Excellent oral and written communication skills
• Ability to work under pressure and maintain a professional demeanour.

Deliverables- responsibilities but not limited to.

• Role Design Matrix
• IAG Configuration, build and testing
• Role Build and Unit Testing
• UAT

IR35 As a means of managing tax, commercial and reputational risks, Deloitte prohibits the use of Associates through Personal Service Companies (‘PSCs’). All Associates must contract under PAYE arrangements through a Deloitte approved ‘Employment Company’ (aka ‘umbrella company.’)