EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.
We are seeking a skilled and experienced Senior/Lead SAP Security Consultant to join our team.
This role involves spearheading the design, implementation, and management of SAP security solutions while ensuring robust protection and seamless access management for critical business systems.
Responsibilities
- Lead the implementation of SAP Security solutions, including GUI authorization, role-based design, and Fiori-first access strategy, while ensuring compliance and adherence to best practices
- Oversee the provisioning/deprovisioning of user access, implement automation for streamlined access management, and manage compliance with Segregation of Duties (SoD) standards, remediation, and risk mitigation
- Manage and optimize SAP GRC modules, including Access Risk Analysis, Emergency Access Management, Access Request Management, and Business Roles Management, to enhance security governance
- Conduct ongoing security health checks for activities like onboarding/offboarding, inactive user audits, and excessive access reviews. Ensure SAP systems align with IT standards (e.g., ITIL, SOX) and provide support for auditing processes
- Serve as the escalation point for resolving complex authorization issues, ensuring system stability and efficient user access provisioning across SAP environments
- Develop and implement effective monitoring practices and controls for SAP systems, including auditing tools and policies to detect and mitigate security risks
- Utilize tools such as ServiceNow (SNOW), Jira, and ChaRM to manage incidents, changes, and requests effectively
- Act as a trusted advisor and mentor within the team, providing guidance on SAP security advancements, emerging best practices, and innovative approaches to security challenges
Requirements
- Hands-on experience with SAP Security, including classic GUI authorizations and role-based design
- SAP roles management, troubleshooting, users’ administration, custom tcodes/apps compliance management
- Fiori authorization conception, app access provisioning, and access issues troubleshooting. Fiori's first approach methodology
- Access provisioning / deprovisioning automation
- Segregation of Duties Methodology. Rule set management. SOD Risks remediation and mitigation
- GRC Access Control – Access Risk Analysis, Emergency Access Management, Business Roles Management, Access Request Management
- Security system ongoing Health check controls – onboarding/off-boarding, inactive users, users’ termination, excessive access management, etc
- SAP Security auditing
- Experience with Application Management Services and tools (SNOW, Jira, Charm, etc)
- General understanding of security standards (ITIL, SOX, etc.)
Nice to have
- GRC Process Control – data sources management, business control rules configuration, continuous monitoring
- GRC Risk Management
- SAP BW, HR, HANA DB authorizations
- SAP Cloud security & authorization and access provisioning conception
- BTP authentication and authorization concept. IdP providers. Identity Access Service. IAG experience
- Any non-SAP access management tools usage, like Saviynt, SalePoint, Security Bridge, etc
- Cyber Security hands-on experience. SAP Enterprise Threat Detection. UI Masking / UI Logging
- End-to-end SAP Security system implementation
We offer
- We believe that the greatest strength of the company is its people. EPAM is fully committed to help its employees to reach their full potential and achieve their professional goals through continues learning. With this in mind, we would like to introduce to you few of the many opportunities and services which we believe will help you expand your current knowledge:
- Full access to cutting-edge tools and technologies
- Competitive compensation depending on experience and skills
- All-around Social package: professional & soft skills training, medical & family care programs, sports
- Relocation opportunities
- Free English classes
- Unlimited access to LinkedIn learning solutions
- Continuous experience exchange with experts and professionals worldwide
- Friendly team and comfortable working environment
- Engineering, corporate, and social events within and outside the Company
- Flexible working schedule
- Opportunities for self-realization
