SAP Security GRC - Manager KPMG

About KPMG

KPMG firms operate in 145 countries and territories and employed more than 236,000 people in FY21, serving the needs of business, governments, public-sector agencies, not-for-profit organisations, and the capital markets through their audit and assurance practises. KPMG is committed to quality and service excellence in everything we do, bringing our best to clients and earning the public's trust through our professional and personal actions and behaviours.

Job Description

The ideal candidate for this position will succeed if they possess deep knowledge and technical expertise about the company and the industry. This is crucial as they will play a central role in the decision-making process, collaborating with individuals from different teams as needed. Additionally, they will be responsible for overseeing specific personnel. The candidate should have 8-12 years of relevant experience in a similar role, preferably with a Big 4 firm. Key Responsibilities: - Experience in developing and implementing the full suite of SAP GRC products, specifically SAP GRC Access Control and SAP GRC Process Control. Familiarity with other SAP applications such as HANA, S4, Fiori, Lumira, IDM, GRC Risk Management, Audit Management, and Fraud Management is desired. - Proficiency in performing Solution Architect tasks, including defining solutions in response to client requests, technical design, and development of SAP GRC AC or PC functions for programs, projects, and change requests. - Experience in end-to-end SAP GRC project implementations, conducting workshops, managing and planning for UAT, Regression Testing, Cutover, and Hypercare activities. - Expertise in developing and implementing SAP Security (Fiori, ECC, and S/4HANA), as well as designing an SoD ruleset in SAP GRC Access Control. - Translating control framework requirements into an authorization concept. - Familiarity with Fiori and/or (embedded) BW authorizations is advantageous. - Knowledge of IAM solutions and RPA in relation to internal control in SAP and SAP GRC is a plus. - Excellent command of English, both spoken and written. - Willingness to develop new technical skills rapidly. Educational Qualifications: - BE/B-Tech/MCA/BSC-IT/MBA Certifications: - SAP Certified (Security/GRC), CISA, CRISC, CISSP, CCSK, etc., cleared/certified preferred. Mandatory Technical & Functional Skills: - Design, development, go-live, and support of SAP Security and GRC projects within an entire IT project lifecycle. - Implementation of comprehensive SAP Fiori backend/frontend solutions. - Additional experience with SAP Analytics Cloud, SAP IAG, SAP HANA DB, SAP BTP Security, GRC Process Controls would be advantageous. - Significant experience, in-depth knowledge, and expertise in at least one of the SAP functional modules (SAP MM, SD, FICO, etc.). - Understanding of security measures and auditing practices within various operating systems, applications, and databases. - Proficiency in Ruleset and Risk Analysis to propose remediations and mitigations. - Experience with using scripts and mass update tools to automate and enhance efficiency in the delivery lifecycle. - Ability to identify and resolve security issues using authorization traces. - Collaboration with business users and stakeholders to execute configuration changes, testing, and cutover activities.,