SAP Access Control Engineer
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a SAP Access Control Engineer based in United States.
This remote opportunity is designed for an experienced SAP security professional who can strengthen enterprise access governance and compliance frameworks.
The role focuses on designing, implementing, and maintaining secure SAP environments across complex business landscapes.
You will contribute to authorization strategy, role management, audit readiness, and risk mitigation initiatives.
Working closely with technical teams, compliance stakeholders, and business owners, you will help ensure secure and efficient SAP operations.
The position requires deep expertise in SAP GRC, access controls, and modern SAP cloud security practices.
You will play a key role in protecting critical systems while improving governance, scalability, and operational excellence.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a SAP Access Control Engineer based in United States.
This remote opportunity is designed for an experienced SAP security professional who can strengthen enterprise access governance and compliance frameworks.
The role focuses on designing, implementing, and maintaining secure SAP environments across complex business landscapes.
You will contribute to authorization strategy, role management, audit readiness, and risk mitigation initiatives.
Working closely with technical teams, compliance stakeholders, and business owners, you will help ensure secure and efficient SAP operations.
The position requires deep expertise in SAP GRC, access controls, and modern SAP cloud security practices.
You will play a key role in protecting critical systems while improving governance, scalability, and operational excellence.
Accountabilities:
- Design, implement, and maintain SAP authorization concepts, role structures, and access models based on business requirements and least-privilege principles.
- Build and manage SAP roles including master, derived, composite, and business roles across S/4HANA, ECC, and Fiori environments.
- Configure and operate SAP GRC Access Control solutions, including Access Risk Analysis (ARA), Access Request Management (ARM), Business Role Management (BRM), and Emergency Access Management (EAM).
- Perform segregation-of-duties analysis, identify access risks, and support remediation efforts with business process owners and audit teams.
- Manage SAP user provisioning workflows, approval processes, and integrations with identity management platforms.
- Support SAP GRC Process Control activities, continuous controls monitoring, and policy compliance initiatives.
- Implement and maintain security configurations for SAP Fiori, SAP BTP, and cloud-based SAP applications.
- Support compliance audits including SOX, GxP, and PCI requirements by providing documentation, analysis, and remediation support.
- Monitor SAP security updates, coordinate remediation activities, and collaborate with Basis and infrastructure teams.
- Maintain detailed technical documentation including security designs, configurations, procedures, and operational guidelines.
- Mentor junior team members and contribute to security best practices and knowledge-sharing initiatives.
- Bachelor’s degree in Computer Science, Engineering, Information Technology, or a related technical discipline.
- Five or more years of professional experience in SAP Security and SAP GRC within enterprise environments.
- Strong knowledge of SAP authorization concepts, role design, and access governance methodologies.
- Hands-on experience with SAP GRC Access Control modules including ARA, ARM, BRM, and EAM.
- Experience supporting SAP audits, compliance reviews, and remediation activities.
- Experience securing SAP Fiori applications, SAP BTP environments, and cloud-based SAP solutions.
- Familiarity with SAP Identity Management or third-party identity governance and administration tools.
- Working knowledge of SAP GRC Process Control and continuous compliance monitoring.
- Understanding of regulatory frameworks such as SOX, GxP, and PCI.
- Strong analytical, troubleshooting, documentation, and communication skills.
- Preferred experience with SAP Security or GRC certifications, SAP Cloud Identity services, HANA security, SCIM integrations, SAP RISE/Grow security models, or similar enterprise security frameworks.
- Competitive annual salary range of $100,000–$150,000.
- Fully remote work opportunity within the United States.
- Full-time direct employment opportunity.
- Opportunity to work on complex enterprise SAP security environments.
- Career growth potential within cloud, enterprise technology, and cybersecurity domains.
- Exposure to modern SAP platforms including S/4HANA, BTP, Fiori, and identity management solutions.
- Collaborative environment focused on innovation, technical excellence, and professional development.
The SAP Access Control Engineer will be responsible for managing enterprise SAP security solutions, ensuring appropriate access controls, compliance alignment, and reliable security operations across SAP platforms.
Requirements:
The ideal candidate brings strong SAP security expertise, hands-on GRC experience, and the ability to collaborate across technical and business teams to deliver secure enterprise solutions.