SAP GRC Access Control Security Specialist (Cybersecurity)

TL;DR

SAP GRC Access Control Security Specialist: Manages and optimizes SAP GRC Access Control systems, ensuring stability, automation, and audit readiness for critical technology systems with an accent on daily operations management, performance improvement, and integration of SAP security with enterprise identity platforms. Focus on leading the transition from SAP IDM, maintaining SoD rulesets, and preparing for and supporting audits.

Location: Fully Remote (Company located in Bucharest, Romania)

Company

hirify.global designs, builds, manages, and modernizes mission-critical technology systems that the world depends on every day, serving Fortune 100 clients across various industries globally.

What you will do

• Manage daily operations of SAP GRC 12 Access Control (ARA, ARM, BRM, EAM), ensuring stability, automation, and audit readiness.
• Measure and improve performance via KPIs and monitoring (ARM SLA, EAM log reviews, SoD false‑positive rate).
• Plan and execute upgrades and service packs, including testing, cutover, and validation.
• Integrate SAP security with enterprise identity platforms and directory services for reliable provisioning and de‑provisioning.
• Lead the transition from SAP IDM to an enterprise identity governance platform, defining secure joiner/mover/leaver processes and safely decommissioning IDM.
• Maintain and optimize SoD rulesets, onboard new cloud applications, and sustain governance through mitigating controls and periodic access reviews.
• Prepare and support audits, providing clear evidence and driving timely remediation.

Requirements

• 10+ years in SAP security with deep, hands‑on expertise in SAP GRC Access Control (ARA, ARM, BRM, EAM).
• Proven SoD design, remediation, and governance experience; EAM and BRM proficiency.
• Experience managing SAP IDM and leading transitions to enterprise identity governance platforms.
• Demonstrated success in GRC upgrades, service packs, and lifecycle management in complex landscapes.
• Strong audit/compliance background (e.g., SOX) and clear stakeholder communication.
• Advanced troubleshooting and problem‑solving skills.

Nice to have

• Exposure to RISE with SAP and complex hybrid/cloud landscapes.
• Familiarity with SAP Cloud Applications and related security models.
• Scripting/automation skills (e.g., BRF+, workflow); ability to read ABAP.
• Relevant certifications (SAP GRC AC, SAP Security, CISM/CISA/CRISC) or equivalent experience.

Culture & Benefits

• Opportunities for career growth, including experience with Cloud Hyperscalers and certifications in major platforms.
• Work with customers in a variety of industries, from banking to retail, allowing for knowledge expansion or specialization.
• Emphasizes a growth mindset, customer focus, and an open, inclusive work environment with hirify.global Inclusion Networks.
• Access to industry-leading learning programs to receive certifications from providers like Microsoft, Google, and Amazon.
• Benefits focused on well-being, diversity, and supporting employees and their families, along with a platform for volunteering and giving.