Role Title: Roles and Authorization Analyst
Location: Remote – travel for workshops in the UK on an ad-hoc basis (1 day a month)
Contract Duration: 6 months
Day Rate: Competitive (Inside IR35)
Deloitte
Working with the Deloitte Associate (Contractor) Programme means we can offer you the opportunity to work on a variation of industry and client related projects. Our aim is to retain the best talent and so when your project end date nears our team of Talent Community Advisors will be working with you to look at alternative projects within the firm that suit your experience should you wish to continue with Deloitte.
The Role
We are seeking an experienced Role and Authorisation Analyst to support and implement robust security solutions for our SAP landscapes. The ideal candidate will have deep expertise in SAP Security and hands-on experience with SAP tools and methodologies for managing security and compliance across SAP environments. This role will play a crucial part in designing, implementing, and re-design of security roles ensuring secure and compliant systems for our clients. You will demonstrate and develop your capabilities in the following areas:
You will demonstrate and develop your capabilities in the following areas:
* Support design and build roles, profiles, and authorizations for On-prem and cloud SAP system (e.g., ECC, S/4HANA, BW to enforce appropriate access controls.
* Support configuration and implementation of SAP Identity Access Governance (IAG) and Access Controls (AC) tool for auto provisioning and access risk management.
* Understand the segregation of duties requirements and embed in the security role design.
* Provide regular update on the task assigned and highlight any issues/dependencies.
* Contribute in producing documentation for security approach, role design matrix, and user guides.
* Prepare training content and support in knowledge transition activity.
* Understanding of IT Controls for S/4 HANA and other relevant SAP application suite
* Understanding of Risk rulesets & compliance aspects such as “segregation of duties”, sensitive access, mitigation controls
Essential Skills & Experience:
* Understanding of SAP (S/4 HANA) authorization concepts, user roles, profiles, and good practices with hands-on experience.
* Good understanding of SAP GRC Access Controls/Identity Access Governance tool.
* Ability to understand and analyze the segregation of duties report and remediate the risks from the roles.
* Ability to assess risks, conduct root cause analysis, and implement good practice solution for SAP Security issues.
* Troubleshooting skills and the ability to resolve security issues quickly and efficiently.
* Excellent verbal and written communication skills, with the ability to lead discussions, explain technical details, and collaborate effectively with the team.
* Ability to independently work under intense timelines in a client facing role and maintaining a professional demeanor.
* Proficient in the use of Microsoft Office Excel for analytics and Word, PowerPoint is a plus.
* Must hold UK Government Security Clearance.
Desirable Skills & Experience:
* Educated to degree level. Additional Professional certification such as SAP Certified Technology Professional, SAP Access Control 12.0, CISSP, CISM, or other relevant security certifications.
* Qualify the criteria of UK Security clearance.
* Strong understanding of Business process Controls for S/4 HANA and other relevant SAP application suite
IR35
As a means of managing tax, commercial and reputational risks, Deloitte prohibits the use of Associates through Personal Service Companies (‘PSCs’). All Associates must contract under PAYE arrangements through a Deloitte approved ‘Employment Company’ (aka ‘umbrella company.’)