Manager, S4 HANA Roles & GRC Access, Controls Advisory, Technology and Transformation

As S/4 HANA Roles & GRC Access Manager, you will lead and support our SAP Security and Governance, Risk, and Compliance (GRC) initiatives. The ideal candidate will have extensive experience with SAP Security architecture and implementation, SAP GRC solutions (Access Control, Identity Access Governance), and proven experience managing teams through complex SAP implementations and security risk assessments. This role will play a crucial part in designing, implementing, and re-design of security roles, Identity and Access Governance for cross-platform ecosystems while maintaining secure and compliant SAP environments across the organisation. You will demonstrate and develop your capabilities in the following areas:

• Develop and implement S/4 HANA security and GRC strategy, design to protect the integrity and confidentiality of our clients' enterprise systems.
• Oversee S/4 HANA Security during implementation ensuring compliance embedding audit and regulatory requirements.
• Lead the design, configuration, implementation and testing of SAP GRC modules such as Access Control (AC) and Identity Access Governance (IAG).
• Understand and enforce access policy requirements for user and role/authorisation management ensuring least access principle is applied leveraging segregation of duties (SoD) principles.
• Lead typical GRC activities such as user access review and segregation of duties (SoD) analysis.
• Work with internal and client stakeholders such as technical teams, internal/external auditors and business process teams to ensure a secure and integrated solution meeting business and compliance requirements.
• Conduct risk assessments to identify and mitigate potential SAP security risks across all modules, including S/4HANA, and Fiori and other sap applications.
• Manage and mentor a team of SAP security consultants fostering their growth and ensuring high-quality performance.
• Deep understanding of IT access controls for S/4 HANA and other relevant SAP application suite.
• Understanding of Risk rulesets & compliance aspects such as "segregation of duties", sensitive access, mitigation controls., * Professional certification such as SAP Certified Technology Professional, SAP Access Control 12.0, CISSP, CISM, or other relevant security certifications.
• Qualify the criteria of UK Security clearance.
• Strong understanding of IT and Business process Controls for S/4 HANA and other relevant SAP application suite
• Knowledge & application of regulatory requirements such as SoX, GDPR etc.

As recent events have reminded us, there are no certainties in business. Risk is everywhere. But so is opportunity. Your expertise will help our clients stay one step ahead of what hasn't even been imagined yet.

Connect to your business - Technology and Transformation

Distinctive thinking, deep expertise, innovation and collaborative working. That's what connects us. That's what makes us Deloitte. If you want to help solve some of the biggest tech and transformational challenges around, join us. Together, we'll make an impact that matters.

Enterprise, Technology and Performance

Our clients want to achieve maximum value from digital transformation investments in Finance, Supply Chain and IT operations. That's where we come in. By taking a holistic view of performance improvement, including strategy, process design and technology enablement, we support the smooth operation of transformations.

Personal independence

Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints (e.g., in relation to any financial interests and employment relationships). This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) with audit clients of the firm, and also prohibitions on certain employment relationships (e.g., you are not permitted to hold a secondary employment role with SEC audit clients of the firm whilst being employed by the firm). The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request.

Connect with your colleagues

"At Deloitte you're surrounded by subject matter experts; industry experts, technology experts, and you can access that knowledge whenever you need to."

-Christian, Finance Transformation

"We have a great culture, and the number of opportunities here mean you can develop as an individual in the direction that suits you best."

You work collaboratively within diverse teams. Someone who connects with team members and shares information and ideas within the team. You always treat others with respect, clarifying expectations and confidently contributing to team discussions.

You employ critical thinking to support solving business problems. You analyse problems objectively by considering facts, relevant professional standards or research, data and differing perspectives to support solutioning. You understand the importance of technology on our stakeholders' operations for the areas we collaborate with the.

Respects the needs of colleagues and builds cooperative relationships. You embrace diversity across teams, and respects and values contributions of those from diverse backgrounds fostering a team environment., * Extensive experience in SAP security role design implementations, GRC Access Control, Identity Access Governance (IAG), user management, and authorization configuration.

• Experience in integrating SAP IAG with GRC Access Control including BTP integration and security design.
• Proficiency in SAP Security for applications such as ECC, S/4HANA, Fiori, and SAP cloud applications.
• Deep knowledge and hands-on experience of SAP authorization concepts, user roles, profiles, and SAP security best practices.
• Understand the segregation of duties requirements and embed in the security role design.
• Excellent project management skills, with the ability to manage multiple priorities, drive deadlines, and lead teams effectively.
• Responsible for presenting periodic status reporting to key stakeholders.
• Foster relationships with important collaborators to ensure seamless implementation of the solution.
• Support and guide the team in delivering high quality documentation.
• Strong analytical, problem-solving, and communication skills, with the ability to identify gaps and explain technical concepts to non-technical stakeholders.
• Excellent oral and written communication skills including in English (Proficiency)
• Ability to work under pressure and maintain a professional demeanour.

Deloitte drives progress. Our firms around the world help our clients become market leaders wherever they compete. Deloitte invests in outstanding people with diverse talents and backgrounds, empowering them to achieve more than they can elsewhere. Our work combines consulting with action and integrity. We believe that when our clients and society are stronger, so are we.