GRC Consultant

ICM America is looking for an experienced GRC consultant with the below outlined job description. Our client is in the financial sector with various locations. The job site is in Northern Jersey, occasional travel to Chicago might be required. This is an urgent requirement – interviews to be set up this week.

Job description for GRC – heavy in Security/Authorization:

We are looking to conduct a GRC Proof of Concept first to ensure that the product meets our requirements and then do the full GRC implementation. The GRC role is someone to guide us throughout the project and do the actual GRC configuration. Our internal BASIS team will do the installation but certainly may need some assistance or if that is covered in your proposal we would consider. The project covers 3 key areas:

  • Installation and implementation of GRC module itself
  • Redesign of existing security roles – assumed to be done by client staff but may need some input/assistance
  • Integration of SAP modules with Windows/Network sign-on

The project has kicked off now and tentatively runs through April but will depend on how long it takes to do the 3 items above in the scope and there will probably be multiple implementations based on readiness.

Key details of objectives of POC:

Security Roles

  • Restriction of client level access
  • View and/or Entry access based on LE or LOB hierarchy
  • View and/or Entry restrictions based on Corporate versus Local GAAP
  • Park and Post Segregation of Duties
  • Account level viewing restrictions (example HR accounts)
  • Private Bank Ledger data sensitivity
  • Simplification of security design with the implementation of business roles and elimination of duplicate roles, transaction codes

GRC Core Functionality

  • Firefight IDs provisioning and tracking process using the GRC tool
  • Certification process
  • Role re-certification
  • User re-certification
  • Access risk reviews
  • Segregation of Duties access violation Reporting
  • Real time detective controls and transaction monitoring
  • Role approval process in GRC in conjunction with our current EURC model
  • Centralized access and identity management across multiple application landscapes
  • Rule definition for access and authorization risks
  • Customizable dashboard reporting capabilities

General GRC requirements:

  • Minimum 5 years’ experience in SAP security design, implementation, and administration
  • Minimum of 5 years of GRC 10.0 implementation and/or Production support experience, with a good understanding of SAP security concept specifically for GRC-Access Control and Process Control Modules
  • Development of GRC Security Strategy as applicable to SAP application suite
  • Design and deploy custom GRC reporting based on business requirements
  • Experience with configuration of new roles within SAP GRC Business Role Management
  • Experience in coordination of regular review of user access on monthly super user review, monthly and quarterly critical role review and quarterly user account review
  • Experience in interface support for GRC
  • Ongoing maintenance of the software configuration within the SAP GRC 10.0 applications
  • Knowledge of SoD (segregation of duties) analysis, sensitive transactions analysis, SAP development (includes ABAP), SAP modules, Transport System, Basis Component, (Web Application Server or WAS), NetWeaver
  • Experience with workflow functionality in SAP GRC Access Request Management
  • Strong knowledge in provisioning to SAP LDAP and SAP Enterprise Portal platforms for ABAP Roles, UME Roles, and Portal Roles/Groups
  • Ability to work directly with SAP and consultants to analyze and resolve technical issues
  • Strong written and verbal communication skills

Click here to apply