Join one of the world’s largest biotech companies

SAP GRC

Your responsibilities

• SAP GRC 12 Access Risk Analysis
• Creating and maintaining rule sets
• Defining and maintaining Segregation of Duties (SoD) risks and critical actions/permissions
• Configuring the risk analysis engine (synchronization jobs, background jobs, etc.)
• SAP GRC 12 - Access Request Management
• Workflow configuration and maintenance
• MSMP debug log analysis
• Supporting access requests administration
• Troubleshooting web services and managing Firefighter log review processes
• SAP GRC 12 - Business Roles Management
• Creating and maintaining Business Roles
• Synchronizing roles and managing role-specific authorizations
• SAP Authorizations & SAP BASIS (Basic Knowledge)

Our requirements

• Advanced technical knowledge of SAP GRC 12 system Access Risk Analysis module:
• Rule sets creation and maintenance
• Functions and Risks (SoD and Critical Actions/Permissions) definition and maintenance
• Organization Rules maintenance
• Configuration of risk analysis engine (synchronization jobs, background jobs etc.)
• Fiori and NWBC user interface
• Module specific authorization roles creation and maintenance
• Advanced technical knowledge of SAP GRC 12 system Access Request Management module
• Workflow configuration and maintenance
• MSMP Debug log read and understanding
• Support of access requests administration
• Module web services usage monitoring and logging, troubleshooting
• Configuration and management of workflow based Firefighter log review and assignment processes (done via ARM)
• EAM module configuration and synchronization jobs execution
• Advanced technical knowledge of SAP GRC 12 system Business Roles
• BRM methodology creation and maintenance
• Roles synchronization
• Logs review and fixing (especially for approval of business roles process)
• Business Roles creation and maintenance.
• Understanding of Business Roles concept.
• Module specific authorization roles creation and maintenance
• SAP Authorizations concepts, model and how to at least advanced knowledge (authorization checks, roles based system approach, roles definition and maintenance, objects purpose, audit and authorization traces etc).
• Segregation of Duties business concept understanding.
• Understanding of business processes used where Segregation of Duties risks appear (at least basic understanding of context).
• At least basic SAP BASIS knowledge: RFC destinations maintenance, SICF services maintenance, SAP OSS GRC and Security specific Notes review and assessment
• Additional benefit: SAP GRC Process Control knowledge (management of data sources, business rules, business rules parameters, scheduling of background jobs and assignment of controls to organizations).
• Previous working experience in validated environments is very good to have but not mandatory