Job Description:

Job Title: SAP Roles and Authorizations Consultant / SAP Security Administrator

An SAP Roles and Authorizations job focuses on managing user access, ensuring security compliance, and aligning system permissions with business needs. It’s a critical role in SAP security and governance.

SAP Roles and Authorizations Job Description
Key Responsibilities
•    Design and maintain SAP roles and authorization concepts
o    Create single and composite roles using PFCG
o    Define authorization objects and field-level restrictions
•    User access management
o    Assign roles to users based on job functions
o    Handle user provisioning and de-provisioning across SAP modules (ECC, S/4HANA, BW, CRM, etc.)
•    Compliance and audit support
o    Ensure SoD (Segregation of Duties) compliance using tools like SAP GRC
o    Prepare for internal/external audits by documenting access controls
•    Troubleshooting and support
o    Resolve authorization errors and access issues (SU53, ST01)
o    Analyze and correct role conflicts or missing permissions

Required Skills and Experience
•    Strong knowledge of SAP authorization concepts, including:
o    Authorization objects, profiles, and role design
o    SU01, PFCG, SUIM, ST01, SU53
•    Experience with SAP GRC Access Control 
•    Familiarity with audit and compliance frameworks (e.g., SOX)
•    Ability to interpret business requirements into secure access models
•    Excellent documentation and communication skills

Typical Background
•    Degree in IT, Computer Science, or related field
•    10–15 years of experience in SAP security or Basis administration
•    SAP certifications in security or GRC are a plus

Nice-to-Have Fiori Skills for Roles & Auths

•    Experience designing Fiori roles using catalogs, groups, and apps in PFCG
•    Ability to configure and manage the Fiori Launchpad layout and user experience
•    Understanding of OData service activation and backend authorization requirements
•    Proficiency in troubleshooting Fiori access issues using SU53, ST01, and /IWFND/ERROR_LOG
•    Familiarity with navigating the SAP Fiori App Library to identify app IDs and business roles
•    Knowledge of integrating Fiori access requests and SoD checks within SAP GRC workflows
•    Awareness of CDS view authorizations and UI5 role implications in S/4HANA
•    Experience with Fiori tile personalization and role testing across devices
•    Ability to support functional teams during Fiori rollout and cutover activities
•    Understanding of Fiori-specific transport packaging and dependency handling

Soft Skills & Collaboration
•    Stakeholder Communication
o    Translating technical access needs into business language
o    Supporting functional and project teams during cutovers and go-lives
•    Documentation & Training
o    Creating role catalogs, access matrices, and user guides
o    Training end users and auditors on access flows

Get empowered by NTT DATA Business Solutions!

We transform. SAP® solutions into Value

NTT DATA Business Solutions is a fast-growing international IT company and one of the world’s leading SAP partners. We are a full service provider delivering everything from business consulting to implementation of SAP solutions, including hosting services and support.