We use cookies to offer you the best possible website experience. Your cookie preferences will be stored in your browser’s local storage. This includes cookies necessary for the website's operation. Additionally, you can freely decide and change any time whether you accept cookies or choose to opt out of cookies to improve the website's performance, as well as cookies used to display content tailored to your interests. Your experience of the site and the services we are able to offer may be impacted if you do not accept all cookies.
Role Summary As an SAP Security Consultant, you will design, implement, and maintain the security framework for a large-scale SAP S/4HANA Private Cloud environment. The core focus will be on designing, building, and testing role-based security specifically for Central Procurement (Centralized Sourcing, Purchase Orders, Supplier Management, and Procurement Analytics), ensuring adherence to Segregation of Duties (SoD) and compliance standards. Key Responsibilities 1. S/4HANA Private Cloud Role Design & Authorization • Role Design & Build: Design and build role-based security (PFCG) for S/4HANA, mapping business processes to technical roles. • Fiori Security: Implement and maintain security controls for SAP Fiori apps, including catalog and tile management. • Private Cloud Governance: Adhere to the shared responsibility model, managing application-level authorization, user identity, and role-based access. • Optimization: Update authorization defaults (SU24) for transactions and Fiori apps to ensure clean role design. 2. Central Procurement Specialized Role Designing • Central Procurement Roles: Design roles specific to Central Procurement scenarios, including Central Sourcing, Contract Management, and Purchase Order processing. • Responsibility Management: Configure "Manage Teams and Responsibilities" (Responsibility Management) to align procurement authorizations with organizational structure. • Procurement Apps Security: Create roles that secure specific Fiori procurement apps (e.g., Manage Purchase Orders, Create Supplier Invoices). • Sourcing & Supplier Management: Implement authorization controls for managing business partner master data (LO-MD-BP) and purchasing blocks. • Analytics Security: Configure security for Procurement Overview Pages and CDS view-based analytics Security Governance & Compliance (GRC) • Segregation of Duties (SoD): Perform SoD risk analysis and remediation, ensuring no conflicts exist in procurement-to-pay (P2P) roles. • Audit Readiness: Participate in SAP audit discussions and assist in resolving compliance findings. • Sensitive Access: Strictly control roles with access to sensitive or confidential data (e.g., vendor master data modification).
4. Troubleshooting & Testing • Authorization Tracing: Analyze SU53 logs, ST01/STAUTHTRACE traces, and resolve security dumps. • Security Testing: Perform unit testing and support User Acceptance Testing (UAT) for new roles, particularly ensuring Fiori apps and backend transactions work harmoniously.
Required Qualifications • Experience: 5+ years of SAP Security experience, with a minimum of 2+ years specifically in SAP S/4HANA Security. • Cloud Experience: Strong understanding of SAP S/4HANA Private Cloud Edition (PCE) or RISE with SAP security concepts. • Procurement Knowledge: Strong knowledge of SAP Procurement (MM) processes, specifically Central Procurement, Sourcing, and Supplier Collaboration. • Technical Proficiency: Deep understanding of PFCG, Fiori Fiori Catalogs/Groups, SU24, and Role-Based Access Control (RBAC). • Skills: Experience with SAP GRC Access Control and SOD conflict resolution. • Education: Bachelor’s degree in Computer Science, Information Systems, or a related field.
Get empowered by NTT DATA Business Solutions!
We transform. SAP® solutions into Value
NTT DATA Business Solutions is a fast-growing international IT company and one of the world’s leading SAP partners. We are a full service provider delivering everything from business consulting to implementation of SAP solutions, including hosting services and support.
When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. Because we respect your right to privacy, you can choose not to allow some types of cookies. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.
Required Cookies
These cookies are required to use this website and can't be turned off.
Required Cookies
Provider
Description
Enabled
SAP as service provider
We use the following session cookies, which are all required to enable the website to function:
"route" is used for session stickiness
"careerSiteCompanyId" is used to send the request to the correct data centre
"JSESSIONID" is placed on the visitor's device during the session so the server can identify the visitor
"Load balancer cookie" (actual cookie name may vary) prevents a visitor from bouncing from one instance to another
Advertising Cookies
These cookies serve ads that are relevant to your interests. You may freely choose to accept or decline these cookies at any time. Note that certain functionality that these third parties make available may be impacted if you do not accept these cookies.
Advertising Cookies
Provider
Description
Enabled
LinkedIn
LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions