Apply on Employer Site

Astemo Ltd. · 1 month ago

IT SAP Security Engineer - J0048787

Farmington Hills, MI

Full-time

Hybrid

Senior Level

5+ years exp

Astemo Ltd. is seeking an SAP Security Analyst to manage user access and security role design across the AM region. The role involves ensuring compliance and integrity of SAP S/4HANA access, supporting audits, and collaborating with teams on secure access design.

AutomotiveAutonomous VehiclesIndustrial ManufacturingManufacturingTransportation

Responsibilities

Design and maintain SAP security roles (single, composite, derived) for SAP S/4HANA and related systems

Support new project rollouts, security role mapping, and SoD (Segregation of Duties) compliance

Collaborate with functional leads to define access requirements and translate them into secure role concepts

Partner with the Identity & Access Management (IAM) team to support SailPoint provisioning workflows

Manage day-to-day user provisioning and de-provisioning for all AM Region SAP accounts, ensuring timely and accurate access

Conduct periodic access reviews, audit support, and remediation of identified risks

Provide technical guidance for GRC ruleset maintenance and SoD analysis

Develop documentation for security design, user provisioning processes, and governance procedures

Perform user and role analysis to identify redundant, obsolete, or excessive access

Investigate and resolve access issues, violations, or user provisioning errors

Stay updated on SAP security trends, tools, and regulatory changes impacting access control

Provide support during go-live cutovers and critical production support windows

Qualification

SAP SecuritySailPointSAP S/4HANASAP GRC Access ControlSAP authorization conceptsCommunication skillsTime managementCollaborationProblem-solving

Required

Strong understanding of SAP authorization concepts and role-based access control

Ability to manage high-volume provisioning and support multiple SAP environments

Strong communication skills for collaboration with business users and audit teams

Familiarity with IT general controls, SOX compliance, and access certification processes

Ability to prioritize and manage multiple tasks in a fast-paced environment

Hands-on experience in SAP Security for S/4HANA, Fiori, and ECC systems

Proficiency in SAP authorization objects, PFCG role maintenance, SUIM, ST01, SU53, and SU24

Experience with SAP GRC Access Control (ARA, BRM, ARM)

Experience with SailPoint IdentityNow or other Identity Governance tools

Familiarity with ticketing systems like ServiceNow or SAP Solution Manager

Understanding of SAP modules such as MM, SD, PP, and FICO from a security perspective

Bachelor's degree in business, Engineering, Computer Science, Information Systems, or related field

Minimum 5 years of experience in SAP Security administration

At least 2 years of experience with S/4HANA security and/or Fiori applications

Experience supporting SAP implementations and working on project teams

Audit and compliance support experience

Preferred

Experience supporting manufacturing or regulated industries

Experience with SailPoint Identity Governance tools

Experience working in international or global teams

Company

Astemo Ltd.

In January 2021, Hitachi Automotive Systems, Keihin, Showa, and Nissin Kogyo completed a business merger and began their journey as the global mega-supplier “Hitachi Astemo”.

Founded in 2021

Tokyo, Tokyo, JPN

10001+ employees