Apply on Employer Site

Amrize · 10 hours ago

SAP Security Specialist

Chicago, IL

Full-time

Onsite

Senior Level

5+ years exp

Amrize is a company focused on building North America, and they are seeking a SAP Security Specialist to design and maintain a robust SAP security ecosystem. The role involves implementing best practices, conducting risk assessments, and ensuring compliance with regulatory standards while managing SAP security incidents and changes.

Business DevelopmentConsultingInfrastructure

Responsibilities

Orchestrate SAP Change Management: Lead and manage complex changes across the SAP ecosystem, ensuring secure, controlled implementations in production environments while maintaining zero-tolerance for security vulnerabilities

Role Engineering & Optimization: Design, architect, and continuously refine SAP security roles and authorization profiles, ensuring alignment with evolving business requirements, organizational structure, and least-privilege access principles

Segregation of Duties (SoD) Management: Conduct comprehensive risk analysis and simulations using GRC tools at technical role, position, and user levels to identify, remediate, and prevent critical SoD conflicts and sensitive access violations

Service Delivery Excellence: Monitor and resolve SAP Security tickets and incidents through ServiceNow, ensuring exceptional service delivery while consistently meeting or exceeding established SLAs

Advanced Troubleshooting: Analyze and diagnose complex permission-related errors within SAP systems, utilizing deep technical expertise to classify, resolve, or appropriately escalate issues to ensure rapid resolution

Audit Log Analysis & Forensics: Perform detailed analysis of SAP audit logs and security events to support investigations, respond to security incidents, and fulfill compliance and regulatory requirements

GRC Administration & Enhancement: Maintain and optimize GRC systems, including regular updates to rulesets, risk matrices, and compliance frameworks to ensure real-time risk visibility and regulatory alignment

Audit & Compliance Management: Serve as the primary point of contact for internal and external audits, ensuring full compliance with SOX, GDPR, HIPAA, or other applicable regulations through meticulous documentation and control implementation

Critical Access Controls: Enforce stringent controls on critical SAP objects, transactions, and administrative functions, implementing security guardrails that align with organizational risk tolerance and industry best practices

Security Transformation Projects: Drive and deliver strategic security projects, collaborating cross-functionally to implement innovative solutions that enhance the organization's security posture

Process Automation & Optimization: Identify opportunities for security process improvements, designing and implementing automation solutions that reduce manual effort, minimize errors, and accelerate response times

Continuous Improvement: Proactively recommend, prototype, and deploy enhancements to the security model that leverage emerging technologies, industry trends, and lessons learned from security assessments

Additional Strategic Initiatives: Execute special projects and additional responsibilities as assigned by leadership to support organizational objectives

Demonstrate a commitment to communicating, improving and adhering to health, safety and environmental policies in all work environments and areas. Promote a culture of safety and exhibit these behaviors

Other responsibilities as assigned

Qualification

SAP SecurityGRC SolutionsCompliance FrameworksSAP Certified Technology AssociateCISSPCISMITIL FoundationServiceNowCommunicationTeam Collaboration

Required

Bachelor's degree

Minimum 5 years of hands-on experience in SAP Security administration and architecture

Proven track record in enterprise-scale SAP environments (ECC, S/4HANA)

Demonstrated expertise in GRC implementations and security compliance frameworks

SAP Certified Technology Associate - System Security Architect

SAP GRC Access Control certification

CISSP, CISM, or equivalent information security certification

ITIL Foundation or higher

Expert-level knowledge of SAP authorization concepts, role design, profile generation, and user administration

Advanced proficiency in SAP GRC Access Control, including risk analysis, access request management, and ruleset configuration

Working knowledge of SOX, GDPR, ISO 27001, or similar regulatory standards

Experience managing incidents and change requests on ServiceNow or ITSM platforms

Preferred

Master's degree

Field of Study Preferred: Computer science, engineering, and IT-related sciences

Company

Amrize

Amrize is a subsidiary of Holcim that offers construction projects for infrastructure, commercial and residential sectors. It is a sub-organization of Holcim.

Founded in 2023

Chicago, Illinois, USA

10001+ employees