Sap Security And Grc

About Infosys

Infosys is a global leader in next-generation digital services and consulting. We enable clients in 56 countries to navigate their digital transformation. With over three decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through the many next of their digital journey. We do it by enabling the enterprise with an AI-powered core that helps prioritize the execution of change. We also empower the business with agile digital at scale to deliver unprecedented levels of performance and customer delight. Our always-on learning agenda drives their continuous improvement through building and transferring digital skills, expertise and ideas from our innovation ecosystem.

Visit www.infosys.com to see how Infosys can help your enterprise navigate your next.

Key Responsibilities

SAP Security & GRC Leadership

- Lead SAP Security and GRC activities across ECC, S/4HANA, BW, Fiori, SolMan, PI/PO, BTP.

- Maintain SAP roles, authorizations, and user provisioning.

- Ensure compliance with security standards and audit requirements.

Onsite Coordination & Stakeholder Management

- Primary onsite focal point forIT, cybersecurity, auditors, and business teams.

- Provide daily updates, handle escalations, ensure SLA/KPI adherence.

- Coordinate with offshore teams for smooth delivery.

GRC Access Control & Compliance Management

- Manage ARA, ARM, BRM, EAM modules.

- Perform SoD analysis and mitigation.

- Support audits, evidence preparation, and remediation.

Incident, Problem & Change Management

- Resolve security incidents and high-priority issues.

- Perform RCA and implement permanent fixes.

- Approve security-related changes.

SAP Landscape Governance & Hardening

- Conduct periodic security reviews and assessments.

- Manage SAP logs, HANA security, RFC lockdown, SSO, certificates.

- Support upgrades, patching, and deployments.

Project & Enhancement Support

- Contribute to S/4HANA, BTP, cloud migration and integration projects.

- Provide security architecture input.

Innovation & Continuous Improvement

- Identify automation opportunities for provisioning and monitoring.

- Enhance governance frameworks and operational processes.