Job Description
Responsibilities:
Provide advice to Secure SAP Application Development, monthly advice, and coordination on SAP System and Application Vulnerability Management (with SecurityBridge during the project phase)
Deliver guidance on SAP Cryptography, Key Management, and SAP Data Protection
Advise and manage SAP Identity and Access Control and integration with Client's IAM
Provide assistance and coordination on SAP and Security Monitoring Integration
Assist project lead in security governance project and daily standup for security tasks, and assign daily goals and outcomes for the team
Collaborate with the project lead to plan and review bi-weekly security plans to ensure deliverables are on time
Work with the project lead to assist ad hoc architecture design review with technical architect and functional teams
Prepare for weekly design authority forum with client security architect (SA)
Engage Agency/Ministry CISO to update on security progress and potential risk items
Prepare security testing and identify risks to be registered into the risk register
Review weekly vulnerability report and drive toward remediation
Requirements:
Possess a bachelor's degree in Information Technology, IT Security or any related field
Minimum of 7–10 years working experience in security consulting space
Mandatory experience in SAP roles designed for Security
Experienced in SAP GRC (Access Control and Process Control) design and implementation for Security
Required to come up with an approach to mitigate SAP SoD conflicts
Preferably experienced in integrating SAP with AD or any IGA tools
Experienced in working in the SAP Security advisory
Exposed to SAP BTP technology
Excellent to demonstrate knowledge of SAP Application Security
Good understanding of SAP application security implementation methodologies, role-based access controls, and different application threats
Experienced in running SAP vulnerability assessment tool used in CyberSecurity and audit and compliance activities
Contribute to a strong client relationship through interactions with client personnel
Understand engagement as it relates to the client's business
Communicate client expectations to the engagement team
