Sap Security and Grc Consultant
Bristlecone
Bengaluru, Karnataka, India Full Time Operations Jobs India New
Job Description
Bristlecone is hiring for an SAP GRC Process Control role.
ORGANIZATION: Bristlecone
Mode of employment: Permanent
JOB LOCATION: (Anywhere in India)
Experience: 8 + years of SAP Security and GRC Consultant
Notice period: Immediate to 30 days
Primary Skills:
- End-to-end delivery of SAP Security Notes and patches across complex landscapes both JAVA and ABAP-based, including impact analysis, planning, execution and validation
- Perform deep-dive reviews of monthly SAP Security Advisories to identify applicable notes, assess technical prerequisites and evaluate landscape-wide impacts
- Good Presentation skills for customer interaction and if needed customer kick off calls.
- Embed an RCA-based approach into the delivery framework to identify underlying issues and prevent recurrence of security vulnerabilities
- SAP Security and GRC Access Control (AC) expertise
- Technical knowledge in SAP ECC / CRM / BW / BIBO / EP / CUA / HANA / BOBJ / S4HANA / Fiori security
- GRC Access Control Suite / Process Control Suite
- Strong understanding of SAP functional modules (FI/CO/MM/PP/PS/WM/QM)
Key Responsibilities:
- Defining business requirements and building security roles (composite and single roles)
- End-to-end delivery of SAP Security Notes and patches across complex landscapes both JAVA and ABAP based, including impact analysis, planning, execution and validation
- Should be able to support multiple customers
- Development, testing, and implementation of SAP Security roles and profiles
- Periodic review and revision of application security roles to accommodate business needs
- Design and coordination of application security testing activities
- Configuring and supporting the implementation of security controls within SAP
- Troubleshooting authorization issues and supporting daily security tasks
- Conduct GRC risk analysis at user and role level, along with risk mitigation and remediation
- Analyze and resolve GRC audit log issues and propose solutions
- Design and implement user administration solutions for new applications
- Support and manage SoD remediation activities and compliance with audit requirements
- Development of solutions for securing custom transactions, tables, and programs
- Documentation of project deliverables and security design
If you would like more details, I'm happy to help.
Thanks & regards,
Jagadeesh. K /09886065585
Email: [email protected]
Posted April 4, 2026