SAP SecurityGRC Consultant Spain

Do you want to boost your career and collaborate with expert, talented colleagues to solve and deliver against our clients most important challenges? We are growing and are looking for people to join our team. Youll be part of an entrepreneurial, highgrowth environment of 300.000 employees. Our dynamic organization allows you to work across functional business pillars, contributing your ideas, experiences, diverse thinking, and a strong mindset. Are you ready?

The Team

Our Digital Platforms Practice helps some of the largest global firms and most recognizable brands deliver value and business transformation enabled by digital ERP solutions and services. Our ERP services, covering strategy, implementation and innovation, help clients deliver true value and achieve their transformation agenda.

The Role

As a SAP SecurityGRC Consultant, you will work closely with diverse clients to assess their SAP security risks, design and implement tailored SAP Security and Governance, Risk & Compliance (GRC) solutions, and drive successful project delivery. You will act as a trusted advisor, helping clients align SAP security frameworks with business objectives and compliance mandates.

• Lead SAP Security and GRC assessment, design, and implementation projects for clients across industries.
• Conduct client workshops and requirements gathering sessions to understand business and security needs.
• Design and configure SAP security roles, authorizations, and GRC Access Control components (Access Risk Analysis, Emergency Access Management, Access Request Management).
• Develop and enforce Segregation of Duties (SoD) policies to mitigate risks and ensure compliance.
• Deliver SAP Security and GRC gap analysis, risk assessments, and remediation plans.
• Support clients during audits by preparing documentation, reports, and facilitating access reviews.
• Provide strategic advice on SAP security best practices, compliance frameworks (SOX, GDPR, HIPAA, etc.), and process improvements.
• Collaborate with crossfunctional teams including Basis, functional consultants, and IT auditors to implement secure SAP landscapes.
• Conduct enduser training sessions and knowledge transfer workshops.
• Stay abreast of SAP security trends, new releases, and regulatory changes to provide proactive consulting.

• Requirements

  • At least 5 years of consulting experience is necessary.
  • 3+ years of SAP Security and GRC consulting experience with multiple endtoend implementations.
  • Handson expertise with SAP ECC andor S4HANA Security.
  • Strong experience configuring SAP GRC Access Control modules (Access Risk Analysis, Emergency Access Management, Access Request Management).
  • Excellent clientfacing and communication skills with the ability to explain technical concepts to nontechnical stakeholders.
  • Proven track record of managing multiple client engagements and delivering quality results on time.
  • • Functional Content Skills
    • • Strong knowledge of SarbanesOxley (SOX) , Business Process controls, IT General Controls and IT governance.
      • Deep understanding and practical experience Analysis and DesignReDesign of Business process and IT General controls in SAP and NonSAP landscape.
      • Strong analytical skills and a deep understanding of the overall context of underlying business processes and technologies.
      • Understanding the purpose, procedures and ways of work of internalexternal audits.
      • Ability to support audits and to provide the right information & data, and to mitigate andor solve identified deficiencies and gaps.
      • • Technical Skills (Data, Technology, Implementation)
        • • Ability to retrieve and analyze and reportpresent data from various sources.
          • Understanding of data structures, sources, flow and integration across infrastructure platforms, functional domains, and application landscapesservice.
          • Uptodate understanding of Concepts & Integration of Cloud Services, and multicloud environments
          • • Tool Skill Requirements
            • • A variety of ERP systems (SAP & NonSAP), Operating systems, Databases and financial applications
              • Identity and Access Management solutions and monitoring solutions such as Splunk, Qualys, Tripwire, but also in Authorization & SoD
              • Analytics & reporting in area of ITGCGRC
              • IT Service Management Tools, Market Leader (SNOW, BMC, JIRA, ..)
              • • Experience with SAP Identity Management (IdM).
                • • Knowledge of cloudbased SAP security and hybrid environments.
                  • Experience working in AgileScrum environments.
                  • Experience in global delivery and working with offshore resources.
                  • Projectrelated mobilitywillingness to travel
                  • • Qualifications and certifications
                    • • Bachelor’s degree in Computer Science, Information Technology, or related field.
                      • More than 7 years of experience in Financial IT compliance, risk management, IT audit andor IT controls; strong experience in an audit firm (e.g. Big Four).
                      • SAP Security or GRC certifications are a plus (e.g., SAP Certified Technology Associate – SAP Access Control).

                      • Given that this is just a short snapshot of the role we encourage you to apply even if you dont meet all the requirements listed above. We are looking for team members who strive to make an impact and are eager to learn. If this sounds like you and you feel you have the skills and experience required, then please apply now.

                        We would like to request you to kindly submit your CV in English. We cannot proceed with your application otherwise.

                        Benefits

                        About Infosys Consulting

                        Be part of a globally renowned management consulting firm on the frontline of industry disruption and at the cutting edge of technology. We work with market leading brands across sectors. Our culture is inclusive and entrepreneurial. Being a midsize consultancy within the scale of Infosys gives us the global reach to partner with our clients throughout their transformation journey.

                        Our core values, ICLIFE, form a common code that helps us move forward. ICLIFE stands for Inclusion, Equity and Diversity, Client, Leadership, Integrity, Fairness, and Excellence. To learn more about Infosys Consulting and our values, please visit our careers page.

                        Within Europe, we are recognized as one of the UK’s top firms by the Financial Times and Forbes due to our client innovations, our cultural diversity and dedicated training and career paths. Infosys is on the Germany’s top employers list for 2023. Management Consulting Magazine named us on their list of Best Firms to Work for. Furthermore, Infosys has been recognized by the Top Employers Institute, a global certification company, for its exceptional standards in employee conditions across Europe for five years in a row.

                        We offer industryleading compensation and benefits, along with top training and development opportunities so that you can grow your career and achieve your personal goals. Curious to learn more? We’d love to hear from you.... Apply today!