SAP Security & Authorization Consultant – SAP GROW (SAP S/4HANA Public Cloud)

This is a remote position.

KATBOTZ LLC is seeking an experienced SAP Security & Authorization Consultant to support SAP GROW (SAP S/4HANA Public Cloud) implementation and transformation initiatives. The ideal candidate will possess deep expertise in SAP security design, role-based access control, authorization concepts, segregation of duties (SoD), identity management, and compliance requirements within SAP cloud environments.

The consultant will work closely with business stakeholders, functional consultants, project teams, auditors, and security architects to design and implement secure, compliant, and scalable access management solutions that align with SAP best practices and clean-core principles.

Leaders and doers needed. We are looking for professionals who can combine governance and security expertise with hands-on implementation and support capabilities.

• Design and implement SAP security and authorization frameworks for SAP S/4HANA Public Cloud.
  

• Define role-based access control (RBAC) models aligned with business processes.
  

• Configure and maintain:
  

• Business Roles
  

• Business Catalogs
  

• Business Spaces
  

• Authorization Assignments
  

• Fiori Launchpad Access
  

• User Access Controls
  

• Ensure secure access to SAP applications and business processes.
  

• Support security design during Fit-to-Standard workshops.
  

• Define authorization concepts aligned with SAP Best Practices.
  

• Support SAP Central Business Configuration (CBC) security requirements.
  

• Implement security models that support SAP clean-core strategies.
  

• Perform Segregation of Duties (SoD) assessments.
  

• Identify and mitigate security and compliance risks.
  

• Support audit and compliance requirements.
  

• Ensure adherence to internal controls and governance policies.
  

• Develop security documentation and access control procedures.
  

• Support integration with:
  

• SAP Identity Authentication Service (IAS)
  

• SAP Identity Provisioning Service (IPS)
  

• Corporate Identity Providers
  

• Single Sign-On (SSO) Solutions
  

• Manage user provisioning, deprovisioning, and access reviews.
  

• Support role testing and user acceptance activities.
  

• Troubleshoot authorization and access-related issues.
  

• Support quarterly SAP Public Cloud releases and regression testing.
  

• Conduct security reviews and role optimization exercises.
  

• Provide post-go-live support and hypercare.
  

• Bachelor's degree in Information Technology, Cybersecurity, Computer Science, Business Systems, or related field.
  

• 5+ years of SAP Security and Authorization experience.
  

• Experience supporting SAP S/4HANA or SAP GROW implementations.
  

• Strong expertise in:
  

• SAP Security & Authorizations
  

• Role Design
  

• Fiori Security
  

• Role-Based Access Control (RBAC)
  

• Segregation of Duties (SoD)
  

• User Access Management
  

• Strong understanding of SAP Public Cloud security concepts.
  

• Experience working with auditors and compliance teams.
  

• Excellent analytical and problem-solving skills.
  

• Strong communication and stakeholder management abilities.
  

• SAP Security Certification.
  

• Experience with:
  

• SAP GROW
  

• SAP S/4HANA Public Cloud
  

• SAP Identity Authentication Service (IAS)
  

• SAP Identity Provisioning Service (IPS)
  

• SAP Cloud Identity Services
  

• SAP GRC Access Control
  

• SAP BTP Security
  

• Single Sign-On (SSO)
  

• Experience supporting global and multi-country deployments.
  

• Knowledge of compliance frameworks and audit controls.
  

• SAP Security & Authorizations
  

• SAP GROW
  

• SAP S/4HANA Public Cloud
  

• Role-Based Access Control (RBAC)
  

• Segregation of Duties (SoD)
  

• SAP Fiori Security
  

• SAP Identity Authentication Service (IAS)
  

• SAP Identity Provisioning Service (IPS)
  

• User Access Management
  

• SAP Cloud Identity Services
  

• Compliance & Audit Controls
  

• Security Governance