Job Title:  Consultant | SAP Security & GRC AC | Pune | SAP

Be audacious in impact

When was the last time you thought the unthinkable, defined the unfathomable, or did what no one else has dared to try?

At Deloitte, we're creating bold new frontiers for our clients and communities. Our roar echoes across India and beyond. So, bring your unique self and rise louder and leap further than ever before.

Senior Consultant | Senior OMS Business Analyst | Gurgaon | TST

• Job requisition ID: 96161
• Location: Gurgaon
• Entity: Deloitte Touche Tohmatsu India LLP

The team

Enterprise technology must do much more than keep the wheels turning; it is the engine that drives functional excellence and the enabler of innovation and long-term growth. Learn more about ET&P

Your work profile

• Lead functional discovery and workshops for order management processes, rules, and integrations.
• Translate business needs into detailed functional requirements and acceptance criteria.
• Analyze current state processes and identify improvement opportunities applicable to the future OMS model.
• Partner with architects and integration teams to clarify design impacts and dependencies.
• Support UAT planning and execution, including clarifying test scenarios, expected outcomes, and sign-off criteria.
• Drive end-to-end traceability of requirements throughout the delivery lifecycle.
• Mentor junior BAs and support readiness of business SMEs.

Key skills required

• Designing access roles for the SAP S4H environments across multiple domain such as finance, supply, procurement, engineering etc.

  ▪

  Implement best practices in the area of Role build, testing and transport.

  ▪

  Define Role Transport strategy for a highly complex multi-tier environments with separate Sustain and Project Tier.

  ▪

  Propose security best practices for Solutions built on SAP BTP.

  ▪

  Review and share access controls, authentication protocols for 3rd party apps integrations.

  ▪

  Define SOD Risks and mitigation controls by collaborating with process experts, GRC Teams.

  ▪

  Provide input to GRC technical teams to update SoD risk matrix with new transaction codes/Fiori apps etc.

  ▪

  Review custom code, and propose the authorization check to ensure the Organization level controls can be implemented via roles.

  ▪

  Review and update authorization defaults for transactions, Fiori apps, Web-dynpros etc.

  ▪

  Experience of defining audit controls, engage with auditors to drive internal and external audit evidence gathering.

  ▪

  Assist in design, document and continually enhance SAP security administration policies, processes, and procedures for the SAP environment.

  Support the project teams on SAP Transports using during major releases, dual maintenance/retrofit and object conflict issue resolution

  ▪

  Update and maintain procedure documentation, present to larger team.

  ▪

  Propose technical governance (standards, best practices, etc.), document and present to Larger team.

  Engage with the Business Process Owners, Product Owners, and internal stakeholders to capture access control requirements.

  ▪

  Work closely with Business analysts, Org Governance Teams and SMEs

  ▪

  Liaise with CyberSecurity Teams, Internal/External Audit and Internal Risk & controls teams.

  ▪

  Work closely with Project managers, define Access controls Design, Build, Test Plans identify risks to the projects.

  ▪

  Work with internal Training team, deployment teams closely on content development, delivery and communications.

  Expertise in application security S4H, Fiori, HANA, SAP BTP with deep understanding of authentication, user provisioning, role design management.

  ▪

  Experience of Master – derived, Value – Enabler technical roles with inclusion of tcodes, Hana views, Fiori Apps etc.

  ▪

  Expertise in Fiori role build, especially Pages, Spaces, Catalogue, Groups, apps etc.

  ▪

  Understanding of OData V2, V4 services, API Security, and troubleshooting complex Fiori and Hana access issues.

  ▪

  Exposure to BTP role build in Abap Environment, HANA Cloud (XSA apps), IAS, IPS, Audit logging, Credential store services etc.

  ▪

  Business process understanding on Core Domains like Supply, logistics, procurement, Trade Controls and Master Data Governance.

  ▪

  Possess experience reviewing custom transactions, updates authorization defaults, with good understanding of authorization objects across domains, including sensitive admin transaction codes.

  ▪

  Experience of developing attribute-based access provisioning designs, with exposure to provisioning tool IDM, Saviynt.

  Ability to work in global distributed setting without supervision.

  ▪

  Self-driven, Proactive, Out -Of -Box Thinker

  ▪

  Flexible and reliable- displaying great ownership in all aspects.

  ▪

  Open to travel abroad and in India

You bring you

That's all we ask. And in return, we'll create an enabling and respectful environment. That includes reasonable accommodation for Fate unique needs.

Your bold odyssey starts here 

Our story starts with your success: Experience excellence in an environment that is meritorious, respectful, collaborative, and empowering. One that is a catalyst of 360-degree happiness for you and your loved ones.

Get right skilled for tomorrow: Get equipped to fuel transformative change and be the best in the industry. Don't just learn new skills, but be the engine of innovation, with clutter-breaking solutions and practices.

Power the nation's growth story: We're Indian-owned and led and working towards India's future. Our team spans and creates impact for the country, well beyond its urban centers. We move ahead along with the communities in which we operate, thereby giving you a profession with a strong sense of purpose.