SAP Security/GRC Consultant – SOD - Minneapolis, MN

[Danial Amini]

SAP Security/GRC Consultant – SOD

Minneapolis, MN

6-12 Months Contract

 

Key Responsibilities

Segregation of Duties & Risk Management

• Analyze SAP access across manufacturing, warehousing, procurement, and distribution functions to identify SoD conflicts and sensitive access risks.
• Maintain and optimize the SoD ruleset with a focus on supply chain–critical processes (e.g., goods movements, inventory adjustments, production confirmations).
• Recommend remediation strategies such as role redesign, workflow changes, or mitigating controls tailored to plant and warehouse operations.
• Monitor SoD violations and provide actionable insights to plant managers and process owners.

SAP Security & Role Design

• Partner with functional teams supporting modules such as RTR, OTC, PTM, PTP, MM, PP, WM/EWM, SD, FI/CO to understand operational workflows and translate them into secure, compliant role designs.
• Review access requests for high‑risk functions like inventory write‑offs, vendor master changes, production order releases, and outbound delivery processing.
• Support periodic user access reviews across manufacturing sites and distribution centers.

Compliance & Audit Support

• Prepare documentation and evidence for internal controls, SOX audits, and operational compliance reviews.
• Work with supply chain and finance control owners to implement and validate mitigating controls (e.g., cycle counts, approval workflows, inventory reconciliation).
• Ensure access governance aligns with corporate policies and industry regulatory requirements.

Process Governance & Continuous Improvement

• Develop and maintain access governance standards for manufacturing and distribution environments.
• Train plant and warehouse teams on SoD risks, secure access practices, and proper use of SAP transactions.
• Identify opportunities to streamline access processes, reduce manual controls, and improve operational efficiency.

 

Required Skills & Qualifications

• Bachelor’s degree in Information Systems, Business, Supply Chain, Accounting, or related field.
• 3–7 years of experience in SAP security, GRC, or access governance, ideally within manufacturing or distribution.
• Strong understanding of SAP modules used in operations: RTR, OTC, PTM, PTP,  MM (Materials Management), PP (Production Planning), WM/EWM (Warehouse Management), SD (Sales & Distribution), FI/CO.
• Hands‑on experience with SAP GRC Access Control (ARA, ARM, BRM, EAM).
• Solid understanding of Segregation of Duties principles, internal controls, and SOX compliance.
• Ability to analyze complex role structures and identify operational access risks.
• Strong communication skills with the ability to work across plants, warehouses, and corporate teams.
• Excellent analytical, documentation, and problem‑solving abilities.

 

Preferred Qualifications

• Experience with SAP S/4HANA in a manufacturing or distribution environment.
• Exposure to supply chain processes such as production order management, inventory control, procurement, and logistics execution.
• Certifications such as CISA, CRISC, or SAP Security/GRC credentials.
• Familiarity with identity governance tools (SailPoint, Azure AD, etc.).