Insight Global is seeking a highly skilled and experienced Senior SAP Security Consultant for a 6-month hybrid contract based in Mississauga with a leading courier and logistics company.

JOB DESCRIPTION

This role is critical to ensuring the robust security posture and efficient identity and access management across our client's complex SAP landscape, including S/4HANA, Fiori, and SAP Business Technology Platform (BTP). Leveraging extensive expertise, the successful candidate will review and assess existing configurations and processes against security best practices and also be responsible for implementing necessary safeguards based on threat intelligence and review findings to ensure a secure and compliant environment.

Responsibilities:

• Conduct comprehensive reviews and assessments of existing SAP security roles, authorizations, and profiles within S/4HANA and Fiori environments against security best practices and internal policies.

• Review current emergency access management processes (Firefighter) within SAP, assessing their effectiveness, adherence to policy, and identifying areas for improvement.

• Analyze existing user access and roles to identify, report on, and recommend remediation strategies for complex Segregation of Duties (SoD) conflicts across the SAP landscape.

• Review and assess the security configuration and administration of SAP Business Technology Platform (BTP), including the management of the Cloud Foundry environment, against security standards.

• Evaluate the security configuration and utilization of existing SAP BTP Services, with a focus on the SAP Integration Suite.

• Review and assess existing Identity and Access Management solutions implemented using SAP Identity Authentication Service (IAS) and SAP Identity Provisioning Service (IPS), identifying areas for optimization and improved security.

• Develop, maintain, and enhance comprehensive documentation for SAP security and IAM processes, standards, and configurations.

• Identify opportunities for process improvement within SAP security and IAM operations and lead initiatives to implement enhancements.

• Provide expert guidance and knowledge transfer to team members and other IT personnel on findings related to SAP security and IAM reviews, as well as implemented safeguards.

• Assist in the investigation and analysis of complex SAP security incidents and access issues based on existing configurations and logs.

• Proactively research and stay current with the latest SAP security vulnerabilities, threats, and security best practices across S/4HANA, Fiori, and BTP, and implement necessary safeguards based on these findings and identified risks.

• Support internal and external audits by providing detailed information and analysis related to existing SAP security and IAM configurations, processes, and implemented controls.

• Collaborate effectively with technical and business teams to communicate review findings, recommended security improvements, and implemented safeguards.

REQUIRED SKILLS AND EXPERIENCE

• Minimum of seven (7) years of hands-on experience in SAP Security and Identity and Access Management, with a strong focus on review, assessment, and implementation activities.

• Proven expertise in conducting comprehensive SAP role design reviews, user access reviews, and evaluating and enhancing emergency access (Firefighter) processes.

• Excellent analytical, problem-solving, and critical thinking abilities, with a focus on identifying security gaps, recommending, and implementing practical solutions.

• Exceptional verbal and written communication skills, with the capacity to articulate review findings, recommendations, and implementation details clearly and professionally to diverse audiences.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related discipline, or equivalent extensive practical experience.

NICE TO HAVE SKILLS AND EXPERIENCE

• Relevant security certifications such as SAP Certified Technology Associate
• SAP System Security and Authorizations, SAP Certified Technology Professional
• System Security Architect, or industry-recognized certifications like CISSP, CISM, or CCSP