1. Home
  2. Accounting / Management control
  3. SAP Security Consultant

Offers “CGI”

New
CGI

SAP Security Consultant

  • Kuala Lumpur, MALAYSIA
  • Accounting / Management control
Apply Now

Job description

Position Description:

An SAP Security Consultant is responsible for safeguarding SAP systems by designing, implementing, and maintaining security measures. Key duties include monitoring systems for breaches, managing user access, conducting audits, and responding to security incidents. The role requires a background in information systems or computer science, experience with SAP security configurations, and strong analytical and communication skills. Certifications in SAP Security are advantageous.

Your future duties and responsibilities:

SAP Authorization Concept Knowledge

• Deep understanding of **SAP role-based access control (RBAC)
• Proficiency in **PFCG (Profile Generator)** to create and manage roles and how to use CSI RMB tool
• Understanding of **authorization objects, fields, and profiles
• Design and maintenance of **single, derived, and composite roles + GRC Business Roles

SAP Knowledge

• Familiarity with **common SAP modules** (e.g., FI, MM, SD, HR) for proper role design
• Understanding the business processes behind each module to assign appropriate access.
• General SAP Security Concepts knowledge in SAP ECC/ S4/HANA, EWM, BI/BW, SolMan, SLT, BCS
• Familiarity with HANA DB security (concepts)
• Support Audits (internal audit/financial audit)

Segregation of Duties (SoD) and Compliance

• GRC Access Control (Governance, Risk, and Compliance): Detects, monitors, and mitigates SoD risks and access violations. Access Risk Analysis (ARA) Emergency Access Management (EAM) Access Request Management (ARM) Business Role Management (BRM)
• GRC Process Controls Managing approval workflows for control assessments, issue remediation, and surveys. Configuring workflow-based authorizations (e.g., who can approve test results). Ensuring access to Master Data (e.g., organizations, subprocesses, controls) is restricted. Protecting survey/questionnaire templates and control test plans from unauthorized changes. Continuous Control Monitoring (CCM) Security

Technical Security Skills

• SAP Fiori & Web UI Security (if applicable)
• Securing the Fiori apps or web interfaces used in newer versions.
• Using Fiori catalog and group configuration to limit access.

Connector & System Communication Security

• Ensuring secure connections between Process Control and backend systems (e.g., ECC, S/4HANA).
• Use of RFC destinations with limited and monitored access.

Transport Management & System Landscape

• Managing security in customization transports and ensuring sensitive roles aren’t accidentally moved to production.

Monitoring & Auditing Skills

• Change Log Monitoring Ability to audit who changed what, when, and why in the system. Setup of change log reports and security audits. Security Audit Log : Records critical security-relevant activities. Change Documents: Tracks changes to user and role data. Reports on user roles, authorizations, transactions. Identify critical authorizations and users with high privileges. Trace authorizations during transaction execution.

Cloud Security

• Role collections and OAuth scopes in SAP BTP (Business Technology Platform).
• IAS/IPS for identity provisioning and authentication.
• SAP Identity Authentication Service (IAS) and Identity Provisioning Service (IPS).
• Integration with corporate identity providers (e.g., Azure AD, Aquera)
• Configuring Single Sign-On (SSO) and Multi-Factor Authentication (MFA).

SAP Business Technology Platform (BTP) Security

• Understanding of Subaccount-level security (spaces, roles, entitlements).
• Managing BTP role collections, application authorizations, and OAuth scopes.
• Using XSUAA (XS Advanced User Account and Authentication) for application-level security.

Skills:

·  SAP Authorization
·  Leadership

What you can expect from us:

Together, as owners, let’s turn meaningful insights into action.

Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…

You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.

Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.

You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.

Come join our team—one of the largest IT and business consulting services firms in the world.

Make every future a success.
  • Job directory
  • Business directory
    •