JCC is providing SAP consulting, development, and maintenance services to our clients. We are looking for top talented professionals to join our fast-growing team. We provide a great place to work and an excellent opportunity for professional growth.
We are looking for a GRC Process Controls Expert for a long-term project (B2B contract).
– workflows configuration and maintenance
– module configuration (regulations, background jobs, business rules, data sources, business rules parameters, organizations, controls, fields customization etc.)
– ability to design IT and business controls based on input about the process (at least the ability to review design and return potential error/challenge points)
– various system logs usage for various errors tracing (controls dependant as well as the tool itself)
– PC authorizations management (authorization regular roles and SPRO/IMG configuration)
– BRF+ rules definition knowledge is a must
– CCM, OET and DET processes configuration and maintenance
– custom fields creation and maintenance is very good to have, but not mandatory
– at least advanced audit processes knowledge
– previous working experience in validated environments is very good to have but not mandatory
– ABAP/Fiori debugging skills are very good to have but not mandatory
– advanced SAP BASIS skills are very good to have but not mandatory (ODATA services activation and maintenance, SAP Notes implementation, GRC BW services and data objects activation and maintenance, web services configuration and maintenance including debugging/log analysis, knowledge of database administration is an added value etc.)
– ABAP/Fiori/Webdynpro development skills are very good to have but not mandatory
– Strong communication and stakeholder management skills is a must
– Ability to proactively drive and coordinate activities. Willingness to take accountability
– rule sets creation and maintenance
– functions and Risks (SoD and Critical Actions/Permissions) definition and maintenance
– organization Rules maintenance
– configuration of risk analysis engine (synchronization jobs, background jobs etc.)
– Fiori and NWBC user interface
– module-specific authorization roles creation and maintenance
– advanced technical knowledge of SAP GRC 12 system Access Request Management module:
– workflow configuration and maintenance
– MSMP Debug log read and understanding
– support of access requests administration
– module web services usage monitoring and logging, troubleshooting
– configuration and management of workflow based Firefighter log review and assignment processes (done via ARM)
– EAM module configuration and synchronization jobs execution
– advanced technical knowledge of SAP GRC 12 system Business Roles
– BRM methodology creation and maintenance
– roles synchronization
– logs review and fixing (especially for approval of business roles process)
– business Roles creation and maintenance.
– understanding of the Business Roles concept.
– module-specific authorization roles creation and maintenance
– SAP Authorizations concepts, model and how to at least advanced knowledge (authorization checks, roles-based system approach, roles definition and maintenance, objects purpose, audit and authorization traces etc).
– Segregation of Duties business concept understanding.
– Understanding of business processes used where Segregation of Duties risks appear (at least basic understanding of context).
– At least basic SAP BASIS knowledge: RFC destinations maintenance, SICF services maintenance, SAP OSS GRC and Security specific Notes review and assessment
– Previous working experience in validated environments is very good to have but not mandatory
– Strong communication and stakeholder management skills is a must.
– Ability to proactively drive and coordinate activities. Willingness to take accountability.
Mirków, PL / Remote
Permanent / B2B