SAP Security Engineer (For independent contractors)

Important note: This role is based in Bangalore India

Job Description:

SAP Security Engineer

FinTech is a complex, competitive and exciting industry. To accomplish Booking.com’s mission (“making it easier for everyone to experience the world”), we aim to offer frictionless payment experiences to our guests and partners. The FinTech business unit creates best in class payment products that offer choice to guests and help Bookings business partners grow their business.

The Financial Systems team in the FinTech business unit provides technical expertise to the finance department and is responsible for supporting and innovating SAP ERP and S4HANA, Native HANA solutions, SAP BTP, SAP SAC and many other connected external systems like Ivalua, Conga or Blackline. We want to change the way people work with enterprise systems, by building an application platform that supports simplification of business processes and empowers the finance community with better integrations and financial insights.

This is a great opportunity for a SAP Security Engineer; the focus of this role is to implement the technical solutions for the security and compliance of a complex FinTech infrastructure. The SAP Security Engineer will bring expertise and experience with complex SAP security solutions,  will be able to provide technical expertise and contribute to the technical strategy of the team.

What you’ll bring: (skill & competency)

• Minimum 8 years of experience on SAP Security, with emphasis on GRC implementation SAP GRC

• Expert implementation knowledge in the following solutions GRC Access Control (AC), Identity Access Governance (IAG), Single Sign On (must have)

• Working experience on Checking Access Risks & mitigation controls. (must have)

• Good understanding of concepts of Segregation of Duties. (must have)

• Should have knowledge of all type of Access request & risk analysis (must have)

• Good understanding of concepts of Segregation of Duties. (must have)

• GRC Process Control (PC), GRC Risk Management (RM)  (good to have)

Roles and Authorizations

• Experience in Security Design & Blueprinting, Customization, Implementation and Auditing of SAP Roles & Authorization (ECC/EHP7, GRC, SolMan, BPC, S/4HANA, Fiori, BW/4HANA, HANA cloud, BTP, SAC etc.) with greenfield, brownfield implementation or conversion projects (must have)

• Knowledgeable on different user & role types, SAP Authorization Concept, Roles/Activity Groups, User Administration on different SAP Platforms (must have)

• Good conceptual knowledge of Storage, web apps (FIORI), Single-Sign-On on SAP platforms (must have);

• Deep understanding of the SAP authorization architecture with experience in translating functional requirements/processes into user/job role definitions. (must have)

• Deep understanding on custom transaction technical validation & Co-ordination with functional/ABAP teams (must have)

• Extensive knowledge of Business process & sub process (good to have)

• Good knowledge on SAP nomenclatures, programs, tables and other function modules (must have)

Cyber

• Experience with various Authentication Methods, Database Security, Network and Communication Security & protecting standard users (good to have)

• Strong skills in the advanced security area like identity theft, data security breaches, data leakages cloud, cyber security and data privacy (good to have)

General:

• Strong in Technology security fundamentals and hands on experience on SAP specific products and solutions (must have)

• Extensive experience in the design & development of SAP security policies/procedures. (must have)

• Prior experience in manage & deliver critical and/or complex issues (must have)

• A great customer focus, team player attitude and excellent communication skills in English. (must have)

• Has good understanding of periodic sap security reviews/audits & automation to reduce manual interventions (must have)

• Excellent exposure on the risk awareness in SAP Environments (must have)

• Ability to learn quickly and apply knowledge effectively. (must have)

• Must be able to work as a team player, yet can work independently.  (must have)

• Possess exceptional interpersonal and communication skills including verbal, written presentation and listening.  (must have)

• Past experience in working with Fintech / Financial Services organizations with experiences on banking regulations (good to have)

• Possess experience & expertise in working with highly regulated environments (good to have)

• Ability to adapt and function effectively in a fast-paced, changing environment while working under deadlines. (good to have)

• A record of taking initiatives, driving results and accepting increasing levels of responsibility. (good to have)

What you’ll be doing: (Roles & Responsibilities)

• Perform Solution Architecting tasks, working on defining solutions in response to client/business request for proposal, technical designs and development of SAP Security functions for programs, projects & change requests. (must have)

• Independently handling end-to-end SAP Security project implementations, ability to conduct workshops, manage & plan for UAT, Regression Testing, Cutover & Hypercare activities. (must have)

• Ask right questions/challenges in terms of assessing risks & support the designing of risk frameworks (must have)

• Be in continuous contact with the risk teams, be able to assess risks of operations, risk of change, external threats, and deliver the appropriate engineering solutions. Embed strong risk awareness and risk management in everyday work, reach high standards of strictly regulated environments (e.g. SOx)  (must have)

• Perform a consulting role in terms of playing a techno-functional SAP authorization SME. (good to have)

• Perform trace analysis & troubleshooting authorization issues (must have)

• Assisting team members in the development and implementation of technical solutions (implementations, upgrades and Migrations). (must have)

• Deliver technical leadership, role designs and implementation planning for large, multi-phase projects complying to given standards and latest compliance frameworks (must have)

• Deliver SoD conflict remediation related projects (must have)

• Hands-on expertise on the technical roles, users & authorisation management requirements for SAP Systems (must have)

• Provide guidance, vision, awareness, and strategy in the SAP Security space and how it influences other areas of the business. (must have)

• Facilitate technical discussions and decision making in order to ensure performance, scalability and reliability of the provided solutions; (good to have)

• Will be hands on with GRC access controls and with extensive automation knowledge. (must have)

• Maintain workflow configuration Design, MSMP and maintain rules to identify risk conditions. (must have)

• Managing  system upkeep, assist with system upgrades and patching, with specific focus on SAP security impacts (must have)

• Maintaining the GRC risk library, roles and authorisations (R/3, ECC, HANA DB, S4 HANA), User administrations, etc. (good to have)

• Should be able to handle & configure BRF+ and MSMP workflows in the best and most efficient manner with respect to SAP best practices (must have)

• Handle the Audit report analysis & responses (must have)

• Shall be Checking Access Risks & mitigation controls. (must have)

• Shall be handling all type of Access request & risk analysis (must have)

• Combine your knowledge and expertise with the goals of our business to support and maintain a world-class solutions infrastructure and to enable our continued growth;

• Shall be adapting best practices in maintaining large/complex SAP landscapes

• Drives constant innovation and steers the Financial Systems group toward solutions that provide efficiency in daily operations, standardize solutions across the enterprise, support, maintain and develop complex technical solutions in a large and geographically distributed office environment.