SAP Governance, Risk, and Compliance (GRC) Consultant
Location: Washington, D.C. Area (Preferred)
Clearance Requirement: Secret Clearance
Position Overview:
We are seeking an experienced SAP Governance, Risk, and Compliance (GRC) Consultant with a strong background in SAP Financials to support the Department of the Navy (DON) Financial Improvement Program (FIP) Navy ERP PMO. The ideal candidate will possess deep expertise in SAP GRC solutions and be adept at designing, implementing, and managing GRC processes to ensure compliance with DoD and Navy regulations. This role requires collaboration with stakeholders to develop and maintain a robust GRC framework within the Navy ERP system. An active Secret Clearance is required, and the preferred location for this position is the Washington, D.C. area.
Key Responsibilities:
- Serve as the SAP GRC Consultant for the Navy ERP PMO within the DON FIP, focusing on SAP GRC and its integration with SAP Financials.
- Design, configure, and implement SAP GRC Access Control, Process Control, and Risk Management solutions to support compliance and risk management objectives.
- Develop and maintain security roles and authorizations within SAP to ensure proper access controls and segregation of duties (SoD) are in place.
- Collaborate with business stakeholders, auditors, and IT teams to understand compliance requirements and translate them into technical specifications and GRC processes.
- Conduct risk assessments, identify potential vulnerabilities, and implement mitigation strategies within SAP GRC to ensure the integrity of financial data and operations.
- Develop and execute GRC test plans, including unit testing, integration testing, and user acceptance testing, to validate security and compliance controls.
- Monitor and manage GRC activities, including user provisioning, emergency access management, audit logging, and policy management, to ensure ongoing compliance with Navy and DoD regulations.
- Provide training, guidance, and support to end-users and stakeholders on SAP GRC solutions and best practices.
- Stay updated on the latest SAP GRC functionalities, security patches, and compliance requirements to identify opportunities for continuous improvement and optimization.
- Ensure adherence to DoD, Navy, and SAP governance frameworks, risk management standards, and compliance requirements.
Requirements
- Clearance: Active Secret Clearance is required.
- Education: Bachelor’s degree in Information Security, Information Technology, Business Administration, or a related field is preferred.
- Minimum of 3 years of experience as an SAP Consultant with a focus on Governance, Risk, and Compliance (GRC) and SAP Financials (FI/CO).
- Experience supporting Navy ERP or other DoD ERP systems is highly desirable.
- Proven experience in configuring and implementing SAP GRC modules such as Access Control (AC), Process Control (PC), and Risk Management (RM).
- Strong understanding of SAP security, SoD, and risk management principles.
- Expertise in SAP GRC solutions, including Access Control, Process Control, and Risk Management.
- Excellent problem-solving, analytical, and risk assessment skills.
- Strong communication and collaboration skills, with the ability to engage effectively with both technical and non-technical stakeholders.
- Ability to work independently, prioritize tasks, and manage multiple projects in a dynamic environment.
- Knowledge of DoD, NIST, and Navy cybersecurity and compliance frameworks.
Preferred Qualifications:
- SAP certification(s) in GRC, Security, or related areas.
- Experience with Agile methodologies and tools for project management.
- Familiarity with cybersecurity, risk management frameworks, and audit processes within a DoD environment.
#J-18808-Ljbffr