SAP GRC Security & Authorizations senior consultant
Aktualisiert am 09.11.2023
Freiberufler / Selbstständiger
Verfügbar ab: 09.11.2023
Verfügbar zu: 90%
davon vor Ort: 10%
SAP Berechtigungskonzept
SAP Fiori


Deutschland, Schweiz, Österreich
nicht möglich


1 Jahr 1 Monat
2022-05 - 2023-05

Providing technical advisory and security architecture considerations

Senior SAP Security Consultant
Senior SAP Security Consultant
  • Providing technical advisory and security architecture considerations on R&A incidents and change requests, resolving escalations, while adhering to the Agile methodology framework.
  • Involved in the preparation for S/4 Hana transformation on multiple production systems, in one of the most complex and largest SAP installations worldwide

H&M Group, AB Stockholm, Sweden (Remote)
3 Jahre 6 Monate
2018-09 - 2022-02

Managing worldwide onshore/offshore team

SAP Global Security Team Lead (Manager)
SAP Global Security Team Lead (Manager)
  • Managing worldwide onshore/offshore team, functional owner and contact for senior leadership and auditors, including internal audit and SOx departments. Aided business in forming security issues guidelines and change request processes. Spearheaded development and rollout of S&A access, adapting SOX compliance regulations. Process owner of IT controls.
  • Role redesign project: Analysis of the current authorization concept and sensitive transaction accesses, re-evaluation of custom enhancements, prepared project strategy and schedules, designed, mapped, and catalogued business processes into corresponding roles, as well as defined position-based accesses.
  • Supervised and configured GRC 12 Access Control implementation. Customizing of Risk Analysis, Access Management, Role Management, Emergency Access Management, with enablement of MSMP, BRF+ workflow settings.
  • Involved in S/4 HANA preparation with regards to authorization concept adjustments & role design.
  • Accountable for the design and operational maintenance of roles in ECC, EHSM, HR systems, as well as FIORI launchpad, including configurations on tile catalogues and OData services.
  • Analysis and implementation of authorization concepts in cloud applications, such as SAP IBP (Supply Chain) and SuccessFactors (HR).

Atotech ? MKS Instruments Inc. Berlin, Germany
1 Jahr 1 Monat
2017-05 - 2018-05

EHP7 Upgrade

Senior SAP Security Consultant
Senior SAP Security Consultant
  • EHP7 Upgrade. Supervised the system upgrade for Roles & Authorizations compatibility & necessary adjustments for the global rollout. Third level support.
  • Sales Order Automation (SOA). Security design for the third-party, cloud application (Esker software) for electronic order processing and the interfacing with SAP. Profile & User Management.
  • SAP EHSM (Environment, Health & Safety Management) add-on. Responsible for the extension and maintenance of the compliance roles.
  • Fiori Launchpad: Participated in the UI configuration and ERP role setup and extension for the portal access.
  • Global Business Services re-organization. Analysis and evaluation for the restructuring of the S&A setup, in accordance with the new business landscape

Givaudan Budapest, Hungary
1 Jahr 9 Monate
2015-09 - 2017-05

ccountable for the overall authorization concept & role architecture

SAP Security Architect & Team Lead (Associate Manager)
SAP Security Architect & Team Lead (Associate Manager)
  • Accountable for the overall authorization concept & role architecture, across a geographically diverse business environment. Work team coordination and communication with stakeholders.
  • Assessment, re-design and adjustment of roles & profiles in key functional areas. Consolidation and remediation of user accesses, SOX compliance to defined sensitive transactions and segregation of duties.
  • Construction and modelling of authorization profiles in ECC (EHP7), MDG (9.0), BW (7.5), BI integration & Business Objects (BO). HANA user provisioning (Studio, Web Cockpit and HCP) and SSO maintenance. High level support to IT projects (System Upgrades, MDG Product Innovation, Vistex, NLL Activation, OpenText, etc.).
  • Part of GRC 10.1 implementation. Configuration of EAM and BRM.
  • Member of HANA Migration project team. Participated in discovery sessions, SAP presentations for S/4 HANA, trained in HANA roles & authorizations

Bacardi Ltd. Barcelona, Spain
2 Jahre
2013-01 - 2014-12

SAP Security assessments

SAP Senior Consultant ? Part-Time
SAP Senior Consultant ? Part-Time
  • SAP Security assessments, including preparation and presentation of IT General Controls and SoD/SA reports.
  • Reengineering of security concepts, authorization profiles adjusted, implementation of new roles, analysis, trace and authorization bug fixing.
  • Process Owners training and end user support.
  • Development of reports in FICO and CML modules.
  • Integrity checks and monitoring of implemented programs and enhancements.
  • Resolving ABAP coding and performance incidents.
  • Off-site support

ProCons-4IT Consulting Dubai, United Arab Emirates
1 Jahr 1 Monat
2011-04 - 2012-04

Involved in development of Conceptual Design including defining system

SAP Senior Consultant
SAP Senior Consultant
  • Involved in development of Conceptual Design including defining system, business, and management process control requirements.
  • Conducted Security, Risk and Authorization Audit assessments.
  • Integrity checks on SAP roles in DM, CRM, as well as PI modules. Assessment where job profiles are inadequate and re-design based on results.
  • Involved in delineating Emergency Firefighter strategy.
  • Developed reports and fixes and involved in system preparation for go-live.
  • Monitored end-of-day background processing jobs and support on resolving incidents

ATB Financial Bank Calgary, Canada
11 Monate
2009-11 - 2010-09

Developed enhancement (BAdI framework) in DM-PLM

Senior SAP Developer
Senior SAP Developer
  • Developed enhancement (BAdI framework) in DM-PLM (Posting Lock Management) for interfacing with BASE24 card inhibits.
  • Payments enhancement (BTE technique) for additional custom checks subject to insufficient funds.
  • Documented and updated changes, monitored requests, prepared functional & technical specifications.
  • Setup functional & unit tests.

Nationwide Building Society Swindon, United Kingdom
1 Jahr 9 Monate
2008-02 - 2009-10

Involved in reviewing and assessing the organization?s business processes

SAP Consultant
SAP Consultant
  • Identified control frameworks, strategic & operational risk identification and issue/incident response structures.
  • Designed the overall security concept. Involved in the full life-cycle of the implementation from blueprint solution design stage to delivery (roll-out).
  • Consulted on SoD issues relevant to the bank?s operational procedures and policies; Training of the framework to IT Security, Audit, and Data Analysts.
  • Administered users activity and reported to process control board. Evaluated and adjusted, when needed, the authorization matrices in accordance to business requests.
  • Supported company operations (24x7 support).
  • Developed CML (loans) program reports. Collaborated with off-shore developers.

Al Khaliji Commercial Bank Doha, Qatar
7 Jahre 11 Monate
2000-04 - 2008-02

Responsible for the support, maintenance, enhancement, and overall administration

SAP Business Engineer
SAP Business Engineer
  • Responsible for the support, maintenance, enhancement, and overall administration of the roles & authorizations in the SAP ERP system.
  • Analyzed security issues in ERP modules (FICO, MM, SD, PM, HR, IS-T). Compliance to Sarbanes-Oxley (SOx) ruleset.
  • Assigned roles to positions, in accordance with HR-Organizational Management company plan.
  • Developed programs in user exits for additional authorization checks, as well as custom reports for monitoring user profiles and activities.
  • Supported company operations (24x7 support).
  • Developed and maintained software programs and related objects (reports, function modules, screens, authorizations, layout sets, smartforms, ALV, tables & structures) in ABAP/4, covering various company needs, on an every-day basis, in core modules.
  • Part of the Human Resources module configuration and implementation (infotypes, jobs & position mapping, interfaces with legacy systems). Trained in the Organizational Management & Personnel Administration. Performed user training and supported operations after go-live.
  • Trained as a Workflow Developer, and configured workflow application in SAP (Graphical Editor, Workflow Builder, and HR Organizational Management, as well as developed enhancements through Business Objects, ALE, user exits).

Wind/Telestet Hellas S.A. Athens, Greece

Aus- und Weiterbildung

University of Westminster, London, U.K. 2000
M.Sc. in Information Management & Finance

The American College of Greece (Deree), Athens, Greece 1998
B.A. in Economics


  • HANA User Management (2017)
  • SAP Roles & Authorizations (2003)
  • SAP ABAP Development (2001)
  • ABAP/4 Workbench & Dictionary (Certified 2001).
  • SAP Business Workflow (2000)


To successfully obtain a challenging position in the fields of Information Technology within a dynamic firm, that will utilize and establish my qualifications to the mutual benefit



SAP Berechtigungskonzept SAP GRC SoD SOX Rollout S/4HANA SAP Fiori ABAP SAP AC

Produkte / Standards / Erfahrungen / Methoden


Senior SAP Security & Authorizations consultant with extensive experience in security concept implementation, providing technical and functional expertise in role design, administration, and maintenance. Knowledgeable in business processes definition, security and risk assessments, data gathering, reporting, authorizations control and user access provisioning. Well-versed in SAP Governance, Risk and Compliance (GRC) and ABAP Dictionary & Programming, with multiple project experience. Worked in Telecommunications, Banking, Manufacturing, Chemical and Retail Industries.

Skill Highlights

  • SAP Products & Solutions
  • Business Processes & Controls
  • Governance, Risk & Compliance
  • Authorizations Design & Setup ? Security Administration
  • Communication
  • Service-focused
  • Team Player

Technical Skills

  • SAP systems
    • ECC (MM, SD, FICO, HCM), GRC, BaS, MDG, SRM, BW, SolMan, Fiori.
  • SAP add-ons/application tools
    • CUA, GRC Access Control, RMCA, EHSM, Bank Analyzer, Business Workflow, Fiori, iDocs, CCAT, LSMW. Security concept knowledge in IBP, SuccessFactors, Ariba and Concur.
  • Software
    • MS Office Pro (Word, Excel, PowerPoint, Access, Project, Visio), Jira Software, GINY ticketing system, MS Sharepoint, MS Outlook & Active Directory, Google Business Suite, OpenText, Esker, HP ALM, Cisco Jabber, SysAid, Adobe Photoshop.
  • Methodologies
    • ?Agile, ASAP


ABAP/4 Workbench & Dictionary


MS SQL Server
HANA Studio

Vertrauen Sie auf GULP

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung


Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das GULP Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.