SAP Security & Compliance Manager

Orbia

Pune

7 - 10 Years

4.3

4+ Reviews

SAP Security S/4 HANA SAP ECC SAP BTP SAP Fiori Security SAP GRC SAP CFIN

Posted on: 28/11/2025

Job Description

Description :

We are seeking a highly skilled SAP Security & Compliance Manager to oversee governance, risk, compliance, and cybersecurity across our SAP landscape including S/4HANA, SAP ECC, SAP CFIN, BTP, and Fiori environments. If you have strong experience managing SAP security operations, developing governance frameworks, and ensuring compliance with global standards, wed love to hear from you.

Key Responsibilities (KRA) :

- Manage end-to-end SAP security operations across S/4HANA, ECC, CFIN, BTP, and Fiori systems.

- Develop, implement, and maintain SAP security policies, governance frameworks, and risk controls.

- Ensure compliance with SOX, ISO 27001, NIST, Cyber Essentials, and internal audit requirements.

- Oversee role design, user administration, access controls, and segregation of duties (SoD) management.

- Monitor vulnerabilities, security incidents, and threats across SAP environments and coordinate mitigation.

- Conduct periodic security assessments, risk evaluations, and control effectiveness reviews.

- Collaborate with cross-functional teams to support SAP transformation programs and global rollouts.

- Manage audit processes, documentation, evidence gathering, and remediation activities.

- Lead cloud security best practices for SAP BTP, integrations, and hybrid environments.

- Support secure development practices for SAP customizations, enhancements, and Fiori applications.

- Drive continuous improvement of SAP security posture, tools, and compliance processes.

- Work closely with leadership, security teams, and external auditors to maintain regulatory readiness.

Relevant Experience & Qualifications :

- 7 - 10 years of experience in SAP security and compliance management.

- Hands-on experience with SAP S/4HANA, SAP ECC, SAP CFIN, SAP BTP, and Fiori application security.

- Expertise with SAP security toolsets for governance, vulnerability management, and compliance.

- Experience ensuring SOX readiness and implementing security controls aligned to regulatory frameworks.

- Strong understanding of cybersecurity risks, emerging threats, and SAP-specific countermeasures.

- Experience with cloud security concepts, best practices, and SAP cloud integrations.

- Familiarity with global security standards such as ISO 27001, NIST, Cyber Essentials, etc.

- Proven background managing external audits, internal audits, and certification processes.

- Experience working in large-scale business transformation across multiple geographies and functions.

- Bachelors or Masters degree in Computer Science, Information Security, or related field.

Skillsets Required :

- SAP S/4HANA, ECC, CFIN, BTP, and Fiori security

- Role-based access control (RBAC) and SoD management

- SAP GRC, security analysis tools, and vulnerability management

- SOX compliance, audit handling, and governance frameworks

- Security standards (ISO 27001, NIST, Cyber Essentials)

- Cloud security best practices for SAP deployments

- Incident response and SAP threat management

- Risk assessment, policy development, and technical documentation

- Understanding of custom app security for SAP and Fiori