Roles and Authorization Analyst

Location: Remote – travel for workshops in the UK on an ad-hoc basis (1 day a month)

Contract Duration: 6 months

Day Rate: Competitive (Inside IR35)

Working with the Deloitte Associate (Contractor) Programme means we can offer you the opportunity to work on a variation of industry and client related projects. Our aim is to retain the best talent and so when your project end date nears our team of Talent Community Advisors will be working with you to look at alternative projects within the firm that suit your experience should you wish to continue with Deloitte.

The Role:

We are seeking an experienced Role and Authorisation Analyst to support and implement robust security solutions for our SAP landscapes. The ideal candidate will have deep expertise in SAP Security and hands-on experience with SAP tools and methodologies for managing security and compliance across SAP environments. This role will play a crucial part in designing, implementing, and re-designing security roles ensuring secure and compliant systems for our clients.

You will demonstrate and develop your capabilities in the following areas:

• Support design and build roles, profiles, and authorizations for On-prem and cloud SAP system (e.g., ECC, S/4HANA, BW) to enforce appropriate access controls.
• Support configuration and implementation of SAP Identity Access Governance (IAG) and Access Controls (AC) tool for auto provisioning and access risk management.
• Understand the segregation of duties requirements and embed in the security role design.
• Provide regular updates on the tasks assigned and highlight any issues/dependencies.
• Contribute in producing documentation for security approach, role design matrix, and user guides.
• Prepare training content and support in knowledge transition activity.
• Understanding of IT Controls for S/4 HANA and other relevant SAP application suite.
• Understanding of Risk rulesets & compliance aspects such as “segregation of duties”, sensitive access, mitigation controls.
• Understanding of SAP (S/4 HANA) authorization concepts, user roles, profiles, and good practices with hands-on experience.
• Good understanding of SAP GRC Access Controls/Identity Access Governance tool.
• Ability to understand and analyze the segregation of duties report and remediate the risks from the roles.
• Ability to assess risks, conduct root cause analysis, and implement good practice solutions for SAP Security issues.
• Troubleshooting skills and the ability to resolve security issues quickly and efficiently.
• Excellent verbal and written communication skills, with the ability to lead discussions, explain technical details, and collaborate effectively with the team.
• Ability to independently work under intense timelines in a client-facing role while maintaining a professional demeanor.
• Proficient in the use of Microsoft Office Excel for analytics; Word and PowerPoint are a plus.
• Must be eligible and willing to obtain UK Government Security Clearance.
• Educated to degree level.
• Additional Professional certification such as SAP Certified Technology Professional, SAP Access Control 12.0, CISSP, CISM, or other relevant security certifications.
• Qualify the criteria of UK Security clearance.
• Strong understanding of Business process Controls for S/4 HANA and other relevant SAP application suite.

IR35: As a means of managing tax, commercial and reputational risks, Deloitte prohibits the use of Associates through Personal Service Companies (‘PSCs’). All Associates must contract under PAYE arrangements through a Deloitte approved ‘Employment Company’ (aka ‘umbrella company’).