Introduction
As a Package Consultant at IBM, get ready to tackle numerous mission-critical company directives. Our team takes on the challenge of designing, developing and re-engineering highly complex application components and integrating software packages using various tools. You will use a mix of consultative skills, business knowledge, and technical expertise to effectively integrate packaged technology into our clients' business environment and achieve business results.

Your Role and Responsibilities
IBM seeks a highly skilled and experienced SAP Security and GRC Consultant to join our team. The ideal candidate will possess a strong background in implementing and managing SAP Security across various systems, including GRC Access Control, Process Controls, S/4HANA Cloud and On-Premise, SAP Cloud Applications, SAP (IAG) Identity and Access Governance and SAP (BTP) Business Technology Platform. The role involves designing, implementing, and supporting robust security solutions to protect sensitive data and ensure compliance with regulatory requirements.

• Design and implement security solutions for both S/4HANA Cloud and On-Premise environments. Provide security support during S/4HANA Conversion Projects, ensuring the secure migration of roles and authorizations. Conduct role redesign and consolidation to align with business requirements. Participate in Security Assessment projects to evaluate the security posture of our customers before S/4HANA Conversion.
• Lead the deployment and configuration of GRC Access Control modules, including ARA, EAM, BRM, and ARM. Define and enforce Segregation of Duties (SoD) policies, and develop and optimize workflows for access requests and role provisioning.
• Oversee the deployment and configuration of SAP Identity and Access Governance for both on-premise and cloud applications. Implement and manage SAP Identity Authentication Service (IAS) and Identity Provisioning Service (IPS). Define strategies for securing SAP Cloud applications, such as SAP HANA Cloud and SAP Datasphere. Develop security policies and role assignments within the SAP Business Technology Platform (BTP).
• Perform risk assessments for system implementations and enhancements. Collaborate with internal and external auditors to ensure compliance with IT security policies and maintain documentation for all security processes and configurations.
• Work closely with business and technical teams to understand security requirements and provide training and support to end-users and administrators regarding security processes. Serve as a subject matter expert throughout project lifecycles and effectively communicate with customers to gather insights and develop solutions that meet their business needs across the entire SAP landscape.
• Actively establish and strengthen relationships with both external and internal customers. Assist in creating knowledge assets such as methodologies, templates, and white papers. Be a team player, guiding and developing junior team members.
• Identify potential business opportunities within existing consulting engagements and suggest ideas to enhance engagement productivity while recognizing opportunities for improving client service. Utilize business knowledge, sound judgment, and resourcefulness to adapt policies to specific situations and choose various courses of action. Advocate and influence executive management and relevant stakeholders. Deliver work that meets functional requirements based on business requirements defined and approved by the client.

• Lead the design, development, and implementation of end-to-end SAP Security and GRC solutions, ensuring simplicity, scalability, and maintainability.
• Collaborate with clients to understand business requirements and translate them into secure, efficient, and effective SAP security solutions that address current and future needs.
• Serve as a trusted advisor by staying ahead of industry trends and leveraging the latest SAP technologies to deliver innovative solutions.

• Manage and mentor a high-performing team of SAP consultants, fostering a culture of excellence and continuous improvement.
• Oversee project execution, ensuring deliverables meet timelines, budgets, and quality standards.
• Drive accountability within the team to meet milestones and achieve client satisfaction.

• Actively participate in strategy development and solution design, working closely with cross-functional teams to integrate SAP Security into broader business objectives.
• Leverage deep functional expertise in SAP Security and GRC to ensure successful project delivery, from planning and execution to post-go-live support.
• Utilize advanced SAP tools and technologies, such as S/4HANA, BTP Security, and Cloud Security Services, to deliver robust, future-ready solutions.

• Cloud Expertise: Hands-on experience working with SAP on at least one cloud platform: Azure, AWS, GCP, or IBM Cloud.
• Certifications: SAP Security and GRC certifications are mandatory.
• SAP Security and GRC Expertise:
  • Minimum 8-10 years of experience in SAP Security (including S/4HANA) and SAP GRC.
  • Subject Matter Expert (SME) with technical and functional knowledge across SAP S/4HANA, SAP ECC, SAP MDG, SAP BW/4HANA, SAP GRC (AC/PC), IAG, IAS, Ariba, SuccessFactors, BTP, and other SAP systems.
• Implementation Experience:
  • At least 6 years of end-to-end experience in Greenfield SAP Security and GRC implementations.
  • Exposure to Brownfield and Bluefield implementations is highly desirable.
  • Proven track record of managing SAP Security and GRC Upgrade, Migration, and Rollout projects from start to finish.
• Leadership Skills:
  • Minimum 4 years of leadership experience, overseeing end-to-end implementation projects.
  • Ability to manage cross-functional teams, ensuring project timelines and objectives are met.
• Analytical and Problem-Solving Skills:
  • Ability to analyze complex problems and provide practical, clear recommendations.
  • Proven organizational skills to prioritize tasks and manage workloads effectively.
• Communication and Collaboration:
  • Excellent written and verbal communication skills with the ability to engage and influence stakeholders.
  • Strong interpersonal skills and a collaborative mindset to work effectively in team environments or independently.
  • Ability to take initiative with minimal supervision. Gain confidence with clients. Serve as SME and trusted advisor.
• Adaptability and Multitasking:
  • Able to manage multiple tasks under tight deadlines while maintaining attention to detail.
  • A strong desire to excel, with a proactive approach to learning and problem-solving.

• Minimum 5 years of experience contributing to SAP solutions, including RFP responses, oral presentations, and customization of effort estimation models for SAP Security and GRC projects.
• Expertise in crafting innovative security solutions tailored to complex business requirements in SAP environments.

• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), or similar are highly desirable.

• Active participation in the SAP Security community, including contributions through blogs, articles, or knowledge-sharing forums.

• Experience in developing at least two tools or accelerators to automate SAP Security or GRC tasks (e.g., role provisioning, SoD conflict detection, compliance audits).

• Familiarity with broader IT security principles, frameworks, and practices, including ISO 27001, NIST Cybersecurity Framework, and GDPR compliance.