SAP Identify Access & GRC Lead

Job Description

Reporting to the COE Technical Director, the IAG GRC Lead will support enterprise-wide security, risk management, and compliance functions. This role involves leading the implementation, enhancement, and support of Identity and Access Management (IAM) processes and systems, ensuring business requirements are met efficiently and securely. The ideal candidate will be well-versed in IAG and GRC platforms, with strong functional knowledge in identity lifecycle management, access controls, and regulatory compliance. Strong problem-solving, innovative thinking, and stakeholder management skills are essential for success.

Key Responsibilities

• Overseeing the design, configuration, implementation, and support of IAG/GRC-related activities.
• Develop and implement best practices, standards, and guidelines for IAG and GRC processes.
• Collaborate with business and IT teams to understand requirements and develop solutions within the GRC framework.
• Provide hands-on expertise in configuring and managing IAG/GRC platforms (e.g., SAP GRC, Microsoft Identity Manager etc).
• Coordinate with cross-functional teams to resolve issues and provide effective solutions in IAG/GRC.
• Oversee IAG/GRC modules during system upgrades, enhancements, and patch management.
• Identify opportunities for automation and process improvement to enhance efficiency and security.
• Ensure compliance with relevant regulations and corporate policies in all IAG/GRC activities.
• Develop and maintain strong relationships with internal stakeholders and external partners.
• Ensure effective collaboration between IAG/GRC COE and other IT/security COEs and business units.
• Manage up-to-date documentation for all IAG/GRC processes and configurations.
• Perform other duties as assigned.

Requirements

• Bachelor’s degree is required; a major in Information Security, Computer Science, or related field is preferred.
• Relevant certifications in SAP such as Technical Associate, Application Associate are preferred.
• Previous experience in enterprise IT, security, or risk management is preferred.
• Ten (10) years of experience with IAG/GRC solutions, with at least one end-to-end implementation projects required.
• Excellent knowledge in the following areas:
• Identity lifecycle management (provisioning, de-provisioning, recertification).
• Access controls and role-based access control (RBAC).
• Segregation of Duties (SoD) and risk analysis.
• Compliance frameworks (SOX, GDPR, NIST, ISO 27001).
• Integration of IAG/GRC with other security and business systems.
• Incident response and audit support.
• Audit management
• Strong skills in Microsoft Office and collaboration tools for documentation, reporting, and knowledge sharing1.
• Proven ability to work creatively and analytically in a problem-solving environment.
• Excellent verbal and written communication skills, including presentation skills.
• The ability to be adaptable, capable, self-motivated, and confident is required.
• Knowledge of cloud-based identity solutions and enterprise cloud platforms (e.g., SAP BTP, Microsoft Azure, AWS) is preferred2.