ERP Security and GRC Analyst IV - United States

Working across the globe, V2X builds smart solutions designed to integrate physical and digital infrastructure from base to battlefield. We bring 120 years of successful mission support to improve security, streamline logistics, and enhance readiness. Aligned around a shared purpose, our $3.9B company and 16,000 people work alongside our clients, here and abroad, to tackle their most complex challenges with integrity, respect, responsibility, and professionalism.

The SAP GRC Security Analyst is responsible for the designing, implementing, and maintaining SAP security roles, ensuring compliance with governance, risk, and compliance (GRC) requirements, and supporting audit and risk mitigation efforts This role requires deep expertise in SAP security, governance, risk, and compliance (GRC), with a strong focus on access management, risk analysis, and audit compliance. The SAP GRC Security Analyst will collaborate with cross-functional teams to ensure robust security controls, mitigate risks, and enhance SAP security strategies.

Job Responsibilities:

SAP Security Administration & Role Management:

• Collaborate on the design, development, and maintenance of SAP security roles across multiple SAP platforms, including S/4HANA, ECC, BW, Fiori, BTP, and Ariba.
• Manage role-based access control (RBAC), ensuring proper segregation of duties (SoD) and least privilege principles.
• Perform user provisioning, role modifications, and de-provisioning while ensuring compliance with security policies.
• Evaluate SAP Fiori app security and manage Fiori catalog, group, and tile access control.
• Collaborate with SAP functional teams to define secure role structures for different business processes.

SAP GRC Access Control & Compliance Management:

• Implement and manage SAP GRC Access Control modules, including:
• Access Risk Analysis (ARA): Monitor and mitigate Segregation of Duties (SoD) conflicts using SAP GRC tools.
• Work closely with audit teams to address security and compliance findings.
• Access Request Management (ARM): Automating user provisioning and approval workflows.
• Business Role Management (BRM): Standardizing role design and governance.
• Conduct periodic user access reviews and SoD risk assessments to maintain compliance.
• Develop and enforce security policies, controls, and best practices for SAP access management.
• Ensure SAP security compliance with SOX, GDPR, NIST, ISO 27001, and other regulatory frameworks.
• Act as a liaison with internal/external auditors for SAP security audits, risk assessments, and remediation.

Security Monitoring & Incident Response:

• Monitor SAP security logs and alerts to detect and respond to unauthorized access attempts or security breaches.
• Investigate and resolve security incidents, access violations, and system vulnerabilities related to SAP.
• Risk Mitigation & Continuous Improvement
• Drive efforts to reduce security risks, including automating risk analysis and improving access management processes.
• Provide recommendations for enhancing SAP security architecture and implementing advanced security solutions.
• Stay updated on SAP security trends, emerging threats, and industry best practices.
• Evaluate and implement new security tools, technologies, and strategies to enhance SAP security posture.

Training, Documentation & Collaboration:

• Conduct training and awareness sessions on SAP security risks and role-based access management for end.
• Work closely with SAP Basis, functional teams, and business stakeholders to ensure seamless security integration.
• Participate in SAP security enhancement projects, ensuring timely delivery and alignment with business goals.
• Maintain Comprehensive documentation of SAP system configurations, landscape, procedures, and best practices.
  • Regularly review and update documentation to reflect changes in technology, processes, and procedures
• Foster a collaborative and supportive work environment where innovation, as well as continuous learning and improvements, are encouraged

Qualifications:

Education:

• Bachelor's degree from an accredited university or college with a minimum of 6 years professional experience OR associate degree with a minimum of 8 years of professional experience OR High School diploma with a minimum of 10 years of professional experience

Experience:

• Minimum 6+ years of professional experience in SAP security administration and SAP GRC Access Control management.
• Strong expertise in SAP role design, SoD management, and access provisioning
• Hands-on experience with SAP GRC Access Control (ARA, EAM, ARM, BRM).
• Deep knowledge of SAP security concepts for S/4HANA, ECC, BW, Fiori, and other SAP modules.
• Familiarity with regulatory requirements (SOX, GDPR, ISO 27001) and audit compliance processes.
• Experience in firefighter ID management, access reviews, and security risk mitigation strategies.
• Familiarity with SAP Identity Management (IDM) and Single Sign-On (SSO) solutions.
• Strong analytical, problem-solving, and troubleshooting skills.
• Excellent communication skills and the ability to work with business and IT teams.
• High level of energy and enthusiasm with the ability to thrive in a rapidly changing environment
• Has worked on a cross-functional team; is aware of business priorities and organizational dynamics
• Ability to work with global teams, act independently and as part of a team
• Open-minded to new perspectives or ideas, or unusual solutions when appropriate
• Communicates in a clear and succinct manner
• Ability to work flexible hours based on varying business requirements

Other Requirements:

• US Citizenship

Skills & Technology Used:

• Excellent written and verbal communication skills, with the ability to effectively convey technical information to diverse audiences.
• Proficiency in writing clear, concise, and accurate technical documentation tailored to different audiences, including IT professionals and end-users.
• Strong organizational skills to categorize, structure, and maintain documentation in a logical and accessible manner, using appropriate tools and platforms.
• Strong analytical and problem-solving skills; effectively evaluates information/data to make decisions.
• Meticulous attention to detail to ensure accuracy and completeness in documentation, including system configurations, procedures, and troubleshooting guides.
• Analytical and problem-solving skills to understand complex IT systems and processes, identify documentation needs, and propose effective solutions.

Work Environment:

• Remotely, hybrid, or in office; comfortable and organized workspace conducive to focused documentation work, including a desk, chair, adequate lighting, and ergonomic accessories.

What We Bring:

• • At V2X, we strive to be market-competitive in our total reward offerings.
  • The successful candidate’s starting pay will be based on, but not limited to, their job-related skills, experience, qualifications, work location, and market conditions.
  • The following salary range is intended to display the value of the company’s base pay compensation and may be modified at the discretion of the company.
    • USD 1100,000 - 175,000
  • Provided salary range minimum and maximum values correspond to variances between regional/geographic locations across the United States.
  • Please speak with a recruiter for additional information.
  • Employee benefits include the following:
    • Healthcare coverage
    • Life insurance, AD&D, and disability benefits
    • Retirement plan
    • Wellness programs
    • Paid time off, including holidays
    • Learning and Development resources
    • Employee assistance resources
  • Pay and benefits are subject to change at any time and may be modified at the discretion of the company, consistent with the terms of any applicable compensation or benefit plans.