Deloitte Jobs

Job Information

Deloitte Cyber SAP Security & Business Access Control Manager in Baltimore, Maryland

SAPSecurity and GRC Access Control Manager

Are you interested in working in a dynamicenvironment that offers opportunities for professional growth and newresponsibilities? If so, Deloitte &Touche LLP could be the place for you. Join our Cyber & Strategic Risk ApplicationSecurity team and help organizations build the application security they needto protect enterprise resource planning (ERP) and other core businessapplications.

Work you ll do

As a Manager in our Cyber Application Security team, you will be part of ourSAP practice and will be responsible for delivering SAP ECC and S/4 HANAsecurity implementations and assessments. Responsibilities will include assessment, design and implementation ofend user security, and/or SAP GRC 10.x/12.0 Access Control.


DeloitteAdvisory's Cyber & Strategic Risk team helps complex organizations moreconfidently pursue their growth, innovation and performance agendas throughproactive management of the associated cyber risks. Our professionals provideadvisory and implementation services that integrate risk, regulatory, andtechnology skills to help clients transform their legacy programs intoproactive cyber risk programs. Join the team developing the future state ofcyber risk solutions. Learn more about Deloitte Advisory s Cyber & StrategicRisk practice. at



  • Limited immigration sponsorship may be available

  • 5 years of experience with SAP Security and GRC Access Control

  • Led 3 end-to-end implementation projects in SAP S/4 HANA security

  • 3 years of leading efforts in designing, building, testing, and deploying business and support roleswith S/4 and Fiori roles

  • 2 years of experience in developingsolutions for securing custom transactions, tables, and programs

  • 3 years of experiencein large and complex projects with multiple rollouts for countries/regions

  • 3 years of experiencein managing teams

  • 3 year of experience in leadingsecurity design workshops

  • 3 years of workingexperience with the business process, ABAP development and organization changemanagement workstream leads on the overall project delivery

  • 2 years of experience in designing, building and deploying HANA database security

  • 2 years of experience indesigning and implementing security for SAP reporting and analytics solutionssuch as SAP BusinessObjects, SAP Cloud Analytics, and BW/4HANA

  • 3 years of experience in designing, configuring and implementing SAP GRC Access Request Analysis (ARA), Access Request Management (ARM), Emergency Access Management (EAM), and Business Role Management (BRM)

  • 3 years of experience in building and updating Segregation of Duties (SOD) ruleset, configuring ruleset in SAP GRC 10.x/12.0 systems and performing SOD risk analysis at user and role level

  • BA/BS Degree in Computer Science, Cyber Security, Information Security, Engineering, Information Technology, Finance, or Business

  • 3 years of leading project, budget, and resource management

  • While 80% - 100% of travel is a requirement of the role, due to COVID-19, non-essential travel has been suspended until further notice


  • Previous consultingor Big 4 experience preferred

  • Professional certifications such as CISSP, CISM, or CISA is desired

  • Knowledge/experience in SAP identity and accessgovernance (IAG)

  • Excellent written and verbal communication skills

  • Knowledge/experiencein cloud security and cloud migrations

  • Knowledge/experiencein IT general computer, data conversion and integration controls

  • Knowledge/experiencein SAP business process inherent configurable controls

  • Knowledge/experiencein data protection tools and technique

  • Knowledge/experiencein identity access management tools

How you ll grow

At Deloitte, our professionaldevelopment plan focuses on helping people at every level of their career toidentify and use their strengths to do their best work every day. Fromentry-level employees to senior leaders, we believe there s always room to learn.We offer opportunities to help sharpen skills in addition to hands-onexperience in the global, fast-changing business world. From on-the-job learning experiences toformal development programs at Deloitte University, our professionals have avariety of opportunities to continue to grow throughout their career. Explore DeloitteUniversity, The Leadership Center. at


At Deloitte, we know that great people make a greatorganization. We value our people and offer employees a broad range ofbenefits. Learnmore about what working at Deloitte can mean for you. at

Deloitte sculture

Our positive and supportive culture encourages ourpeople to do their best work every day. We celebrate individuals by recognizingtheir uniqueness and offering them the flexibility to make daily choices thatcan help them to be healthy, centered, confident, and aware. We offerwell-being programs and are continuously looking for new ways to maintain aculture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.


Deloitte is led by a purpose: to make an impact thatmatters. This purpose defines who we are and extends to relationships with ourclients, our people and our communities. We believe that business has the power to inspire and transform. Wefocus on education, giving, skill-based volunteerism, and leadership to helpdrive positive social impact in our communities. Learnmore about Deloitte s impact on the world. at

Recruiter tips

We want jobseekers exploring opportunities at Deloitte to feel prepared and confident. Tohelp you with your interview, we suggest that you do your research: know somebackground about the organization and the business area you re applying to. Checkout recruiting tips from Deloitte professionals. at

Category: ERP Platforms

About Deloitte

As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.