ALDO Group is looking for an IT Security Engineer to maintain the security, integrity, and compliance of our SAP landscape. This crucial role focuses on SAP S/4HANA and SAP GRC solutions, ensuring successful role design, user access management, and GRC module configuration.
What You'll Do
- Design, implement, and maintain SAP security architecture for SAP S/4HANA, SAP GRC, and related systems like Fiori and BW/4HANA.
- Develop and manage secure authorization concepts, including role design and user access provisioning aligned with the principle of least privilege.
- Ensure security implementation supports business processes while adhering to internal controls and regulatory requirements like SOX and GDPR.
- Configure, maintain, and enhance SAP GRC Access Control modules, including Access Risk Analysis (ARA), Access Request Management (ARM), and Emergency Access Management (EAM).
- Manage Segregation of Duties (SoD) risk ruleset customization, conduct SoD analysis, and coordinate remediation efforts.
- Configure and support SAP GRC Process Control for continuous control monitoring and compliance reporting.
- Manage user lifecycle and access controls across the SAP landscape, ensuring timely provisioning, de-provisioning, and regular access reviews.
- Troubleshoot and resolve complex security and authorization issues in production and non-production environments.
- Perform security patching, system updates, and landscape synchronization activities.
- Act as the primary technical contact for internal and external SAP security audits.
- Prepare and maintain comprehensive security documentation, including policies, procedures, and design specifications.
- Monitor security logs, system changes, and critical access to identify and respond to potential security threats.
What We're Looking For
- A Bachelor’s degree in Computer Science, Information Technology, or a related field and/or 1–5 years of equivalent work experience.
- 5+ years of dedicated experience in SAP Security, with a minimum of 2 years focused on SAP S/4HANA and SAP GRC.
- Proven expertise in designing and implementing security roles in SAP S/4HANA, including the Fiori authorization model.
- In-depth knowledge of SAP GRC Access Control (12.0 preferred) configuration, maintenance, and operational support.
- Strong understanding of security best practices for various SAP modules and cross-module integration points.
- Solid grasp of regulatory compliance requirements as they relate to SAP access and data security.
- Experience with transport management and system landscape synchronization related to security objects.
- Strong troubleshooting skills.
Technical Stack
- SAP S/4HANA
- SAP GRC
- SAP Fiori
- SAP BW/4HANA
- SAP GRC Access Control
- SAP GRC Process Control
Benefits & Compensation
- Weekly Paychecks
- Paid Time Off, Parental Leave, and Holidays
- Insurance, including medical, prescription drug, dental, vision, disability, and life insurance
- 401(k) with Company Match
- Stock Purchase Plan
- Education Reimbursement
- Legal Insurance
- Discounts on gym memberships, pet insurance, and more
Your career here is more than just a job — it's your pathway to opportunity. Our hands-on training, supportive environment, and responsive leadership connect you to work with purpose. Our commitment to you extends beyond professional development to a safety-first culture.
Our company is an equal-opportunity employer — we are committed to providing a work environment where everyone can thrive, grow, and feel connected. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
