SAP Application Security Consultant
Indexed description
collaborative culture.
What will you be doing?
As an SAP Application Security Consultant at BDO, you will:
- Lead SAP role design and role optimisation for ECC and S/4HANA environments.
- Design and maintain SoD rulebooks, perform SoD analysis and support remediation plans.
- Drive user- and role-remediation programs (identification, prioritisation, remediation tracking, validation).
- Assess SAP access-related IT and process controls; design and implement compensating or preventive controls.
- Support policy, process, and control documentation for SAP access, and help define operating models for access governance.
- Conduct interviews, review artefacts, run tooling analysis (SoD engines), and present findings to stakeholders.
- Support security risk assessments, compliance initiatives (e.g., NIS2/DORA implications for access controls), and audits relevant to SAP access.
- Contribute to proposals, client workshops and capability build-out within the practice.
- Take ownership of continuous improvement and business growth by identifying opportunities for automation, service expansion and knowledge transfer;
- Mentor junior staff and lead client engagements to expand the team’s offerings and impact.
- Proven experience and knowledge in SAP role design and user assignment for ECC and S/4HANA (minimum expectation).
- Strong background in SoD rulebook creation, SoD analysis and pragmatic risk tuning.
- Hands-on experience delivering user & role remediation programs in large organisations.
- Knowledge of IT and process control frameworks and ability to translate access risks into controls and tests.
- Familiarity with security frameworks (ISO 27001, NIST CSF) and regulatory drivers (e.g., NIS2, DORA) is advantageous.
- Strong analytical and communication skills; able to present findings to technical and executive stakeholders.
- Project delivery mindset: able to plan remediation sprints, manage dependencies and track outcomes.
- Degree in computer science, information security, engineering, business or equivalent experience; 1/2-5 years relevant experience (or stronger for senior roles).
- Willingness to obtain relevant certifications (e.g., CISSP, CISM, CISA, SAP GRC-related certs).
- Fluency in English; French or Dutch
- Culture: you will join a team of experts who encourage respect, diversity and teamwork.
- Development: you decide the direction of your career, and we support you, where necessary.
- Impact: from day 1 you will be given responsibility, with support from your team.
- Growth: you get access to a whole range of training courses through our BDO Academy.
- Network: you can work on different projects and clients, across business practices.
- Flexibility: you choose where you work with flexible working hours.
- Wellbeing: your physical and mental health is important to us.
- Proximity: you work in an open culture, so feel free to speak to anyone, at any level.
- Salary: you receive a competitive salary package with interesting benefits.
- Sustainability: you work within a company with an integrated sustainability policy.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search