Our Clientis looking for an SAP GRC Specialist. Reporting to the Lead, ERP Security, the Senior SAP GRC Specialist ensures the integrity, security, and compliance of SAP (SAP S/4 HANA and other tool suite) systems by managing access controls, risk assessments, and audit processes. Role : SAP GRC SpecialistStart : March 9, 2026End Date : 1 Year Contract. Strong chance of a renewalLocation : Vancouver, BC; Onsite 4 days work in the office, 1 day offsite work from home.Work Type : Contract Role Overview Reporting to the Lead, ERP Security, the SAP GRC Specialist ensures the integrity, security, and compliance of SAP (SAP S/4 HANA and other tool suite) systems by managing access controls, risk assessments, and audit processes. This role collaborates with IT security, audit, and business teams to implement and maintain GRC solutions that align with organizational policies, industry standards and regulatory requirements. Responsibilities Design, configure and mature SAP S/4HANA, SAP GRC AC/IAG application security matrix using industry best practices. Plan, design, and deliver internal controls i.e., ITGC and SAP Business Process controls which adhere to industry’s best practices and organization’s requirements. Engage with SI partners and take part in solution design workshops and configure SAP GRC Access Control, Process Control, and SAP IAG. Engage with business and project users to understand the security access requirements and help the Lead, ERP Security, to document security deliverable(s). Provide day-to-day technical support to project and business users and resolve SAP S/4HANA, SAP GRC 12.0, other SAP Cloud application security defects. Work closely with the Security Lead and SI partner to build the SAP roles, troubleshoot, and resolve security defects from various testing phases, and complete various cutover tasks. Perform SoD risk analysis and suggest remediation strategies to project stakeholders. Provide training and support for security role design to end-users and stakeholders in business terminology. Monitor compliance with internal controls and external regulations. Generate and analyze audit reports. Work with internal audit, compliance, and IT teams to address findings. Prepare reports for audits and compliance reviews. Qualifications Bachelor’s Degree required in computer or applied science, business, or a related field. 8-10 years of progressive experience in the area of GRC and Admin roles with earlier experience leading similar teams. Experience in SAP authorization and access control, managing user roles, authorizations, and profiles. Familiarity with various SAP modules such as FI (Financial Accounting), HR (Human Resources), MM (Materials Management), and PM (Plant Maintenance) and assets. Knowledge of Governance, Risk, and Compliance modules, including Access Control, Process Control, and Risk Management. Strong application security foundational/implementation expertise in SAP S/4HANA, SAP GRC Access Control and SAP IAG Bridge scenario. Ability to troubleshoot and resolve security and configuration defects/issues that are part of SAP S/4HANA, Fiori, SAP GRC Access Control and SAP IAG. Experience in leading/ being part of security workshops and discussions with project/business users. Strong knowledge of Internal Controls, SoD(s), and its implications in SAP Application security. Work with Controls Governance and IT teams to ensure a holistic approach is taken to remediate Corporate Audit findings related to SoD(s). Able to work cross-functionally with business and technical teams to achieve cohesive solutions. Clearly and effectively communicates technical concepts to both technical and non-technical stakeholders. Previous project experience in SAP S/4HANA transformation projects a plus. Must have in-depth knowledge and experience in SAP GRC Access control functionalities ARM, ARA, EAM and BRM and Process Control functionalities – CCM and Manual Control monitoring. Expertise in design and deliver SAP IAG solution tailoring to organization’s requirements. Would be an asset to have certifications like SAP GRC certifications, CRISC, CISA, or similar. #J-18808-Ljbffr