Principal SAP Security Consultant

Infosys is seeking a Principal SAP Security Consultant

This position requires an expert contributing to different phases of the consulting lifecycle. You will be intensely involved in business process consulting; you will define the problem, propose, and create the solution. You will also play an important role in the development, configuration, and deployment of the overall solution. You will guide teams on project processes, deliverables and contribute to the proposal development, client training and internal capability building and help detail the project scope. You will have the opportunity to shape value-adding consulting solutions that enable our clients to meet the changing needs of the global landscape.

Basic Qualifications

• Bachelor's degree or foreign equivalent required from an accredited institution. Will also consider three years of progressive experience in the specialty in lieu of every year of education.
  
• At least 11 years of experience with Information Technology.
  
• Location of the requirement is Raleigh, NC. The role may require travel to project/Client location.
  
• Candidates authorized to work for any employer in the United States without employer-based visa sponsorship are welcome to apply. Infosys is unable to provide immigration sponsorship for this role at this time.
  

Preferred Qualifications

• Experience in SAP Security in Development / Configuration / Solutions Evaluation / Validation and Deployment
• At least 10 years of experience in Project life cycle activities on development, maintenance, and upgrade projects
• At least 10 years of experience in Design and Architecture review
• At least 10 years of experience in Business Process Consulting, problem definition, Architecture / Design / Detailing of Processes
• Security expertise in SAP S/4HANA, HANA, Fiori, ECC / CRM / BW / BIbO / EP / CUA / BOBJ / GRC (hands-on experience in minimum 3 systems - e.g., ECC, GRC, and S/4HANA)
• GRC Access Control support / upgrade experience
• Experience in Process Control & Automations will be an added advantage
• Team leading / Management experience, resource planning, issue resolution, weekly status reports, and timesheets
• Experience in SoD remediation and conducting SOX controls / reviews
• Experience working on security assessments for various SAP systems
• Hands-on experience executing SU25 upgrade steps during SAP ECC to S/4HANA upgrades, including:
• Experience developing and maintaining an SU25 Upgrade Playbook, covering pre-upgrade baseline snapshots, step-by-step execution procedures, exception handling, sign-off checkpoints, and post-upgrade validation
• Experience performing pre- and post-upgrade role delta analysis to identify authorization gaps introduced by S/4HANA simplification items
• Experience remediating Fiori tile and OData service authorizations introduced during upgrade, including catalog / group assignment and PFCG Fiori object integration
• Knowledge of SAP security impact assessment for simplification items from the SAP Simplification List relevant to authorization objects and role design
• Experience conducting end-to-end SAP Security Assessments across ECC, S/4HANA, BW, GRC, and cloud systems, covering people, process, and technology dimensions
• Ability to evaluate and baseline the current state of SAP security design, including role architecture, authorization concept documentation, naming conventions, and structural design patterns (single roles, composite roles, derived roles, reference roles)
• Experience reviewing and assessing SAP authorization concepts against industry best practices, SAP standard recommendations, and customer-defined security policies
• Hands-on experience assessing critical authorization objects and sensitive access combinations, including evaluation of SAP profile parameter baselines for security-relevant parameters (login/ , auth/ , rdisp/ , icm/ ) and benchmarking against SAP security hardening guides and CIS/DSAG baselines
• Ability to assess SAP network security controls including RFC trusted system relationships, ICM/ICF service exposure, and Web Dispatcher configurations
• Experience reviewing SAP GRC Access Control configuration including ruleset completeness, workflow design, role owner assignments, access request process effectiveness, and periodic review cycle health
• Familiarity with SAP Fiori security assessment activities including launchpad catalog / group access review, OData service authorization evaluation, and backend authorization object alignment
• Experience evaluating SAP audit log and security monitoring configurations, including Security Audit Log (SM19 / SM20), System Log (SM21), and Change Document review completeness
• Ability to assess user administration procedures and governance including user type usage (Dialog, Service, System, Communication users) , password policy enforcement, and periodic user access review processes
• Experience evaluating SOX and GxP control effectiveness within SAP security, including evidence of periodic SoD reviews, privileged access reviews, and audit trail integrity
• Experience benchmarking client SAP security posture against industry frameworks such as SAP Security Baseline, DSAG Security Guidelines, CIS SAP Benchmarks, and NIST controls
• Ability to facilitate assessment workshops and interviews with SAP Basis, Security, Internal Audit, and Business Process Owner stakeholders to gather evidence and validate findings
• Good understanding of business processes in the Life Sciences / Pharmaceutical domain
• Good understanding of GxP and SOX requirements; should have working experience in a validated environment
• Ability to communicate and collaborate with senior business and IT stakeholders
• Strong communication skills and ability to understand Life Science-specific document requirements and experience updating the same
• Experience in providing professional client presentations
• Effective time management, communication, and organizational skills
• Proficient in use of Word, Excel, Visio, and PowerPoint
• Ability to work independently without supervision
• Strong analytical and problem-solving skills with the ability to assess relevant facts
• Excellent communication and interpersonal skills; well-versed in English with excellent spoken and written skills
• Proactive approach to problem solving; motivated self-starter with exceptional team building, leadership, and interpersonal skills
• Experience leading large upgrade teams with onsite and offshore coordination
• High-impact communication with senior stakeholders
• Monitor systems and report any issues to Senior SAP Security and Controls Consultant
• Provide technical support for customer role upgrade and / or role redesign by assisting customers in defining roles and remediating potential Segregation of Duty (SoD) conflicts
• Research client problems and provide accurate, timely documentation
• Enforce security policies and procedures by performing periodic reviews of security reports
• Continuously develop problem-solving skills and apply critical thinking
• Develop awareness and understanding of SAP Security products and evolving upgrade toolsets
• Familiarity with onsite-offshore models; has led teams of offshore and onsite resources

The job entails sitting as well as working at a computer for extended periods of time. Should be able to communicate by telephone, email or face to face. Travel may be required as per the job requirements.

Along with competitive pay, as a full-time Infosys employee you are also eligible for the following benefits :-
Medical/Dental/Vision/Life Insurance
Long-term/Short-term Disability
Health and Dependent Care Reimbursement Accounts
Insurance (Accident, Critical Illness , Hospital Indemnity, Legal)
401(k) plan and contributions dependent on salary level
Paid holidays plus Paid Time Off

Client-provided location(s): Indianapolis, IN

Job ID: Infosys-146263BR

Employment Type: OTHER

Posted: 2026-04-01T18:46:20