Job Details

BridgePhase is a software engineering company focused on designing, building, securing, and operating cutting-edge software solutions that drive mission success and operational excellence for Federal Government organizations. Our mission is to empower our clients and employees to realize their potential, achieve amazing results, and advance the mission of our Federal government. We do this by providing an environment that fosters the growth, innovation, collaboration, and delivery excellence needed to achieve successful and lasting transformative IT modernization. With BridgePhase, federal agencies gain a trusted partner dedicated to delivering high-performing solutions that advance the nation's most critical objectives.

We are currently hiring an SAPSecurity and Governance, Risk & Compliance (GRC) Consultant to support one of our federal clients on-site in Chantilly, Virginia. The SAP Security and GRC Consultant candidate will be responsible for leading our security and controls team in delivery and maintenance of solutions that meet our client's complex needs. The candidate should be an experienced manager who still does hands-on work and has the necessary knowledge of SAP and GRC to effectively work with minimal supervision. Candidates should have knowledge or previous work experience in managing SAP and GRC tools in a cloud environment, understanding the complexities that come with cloud, and can effectively communicate cloud security design/architecture ideas to technical as well as non-technical client stakeholders. This is a full-time position, and due to security requirements is on-site only.

Skills/Experience Requirements:

• 4+ years' experience managing SAP application security and SAP GRC Access Control for the client's SAP landscape, from development up to production.
• Ability to design, configure, develop, and maintain SAP roles (composite and single) to align with business requirements.
• Participate in role redesign projects during upgrades or business transformations.
• Deep understanding of SAP authorization concepts catering to SAP ECC, SAP S/4 HANA systems, and SAP GRC Access Control (10.x and 12.x).
• Experience in Security/GRC implementation and maintenance, to include minor enhancements as well as support pack/version upgrades.
• Extensive hands-on experience with GRC master data creation and maintenance, performing risk analysis and remediation activities, batch job monitoring, audit & compliance support activities (user management controls, access certification, etc.), and BRF+ and MSMP workflows.
• Ability to effectively and efficiently troubleshoot security access issues, interacting with key functional/business stakeholders as necessary in order to resolve SAP Security/GRC errors/exceptions.
• Keeps oneself constantly abreast of the latest advancements on SAP ECC, S/4 HANA, and other emerging security authorization concepts.
• Knows the risks associated with application security vulnerabilities, and proposes solutions to eliminate and/or mitigate those risks.
• Understanding of NIST, SOX, SOD, and SAP IT General Computer Controls, how these compliance requirements impact security, and provide solutions to address them.
• Support, develop, and enable junior team members.
• Provide SAP security technical training to client counterparts, as needed.

Additional Requirements:

• BA/BS Degree is required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology.
• Top Secret / SCI Clearance (Counterintelligence Polygraph is highly preferred)

About Our Company:
At BridgePhase, our values shape our culture and guide our actions. We act with integrity, honesty, and respect, earning trust and fostering collective success. We are critical thinkers and problem solvers, driving innovation and positive disruption to solve hard challenges at speed and scale. Our work is characterized by courage, compassion, commitment, and teamwork. We apply disciplined engineering principles and a proven agile approach that deliver flexible, simplified, durable and performant solutions that drive continuous improvement and have lasting impact and sustained value. Additionally, we invest in our communities through strategic charitable initiatives, empowering our employees to make meaningful contributions to causes they are passionate about.

Our Benefits:
We pride ourselves on providing top-tier benefits that rival those found in larger organizations. Below are some of the perks our team enjoys:

• Competitive compensation based on experience
• Flexible PTO plan
• Paid Sick Leave
• 100% Paid Paternal Leave (16 weeks Maternity, 6 weeks Paternity)
• 401k plan with 6% employer matching (zero vesting period)
• Excellent health, dental, and vision benefits
• Professional development budget that can be used for certifications and training
• Paid community service days

#J-18808-Ljbffr