Back to the job description
SAP GRC analyst and Security Consultant
Calgary, CA
Resume/CV
*
Attach
Please fix the following errors:
Do you have work authorization to work in Canada?
Yes
No
The location is Calgary, Canada. Are you fine with it?
Yes
No
Describe a production SoD remediation project you personally owned — not ran reports for, but owned. How large was the conflict backlog, how did you prioritize what to remediate vs mitigate vs accept, and what happened when a business owner refused to give up an access that created a critical conflict?
Walk me through how you would diagnose and fix an authorization failure for a user who can navigate to a transaction but receives an authorization error mid-process. What tools do you use, in what sequence, and how do you determine which authorization object and field value is missing without over-authorizing the user?
Describe how you governed the Firefighter process in a SOX environment end to end — not just the configuration, but the operational lifecycle. How did you manage FF ID assignments, what did your log review process look like, and what was the most serious misuse or policy violation you detected through Firefighter logs?
What are the most significant differences between SAP ECC role design and S/4HANA security — specifically around Fiori authorization, business roles, and the changes to authorization object behavior? If you have done an ECC-to-S/4 security migration, describe the biggest surprise you hit.
Walk me through how you prepared an SAP access control evidence package for an external SOX audit. What controls did the auditors test, what evidence did you produce for each, and what finding or observation did the auditors raise — and how did you respond?
Apply
We use cookies to offer you our service. By continuing to use this site, you consent to our use of cookies as described in our
policy
