SAP GRC Consultant


We are a global firm blending boutique-style client service with big firm know-how.

We help our clients to elevate their supply chain and manufacturing strategies as well as implementation solutions that will advance their business to the next level, by innovating at the intersection of advanced technology and sustainable, supply chain solutions.

We also provide Enterprise Services such as Advanced Analytics (Business Intelligence), Enterprise Integration, Governance & Risk Management, IT Advisory and Compliance, SAP ERP and SAP S/4 HANA.


About the job

We are looking for SAP GRC Consultant for our Rome office. The resource will be included in our Compliance / GDPR / Analytics Practice and allocated to a significant international project.



Analysis and understanding of the central business processes like preparing the financial statements (Passive Cycle, Asset Cycle, Accounting, Management Control, Assets):

  • Detailed mapping of processes and identification of critical activities
  • Identification of the pairs of activities that are incompatible with each other in terms of Segregation of Duties (Law 262/05) which represent a risk of potential fraud/errors for the company

Analysis, management, and control of risks related to business processes according to the compliance principles of the Segregation of Duties:

  • Analysis and review of the Segregation of Duties for the SAP application
  • Role and user management for the SAP application
  • Reengineering of SAP profiles according to the compliance defined for the Segregation of Duties

Design and implementation of the Access Risk Analysis (ARA, formerly RAR), Emergency Access Management (EAM, formerly SPM), and Access Request Management (ARM, formerly CUP) components of the Access Control module of SAP GRC:

  • Configuration of ARA, EAM, and ARM components
  • Conversion of the Segregation of Duties rules into the SAP GRC format, uploading of the rules to the system, execution of risk assessment, and analysis of the risk report
  • System mapping of compensatory controls and mitigation strategies for identified risks


Workplace: Rome

We do not consider applications without CV.


According to current legislation, the job offer is intended to be extended to both sexes (L 903/77) and comply with our privacy policy (EU Regulation no. 2016/679).

Apply Online