Principal SAP Security Consultant, Gilead
Company: Infosys
Location: Indianapolis
Posted on: April 5, 2026
|
|
|
Job Description:
Infosys i s seeking a Principal SAP Security Consultant This
position requires an expert contributing to different phases of the
consulting lifecycle. You will be intensely involved in business
process consulting; you will define the problem, propose, and
create the solution. You will also play an important role in the
development, configuration, and deployment of the overall solution.
You will guide teams on project processes, deliverables and
contribute to the proposal development, client training and
internal capability building and help detail the project scope. You
will have the opportunity to shape value-adding consulting
solutions that enable our clients to meet the changing needs of the
global landscape. Basic Qualifications Bachelor’s degree or foreign
equivalent required from an accredited institution. Will also
consider three years of progressive experience in the specialty in
lieu of every year of education. At least 11 years of experience
with Information Technology. Location of the requirement is
Raleigh, NC. The role may require travel to project/Client
location. Candidates authorized to work for any employer in the
United States without employer-based visa sponsorship are welcome
to apply. Infosys is unable to provide immigration sponsorship for
this role at this time. Preferred Qualifications Experience in SAP
Security in Development / Configuration / Solutions Evaluation /
Validation and Deployment At least 10 years of experience in
Project life cycle activities on development, maintenance, and
upgrade projects At least 10 years of experience in Design and
Architecture review At least 10 years of experience in Business
Process Consulting, problem definition, Architecture / Design /
Detailing of Processes Security expertise in SAP S/4HANA, HANA,
Fiori, ECC / CRM / BW / BIbO / EP / CUA / BOBJ / GRC (hands-on
experience in minimum 3 systems – e.g., ECC, GRC, and S/4HANA) GRC
Access Control support / upgrade experience Experience in Process
Control & Automations will be an added advantage Team leading /
Management experience, resource planning, issue resolution, weekly
status reports, and timesheets Experience in SoD remediation and
conducting SOX controls / reviews Experience working on security
assessments for various SAP systems Hands-on experience executing
SU25 upgrade steps during SAP ECC to S/4HANA upgrades, including:
Experience developing and maintaining an SU25 Upgrade Playbook,
covering pre-upgrade baseline snapshots, step-by-step execution
procedures, exception handling, sign-off checkpoints, and
post-upgrade validation Experience performing pre- and post-upgrade
role delta analysis to identify authorization gaps introduced by
S/4HANA simplification items Experience remediating Fiori tile and
OData service authorizations introduced during upgrade, including
catalog / group assignment and PFCG Fiori object integration
Knowledge of SAP security impact assessment for simplification
items from the SAP Simplification List relevant to authorization
objects and role design Experience conducting end-to-end SAP
Security Assessments across ECC, S/4HANA, BW, GRC, and cloud
systems, covering people, process, and technology dimensions
Ability to evaluate and baseline the current state of SAP security
design, including role architecture, authorization concept
documentation, naming conventions, and structural design patterns
(single roles, composite roles, derived roles, reference roles)
Experience reviewing and assessing SAP authorization concepts
against industry best practices, SAP standard recommendations, and
customer-defined security policies Hands-on experience assessing
critical authorization objects and sensitive access combinations,
including evaluation of SAP profile parameter baselines for
security-relevant parameters (login/ , auth/ , rdisp/ , icm/ ) and
benchmarking against SAP security hardening guides and CIS/DSAG
baselines Ability to assess SAP network security controls including
RFC trusted system relationships, ICM/ICF service exposure, and Web
Dispatcher configurations Experience reviewing SAP GRC Access
Control configuration including ruleset completeness, workflow
design, role owner assignments, access request process
effectiveness, and periodic review cycle health Familiarity with
SAP Fiori security assessment activities including launchpad
catalog / group access review, OData service authorization
evaluation, and backend authorization object alignment Experience
evaluating SAP audit log and security monitoring configurations,
including Security Audit Log (SM19 / SM20), System Log (SM21), and
Change Document review completeness Ability to assess user
administration procedures and governance including user type usage
(Dialog, Service, System, Communication users) , password policy
enforcement, and periodic user access review processes Experience
evaluating SOX and GxP control effectiveness within SAP security,
including evidence of periodic SoD reviews, privileged access
reviews, and audit trail integrity Experience benchmarking client
SAP security posture against industry frameworks such as SAP
Security Baseline, DSAG Security Guidelines, CIS SAP Benchmarks,
and NIST controls Ability to facilitate assessment workshops and
interviews with SAP Basis, Security, Internal Audit, and Business
Process Owner stakeholders to gather evidence and validate findings
Good understanding of business processes in the Life Sciences /
Pharmaceutical domain Good understanding of GxP and SOX
requirements; should have working experience in a validated
environment Ability to communicate and collaborate with senior
business and IT stakeholders Strong communication skills and
ability to understand Life Science-specific document requirements
and experience updating the same Experience in providing
professional client presentations Effective time management,
communication, and organizational skills Proficient in use of Word,
Excel, Visio, and PowerPoint Ability to work independently without
supervision Strong analytical and problem-solving skills with the
ability to assess relevant facts Excellent communication and
interpersonal skills; well-versed in English with excellent spoken
and written skills Proactive approach to problem solving; motivated
self-starter with exceptional team building, leadership, and
interpersonal skills Experience leading large upgrade teams with
onsite and offshore coordination High-impact communication with
senior stakeholders Monitor systems and report any issues to Senior
SAP Security and Controls Consultant Provide technical support for
customer role upgrade and / or role redesign by assisting customers
in defining roles and remediating potential Segregation of Duty
(SoD) conflicts Research client problems and provide accurate,
timely documentation Enforce security policies and procedures by
performing periodic reviews of security reports Continuously
develop problem-solving skills and apply critical thinking Develop
awareness and understanding of SAP Security products and evolving
upgrade toolsets Familiarity with onsite-offshore models; has led
teams of offshore and onsite resources The job entails sitting as
well as working at a computer for extended periods of time. Should
be able to communicate by telephone, email or face to face. Travel
may be required as per the job requirements. Along with competitive
pay, as a full-time Infosys employee you are also eligible for the
following benefits :- Medical/Dental/Vision/Life Insurance
Long-term/Short-term Disability Health and Dependent Care
Reimbursement Accounts Insurance (Accident, Critical Illness ,
Hospital Indemnity, Legal) 401(k) plan and contributions dependent
on salary level Paid holidays plus Paid Time Off Infosys is a
global leader in next-generation digital services and consulting.
We enable clients in more than 50 countries to navigate their
digital transformation. With over four decades of experience in
managing the systems and workings of global enterprises, we
expertly steer our clients through their digital journey. We do it
by enabling the enterprise with an AI-powered core that helps
prioritize the execution of change. We also empower the business
with agile digital at scale to deliver unprecedented levels of
performance and customer delight. Our always-on learning agenda
drives their continuous improvement through building and
transferring digital skills, expertise, and ideas from our
innovation ecosystem. Infosys provides equal employment
opportunities to applicants and employees without regard to race;
color; sex; gender identity; sexual orientation; religious
practices and observances; national origin; pregnancy, childbirth,
or related medical conditions; status as a protected veteran or
spouse/family member of a protected veteran; or disability.
Keywords: Infosys, Indianapolis , Principal SAP Security Consultant, Gilead, IT / Software / Systems , Indianapolis, Indiana
