Expert SAP Technical-Security

Job title

Expert SAP Technical -Security

Grade

Stream

People & Technology

Function

Corporate IDS 

Location

Oman -Muscat

Budget control

*OPEX and/or CAPEX and/or Revenue amount as relevant*

Reporting to

Manager SAP Technical

Direct reports

0

Job purpose

Leads the design, governance, and administration of SAP Technical Security to ensure the confidentiality, integrity, and availability of SAP systems and data. The role provides expert support for SAP Access Control through the SAP GRC suite, advises both business and SAP technical teams on best‑practice security models, and develops strong access and compliance controls across all SAP landscapes. It safeguards the organization from internal and external threats, ensures alignment with regulatory and corporate requirements, and promotes a culture of security awareness across the enterprise.

The position will act in accordance with the Group’s Mission, Vision, Values & Strategies, as well as, policies, guidelines, and standards, supported by an IT Technology platform, HSE standards, Omani’s government & other legal justifications, and best international practices in consonance with national objectives.

Main tasks and responsibilities

• Develop and maintain SAP security policies, standards, and guidelines aligned with best practices, regulatory requirements, and corporate governance.


• Design and implement role-based access control (RBAC), authorization concepts, and segregation of duties (SoD) frameworks to ensure least‑privilege access.


• Architect and design SAP security solutions that meet OQ GRC requirements.


• Implement and maintain security controls within S/4HANA, BW/BI, SAP SCM, SAP BTP and Business Objects.


• Work directly with business users to establish security controls that support compliance while enabling business operations.


• Provide expert-level operational support for SAP production security incidents, enhancements, role design, authorization errors, user administration, and SAP GRC system management.


• Monitor and self-assign incoming SAP security and user administration tickets, ensuring timely and accurate resolution.


• Manage user provisioning, role assignments, and access requests using SAP Identity Management (IDM), SAP Access Control (GRC), and relevant IAM tools.


• Conduct periodic user access reviews, access certifications, and compliance assessments to ensure adherence to policies and regulations.


• Collaborate with the Cybersecurity/SOC team to review SAP‑related SIEM alerts, security events, and audit logs, providing SAP expertise during investigations


• Investigate security incidents, perform root cause analysis, and coordinate resolution with IT Security, SAP Basis, and business stakeholders.


• Conduct regular security , assessments, and compliance reviews to validate the effectiveness of SAP controls and recommend remediation actions.


• Prepare documentation and evidence for internal and external audits, ensuring compliance with requirements such as GDPR and SOX.


• Perform vulnerability assessments, security scans, and penetration tests on SAP systems to identify and remediate weaknesses.


• Coordinate the deployment of SAP security patches, notes, and corrections to maintain system integrity.


• Deliver SAP security awareness training for users, administrators, and stakeholders to strengthen the organization’s security culture.


• Develop security procedures, guidelines, and training materials tailored to different user roles and business processes.

Key interactions

Internal: People & Technology & Corporate IDS

External: 3rd party Contractors, Vendors & Suppliers

Notable Working Conditions. Office environment, intensive computer screen use, sporadic visits to operation site.

Education requirements

• A minimum of a Bachelor’s degree IT or related disciplines.


• Certification in SAP security (e.g., SAP Certified Technology Associate - Security with SAP NetWeaver), is a plus.


• SAP Basis Certified, SAP GRC Certified and relevant cloud/security certifications are a plus.

Language

Excellent knowledge of written, read, and spoken English (required)

Background and experience

Competencies and skills

• A minimum of 8-10 years of experience in SAP security roles, with expertise in SAP security architecture, user management, access controls, and compliance.


• Experience with security standards, frameworks, and regulations such as ISO 27001, NIST Cybersecurity Framework, GDPR, and SOX.


• Experience in leading teams of SAP Security and SAP GRC Resources


• Experience in implementing SAP Basis and Security Modules.


• Experience in project managing SAP Security implementations across S/4HANA, BW/BI, and Fiori landscapes.

Soft:

• Excellent critical thinking skills, with the ability to analyze complex security issues, assess risks, and propose effective solutions.


• Effective communication, collaboration, and stakeholder management skills, with the ability to interact effectively with technical teams, business users, and audit teams.


• Analytical skills.


• Planning skills.


• Forward thinking.


• Strong presentation skills.


• Business Results Orientation.


• Prioritization skills.

Technical:

• Computer Literacy including MS Office.


• Advanced SAP software knowledge and a full understanding of security roles related to SAP user profiles is an advantage.


• Strong knowledge of SAP security technologies and tools, including SAP IDM, SAP GRC, SAP SIEM, and SAP Security Notes.


• Understanding of coding languages (SAP ABAP, SAP Fiori, Java, JavaScript).


• Familiarity with integration middleware, ETL platforms, mobility solutions, and cloud-based services


• Strong understanding of O&G ERP business process.


• Understanding of audit and business controls functions and its related SAP Security.


• Project Management.