Senior SAP GRC Consultant Risk & Compliance

Senior SAP GRC Consultant Risk & Compliance

Saudi Arabia | Remote | B2B | Salary: negotiable

For our Client,  a well-established and fast-growing technology consulting firm based in the Kingdom of Saudi Arabia, delivering enterprise-grade IT solutions to major clients across sectors such as energy, finance, and government,  we are currently looking for an experienced Senior SAP GRC Consultant to join long-term digital transformation initiatives.

This role involves leading SAP GRC (Governance, Risk & Compliance) implementations and advisory projects. You will work closely with internal security, audit, and compliance teams, supporting risk management and regulatory alignment across complex SAP environments.

Resposibilities

SAP GRC Implementation & Configuration

• Lead or actively participate in the implementation, configuration, and optimisation of SAP GRC modules, particularly Risk Management (RM) and Process Control (PC).

Risk Assessment & Management

• Develop and implement the organisation's risk management framework within SAP GRC, defining risk appetite, owners, and responsibilities.
• Identify, assess, and prioritise risks across SAP business processes, including operational, financial, IT, and compliance risks.
• Design and implement risk mitigation strategies and controls, defining and tracking mitigating controls within the GRC system.
• Perform qualitative and quantitative risk analyses to understand the likelihood and impact of potential risks.
• Monitor data in real-time, leveraging automated risk monitoring functionalities.

Audit & Compliance

• Conduct audits and reviews to assess the effectiveness of internal controls, risk management practices, and governance processes, verifying compliance with regulations, policies, and procedures.
• Provide support during statutory and SOX audits, gathering evidence and preparing documentation required for compliance reporting.
• Assess the design and operating effectiveness of IT General Controls (ITGCs) and business controls supporting financial processes.
• Investigate and respond to audit findings, assisting in the development and validation of remediation plans.
• Ensure compliance with policies, procedures, and IT controls, including the implementation of Automated Control Monitoring (ACM) functionality where applicable.

Reporting & Analytics

• Generate reports and dashboards to provide insights into risk exposure, control effectiveness, and compliance status for management and stakeholders.

Collaboration & Communication

• Work closely with business stakeholders, functional teams, IT security, and auditors to align risk and compliance efforts with business objectives.
• Provide training and support to business users, GRC owners, approvers, and mitigation reviewers on their responsibilities within the GRC framework.

Process Improvement

• Continually assess and enhance existing GRC processes to support the ongoing evolution of the Risk and Control Matrix (RCM).
• Promote a proactive risk and control culture across the organisation.

Requirments

• 810 years of technology consulting experience in SAP GRC Process Control (PC) and Risk Management (RM), including end-to-end implementation projects.
• Proven experience in leading or actively participating in critical client engagements focused on SAP GRC PC & RM solutions.
• Strong client-facing communication skills able to gather and clarify requirements, manage expectations, report task status, and escalate risks or dependencies effectively.
• At least 46 years of experience in a lead or managerial role on SAP GRC implementation projects.
• Ability to define and execute unit tests, integration tests, and regression test scripts to validate end-to-end business scenarios.
• Proficient in identifying and resolving complex functional issues/bugs during implementation, testing, and post-go-live support.
• Hands-on experience in overseeing the full lifecycle of SAP GRC PC & RM, including design, development, integration, reporting, and daily ticket resolution.
• Experience working with clients in the Saudi Arabian public sector is a strong plus.

Our Client offers

• Opportunity to work for a reputable SAP partner delivering high-impact projects across the public and enterprise sectors
• Participation in strategic SAP programs, including GRC, Security, Analytics, and S/4HANA transformation
• Cooperation based on a B2B contract with competitive rates
• Possibility of long-term collaboration, including transition to permanent/retained role
• Optional relocation to Saudi Arabia
• Exposure to complex, regulated SAP environments and modern technology stacks (e.g. SAC, BTP)
• Professional and multicultural work environment
• Projects with global visibility and real business impact
• Respectful collaboration with experienced consultants and solution architects
• Access to continuous learning, mentoring, and knowledge sharing

www.ithr.pl | agnieszka.grabowska@ithr.pl