Apply now »







SAP GRC Associate Consultant


 Group Overview:

  Headquartered in Riyadh, Saudi Arabia, we operate construction and manufacturing businesses, design &  development centers and a host of facilities in the Middle East and other countries.


  alfanar is involved in:

  • Electrical, Electromechanical and Civil Engineering Construction

  • Manufacturing and Marketing Electrical Construction Products

  • Allied Engineering Services


 Our Main Divisions:

  • alfanar electric

  • alfanar Construction

  • alfanar Building Systems

Job Purpose

This position exists to assist GRC team in the configuration and development of access control / process control and support business processes owners in the area of granting access and risks assessment modules efficiently, in timely manner and quality standards as per the defined policies and procedures to achieve departmental operational plans and developments.

Functional Responsibilities

Business Operations:
•    Responsible for Integration, Technical Design, Development, Testing, Implementation and Support of SAP GRC, across all SAP landscapes 
•    Drive Support/Upgrade/Implementation/Roll Out projects 
•    Working with business unit and internal audits to ensure risks are at appropriate level and setting risks and conflicts up appropriately within Technical Specifications
•    Implement SOD's into system. Working with broad range of customers, technical staff and internal audit
•    Maintain Alfanar’s SoD ruleset technically
•    Defining system controls and developing procedures in collaboration with key stake holders
•    Assist functional and technical team with troubleshooting critical issues, as it relates to Security and GRC.
•    Support knowledge on IAG concepts
•    Able to drive project and lead team
•    Ensure that all roles are redesigned to SAP security standards, identify, and eliminate all SoD conflicts at user and role level with business coordination
•    Fix any GRC configuration issues.
•    Provide second-level support for users with security-related problems.
•    Implement automation for on-boarding, off-boarding, monitoring of critical users, roles, transactions, and other security parameters on SAP systems.
•    Address SoD conflicts with input from Security/Business/Governance/Audit
•    Assist in coordinating security for SAP interfaces, user training, user acceptance testing, and data conversions where necessary.
•    Create, change, update users as per business requirements via WF
•    Monitoring overall functionality of GRC 

Business Improvement:
•    Develop and oversee test plans for security enhancements.
•    Drive ongoing improvements and remediation for SAP Security-related controls.
•    Responsible for understanding complex business needs specifically focused on SAP Security and research, design, and develop solutions e.g., SAP HANA, C4C, Hybris, Success Factor, Ariba, SOP/IBPetc.

•    Maintain GRC – BRM methodology
•    Assist in defining authorizations and roles for Business, and all IT users.
•    Assist in Testing, validation and signoff of user roles and authorizations.

Business Planning:
•    Security planning and support during SAP project integration testing and UAT.

•    Documentation of SAP roles and user authorizations, including design and changes.

Best Practice:
•    Work with functional teams and change management teams to understand the business requirements and gather application security requirements in alignment with the industry best practices.

Risk Mitigation:
•    Participate in risk mitigation sessions for new projects or processes and ensure that all significant SAP Security risks are identified and accounted for appropriately.
•    Collaborate within SAP Security team to ensure risks in both ongoing and planned operations are properly considered and that all compliance requirements are met.

Policies and Procedures:
•    Participate in analyzing and designing security solutions for applications and systems and provide consulting to project teams on security controls needed to enforce alfanar security policies and standards.

General Responsibilities

HR Proficiency:

  • Ability to obtain updated soft and technical skills related to the job


  • Perform the planned activities to meet the operational and development targets as per delivery schedules.
  • Utilize resources effectively to achieve objectives within efficient cost and time.
  • Provide a periodic report formatted by detailing the deviation and execution of planned tasks.


  • Solve any related problems arise and escalate any complex operational issues.


  • Ensure quality requirements to develop effective quality control and processes including specifications for products or processes or related activities.

Business Process Improvement:

  • Coordinate well-defined written systems, policies, procedures, and seek automations opportunities as much as possible.


  • Comply to related policy and procedures and work instructions.

Health, Safety, and Environment:

  • Ensure compliance of relevant safety, quality, and environmental management procedures and controls within defined area of work activity to guarantee safety, legislative compliance, and delivery of high-quality products/services.


Bachelor in Information Mgmt. Sciences & Systems


2 to 5 Years


Applications Development Standards and Procedures
Applications Knowledge
Applications System Analysis
Applications System Design
Applications Systems Architecture
Desktop Applications Knowledge
Desktop Distributed Applications Development
Joint Applications Development
Web Applications Programming

Apply now »