InfoSpeed Services, Inc.
Website:
infospeedinc.com
Job details:
Role Summary
We are seeking an experienced SAP Audit & Internal Controls Specialist to support SAP audit remediation activities and the ongoing maintenance of internal controls. This role is non-technical in nature and does not include SAP functional configuration, development, or production support. The role focuses on governance, risk, and compliance (GRC) activities within SAP, including Segregation of Duties (SoD), IT General Controls (ITGCs), access controls, audit coordination, and remediation management. Key Responsibilities SAP Audit & Compliance Support
• Support internal and external audits related to SAP systems.
• Coordinate and manage audit requests, evidence collection, walkthroughs, and auditor interactions.
• Support audit remediation activities, including tracking findings, defining action plans, and ensuring timely closure.
• Act as the primary liaison between audit teams, IT, SAP functional teams, and business stakeholders. Internal Controls Management
• Design, maintain, and monitor SAP IT General Controls (ITGCs), including: o User Access Management o Change Management (governance oversight only) o Role and authorization controls
• Ensure SAP controls align with SOX, ISO, or internal risk frameworks, as applicable.
• Periodically review control effectiveness and recommend improvements. Segregation of Duties (SoD) & Access Governance
• Manage and support SoD controls within SAP.
• Review SAP roles and access from a risk and compliance perspective.
• Coordinate SoD analysis, mitigation controls, and risk remediation with SAP and business teams. • Support user access reviews, periodic certifications, and emergency access governance. Coordination & Governance
• Plan and coordinate control execution across SAP landscapes.
• Maintain documentation such as: o Control descriptions o Process narratives o Risk and control matrices (RCMs) o Audit evidence and remediation logs
• Track KPIs related to control performance and audit readiness. Scope Clarification (Out of Scope) This role does not include:
• SAP functional configuration
• SAP technical development (ABAP, Basis, integrations)
• End-user or production SAP support
• System upgrades or migrations Required Skills & Experience Mandatory
• 6+ years of experience in SAP controls, audit, risk, or compliance roles
• Strong hands-on experience with: o SAP ITGCs o Segregation of Duties (SoD) o SAP user access and role governance
• Experience supporting internal and external audits (SOX or equivalent)
• Strong understanding of SAP security concepts from a controls and risk perspective
• Excellent stakeholder coordination and documentation skills Nice to Have
• Experience with SAP GRC Access Control or similar tools
• Knowledge of compliance frameworks (SOX, COSO, ISO 27001, COBIT)
• Experience working in large, global SAP landscapes (ECC, S/4HANA) Key Stakeholders
• Internal Audit • External Auditors
• SAP Security and Functional Teams
• IT Risk & Compliance
• Business Process Owners
Click on Apply to know more.