We are constantly working on our SAP authorization management processes across all systems within the OneSAP+ cluster. Our goal is to establish a consistent, audit‑compliant authorization framework, minimize the use of elevated or exceptional privileges, and ensure that Emergency User Procedures (EUP) are applied only where strictly necessary.
A key part of this initiative is the analysis of current authorization usage, the evaluation of EUP‑related activities, and the transition of exceptional tasks into standardized, dialog‑based processes wherever possible.
Tasks
Conducting an AS‑IS analysis of authorization usage
Reviewing when and why elevated authorizations or EUP accounts are currently used.
Identifying process gaps
Determining which activities can be executed with standard dialog authorizations and where EUP usage is justified.
Performing gap analyses in the authorization concept
Identifying missing roles, authorization objects, or process steps required to avoid unnecessary EUP usage.
Contributing to the enhancement of the authorization and EUP framework
Supporting the design, documentation, and rollout of a unified, secure, and audit‑ready authorization process, including a strengthened Emergency User Procedure.
Optimizing authorization and EUP usage
Target 1: Reduce the use of elevated or exceptional authorizations to a minimum
Target 2: Eliminate broad authorizations (e.g., SAP_ALL/SAP_NEW) wherever feasible. If unavoidable, document the justification and use cases
Target 3: Increase the security, traceability, and governance of EUP processes
Ideal Profile
Deep technical understanding of existing authorization processes and EUP
Strong knowledge of the Axl&Trax authorization concept
Experience with SAP user statistics and usage analysis
Proficiency in ABAP authorization concepts across S/4HANA, BW/4HANA, SRM, CRM and BTP
Good documentation skills
Strong communication abilities and a collaborative mindset
Experience working with Jira
Languages: English plus Dutch, French, or German