SAP GRC Specialist (contract)
SAP GRC Specialist (contract)
Job Description
Posting Start Date:  7/9/25

 

Closing Date: July 31, 2025

 


Teck is a leading Canadian resource company focused on responsibly providing the metals essential for global development and the energy transition while caring for the people, communities and land that we love.

 

Teck's two regional business units, North America and Latin America, oversee Teck's assets through all phases of safe, sustainable development, operation and closure. The business units are supported by enterprise-wide functions that set strategic direction, establish standards and provide governance, as well as supporting the business through shared services, centres of excellence and business partnering.

 

Reporting to the Lead, ERP Security, the SAP GRC Specialist ensures the integrity, security, and compliance of SAP (SAP S/4 HANA and other tool suite) systems by managing access controls, risk assessments, and audit processes. This role collaborates with IT security, audit, and business teams to implement and maintain GRC solutions that align with organizational policies, industry standards and regulatory requirements.

 

This is an initial one-year contract. 

 

Don't miss out on this outstanding opportunity to be part of one of Canada's leading mining companies and join our team!

 

 

Responsibilities

  • •Be a courageous safety leader, adhere to and sponsor safety and environmental rules and procedures.
    •Design, configure and mature SAP S/4HANA, SAP GRC AC/IAG application security matrix using industry best practices.
    •Plan, design, and deliver internal controls i.e., ITGC and SAP Business Process controls which adhere to industry’s best practices and organization’s requirements.
    •Engage with SI partners and take part in solution design workshops and configure SAP GRC Access Control, Process Control, and SAP IAG.
    •Engage with business and project users to understand the security access requirements and help the Lead, ERP Security, to document security deliverable(s).
    •Provide day-to-day technical support to project and business users and resolve SAP S/4HANA, SAP GRC 12.0, other SAP Cloud application security defects.
    •Work closely with the Security Lead and SI partner to build the SAP roles, troubleshoot, and resolve security defects from various testing phases, and complete various cutover tasks.
    •Perform SoD risk analysis and suggest remediation strategies to project stakeholders.
    •Provide training and support for security role design to end-users and stakeholders in business terminology.
    •Monitor compliance with internal controls and external regulations. Generate and analyze audit reports.
    •Work with internal audit, compliance, and IT teams to address findings.
    •Prepare reports for audits and compliance reviews.

 

Qualifications

 

•Bachelor’s Degree required in computer or applied science, business, or a related field. 
•8-10 years of progressive experience in the area of GRC and Admin roles with earlier experience leading similar teams.
•Experience in SAP authorization and access control, managing user roles, authorizations, and profiles. 
•Familiarity with various SAP modules such as FI (Financial Accounting), HR (Human Resources), MM (Materials Management), and PM (Plant Maintenance) and assets.
•Knowledge of Governance, Risk, and Compliance modules, including Access Control, Process Control, and Risk Management.
•Strong application security foundational/implementation expertise in SAP S/4HANA, SAP GRC Access Control and SAP IAG Bridge scenario.
•Ability to troubleshoot and resolve security and configuration defects/issues that are part of SAP S/4HANA, Fiori, SAP GRC Access Control and SAP IAG.
•Experience in leading/ being part of security workshops and discussions with project/business users.
•Design and implement new authorization concepts along with business departments and IT stakeholders.
•Strong knowledge of Internal Controls, SoD(s), and its implications in SAP Application security.
•Work with Controls Governance and IT teams to ensure a holistic approach is taken to remediate Corporate Audit findings related to SoD(s).
•Able to work cross-functionally with business and technical teams to achieve cohesive solutions.
•Anticipates challenges and mitigates them before they affect the project.
•Clearly and effectively communicates technical concepts to both technical and non-technical stakeholders.
•Detailed-oriented, pays close attention to the intricacies of technical implementation, ensuring high-quality outcomes.

 

Preferred Qualifications (Nice to have skills)

 

•Previous project experience in SAP S/4HANA transformation projects.
•Knowledge of audit/compliance, privacy and regulatory requirements and its applications in SAP application security design.
•Experience in creating Business Rules using BRF+ and MSMP workflows, configurations, analyzing and Identifying issues in MSMP workflows and recommending solutions for the same.
•Must have in-depth knowledge and experience in SAP GRC Access control functionalities ARM, ARA, EAM and BRM and Process Control functionalities – CCM and Manual Control monitoring.
•Independently handle the Configurations, maintain Master data both in Access control and Process Control. Including MDUG template preparation and upload.
•Administration of SAP GRC configuration, SOD rule sets, workflows and maintaining approvers for user provisioning, emergency access.
•Expertise in design and deliver SAP IAG solution tailoring to organization’s requirements.
•Would be an asset to have certifications like SAP GRC certifications, CRISC, CISA, or similar.

 

 

Why Join Us?

 

At Teck, we offer more than just a job – we provide a pathway to personal and professional enrichment. With captivating projects set against stunning backdrops, a culture of inclusivity and collaboration, and boundless opportunities to learn and grow, joining us means embracing a fulfilling and dynamic career adventure. 

 

As a contractor, you’ll add your expertise and work alongside experienced professionals on projects that challenge and inspire. We’re dedicated to fostering your growth through coaching, training, and a commitment to safety. Your contributions will make a difference, not just in your career, but in our ongoing success. Teck offers a wide array of permanent career opportunities and your role as a contractor can be a stepping stone to exploring different positions within our organization. We’re committed to helping you chart a dynamic and rewarding career path.  

 

The actual wage rate offered is determined based on the successful candidate’s relevant experience, skills, and competencies and considers internal equity. 

 

About Teck

 

At Teck, we value diversity. Our teams work collaboratively and respect each person’s unique perspective and contribution. 

 

Learn more about Teck at www.teck.com or follow @TeckResources.

 

We wish to thank all applicants for their interest and effort in applying for the position; however, only candidates selected for interviews 

Posting Start Date:  7/9/25

 

Closing Date: July 31, 2025

 


Teck is a leading Canadian resource company focused on responsibly providing the metals essential for global development and the energy transition while caring for the people, communities and land that we love.

 

Teck's two regional business units, North America and Latin America, oversee Teck's assets through all phases of safe, sustainable development, operation and closure. The business units are supported by enterprise-wide functions that set strategic direction, establish standards and provide governance, as well as supporting the business through shared services, centres of excellence and business partnering.

 

Reporting to the Lead, ERP Security, the SAP GRC Specialist ensures the integrity, security, and compliance of SAP (SAP S/4 HANA and other tool suite) systems by managing access controls, risk assessments, and audit processes. This role collaborates with IT security, audit, and business teams to implement and maintain GRC solutions that align with organizational policies, industry standards and regulatory requirements.

 

This is an initial one-year contract. 

 

Don't miss out on this outstanding opportunity to be part of one of Canada's leading mining companies and join our team!

 

 

Responsibilities

  • •Be a courageous safety leader, adhere to and sponsor safety and environmental rules and procedures.
    •Design, configure and mature SAP S/4HANA, SAP GRC AC/IAG application security matrix using industry best practices.
    •Plan, design, and deliver internal controls i.e., ITGC and SAP Business Process controls which adhere to industry’s best practices and organization’s requirements.
    •Engage with SI partners and take part in solution design workshops and configure SAP GRC Access Control, Process Control, and SAP IAG.
    •Engage with business and project users to understand the security access requirements and help the Lead, ERP Security, to document security deliverable(s).
    •Provide day-to-day technical support to project and business users and resolve SAP S/4HANA, SAP GRC 12.0, other SAP Cloud application security defects.
    •Work closely with the Security Lead and SI partner to build the SAP roles, troubleshoot, and resolve security defects from various testing phases, and complete various cutover tasks.
    •Perform SoD risk analysis and suggest remediation strategies to project stakeholders.
    •Provide training and support for security role design to end-users and stakeholders in business terminology.
    •Monitor compliance with internal controls and external regulations. Generate and analyze audit reports.
    •Work with internal audit, compliance, and IT teams to address findings.
    •Prepare reports for audits and compliance reviews.

 

Qualifications

 

•Bachelor’s Degree required in computer or applied science, business, or a related field. 
•8-10 years of progressive experience in the area of GRC and Admin roles with earlier experience leading similar teams.
•Experience in SAP authorization and access control, managing user roles, authorizations, and profiles. 
•Familiarity with various SAP modules such as FI (Financial Accounting), HR (Human Resources), MM (Materials Management), and PM (Plant Maintenance) and assets.
•Knowledge of Governance, Risk, and Compliance modules, including Access Control, Process Control, and Risk Management.
•Strong application security foundational/implementation expertise in SAP S/4HANA, SAP GRC Access Control and SAP IAG Bridge scenario.
•Ability to troubleshoot and resolve security and configuration defects/issues that are part of SAP S/4HANA, Fiori, SAP GRC Access Control and SAP IAG.
•Experience in leading/ being part of security workshops and discussions with project/business users.
•Design and implement new authorization concepts along with business departments and IT stakeholders.
•Strong knowledge of Internal Controls, SoD(s), and its implications in SAP Application security.
•Work with Controls Governance and IT teams to ensure a holistic approach is taken to remediate Corporate Audit findings related to SoD(s).
•Able to work cross-functionally with business and technical teams to achieve cohesive solutions.
•Anticipates challenges and mitigates them before they affect the project.
•Clearly and effectively communicates technical concepts to both technical and non-technical stakeholders.
•Detailed-oriented, pays close attention to the intricacies of technical implementation, ensuring high-quality outcomes.

 

Preferred Qualifications (Nice to have skills)

 

•Previous project experience in SAP S/4HANA transformation projects.
•Knowledge of audit/compliance, privacy and regulatory requirements and its applications in SAP application security design.
•Experience in creating Business Rules using BRF+ and MSMP workflows, configurations, analyzing and Identifying issues in MSMP workflows and recommending solutions for the same.
•Must have in-depth knowledge and experience in SAP GRC Access control functionalities ARM, ARA, EAM and BRM and Process Control functionalities – CCM and Manual Control monitoring.
•Independently handle the Configurations, maintain Master data both in Access control and Process Control. Including MDUG template preparation and upload.
•Administration of SAP GRC configuration, SOD rule sets, workflows and maintaining approvers for user provisioning, emergency access.
•Expertise in design and deliver SAP IAG solution tailoring to organization’s requirements.
•Would be an asset to have certifications like SAP GRC certifications, CRISC, CISA, or similar.

 

 

Why Join Us?

 

At Teck, we offer more than just a job – we provide a pathway to personal and professional enrichment. With captivating projects set against stunning backdrops, a culture of inclusivity and collaboration, and boundless opportunities to learn and grow, joining us means embracing a fulfilling and dynamic career adventure. 

 

As a contractor, you’ll add your expertise and work alongside experienced professionals on projects that challenge and inspire. We’re dedicated to fostering your growth through coaching, training, and a commitment to safety. Your contributions will make a difference, not just in your career, but in our ongoing success. Teck offers a wide array of permanent career opportunities and your role as a contractor can be a stepping stone to exploring different positions within our organization. We’re committed to helping you chart a dynamic and rewarding career path.  

 

The actual wage rate offered is determined based on the successful candidate’s relevant experience, skills, and competencies and considers internal equity. 

 

About Teck

 

At Teck, we value diversity. Our teams work collaboratively and respect each person’s unique perspective and contribution. 

 

Learn more about Teck at www.teck.com or follow @TeckResources.

 

We wish to thank all applicants for their interest and effort in applying for the position; however, only candidates selected for interviews 

Information at a Glance
Job Category:  Technology
Job Type:  Contractor
Career Status:  Experienced
Workplace Type:  Hybrid