Job Search

Find the opportunity that's right for you.

IAM Specialist (SAP/RBS)

Greater Toronto Area, ON

Employment Type: Contract Job Category: Information Technology

Job Description

Our client is a leader in the grocery and pharmacy industry, serving communities across the country. With numerous banners and stores, their goal is to improve people's lives through exceptional experiences, strong communities, and dedicated colleagues.


Are you ready to make a meaningful impact? Our client values purposeful work and is undergoing a digital transformation, seeking talented individuals who want to be part of the exciting journey. They are searching for an experienced Cyber Security Team professional, passionate and experienced in advancing SAP Roles Based Security (RBS).


As an IAM Specialist, you will collaborate with their team of highly skilled Cyber Security professionals who are proficient in SAP and other Cyber Security aspects. Your role will involve managing roles within the organization, including role creation, maintenance, and design. By contributing to their enterprise architecture and operational technology, you will contribute to their status as a leader in grocery and pharmacy services.



  • PerformRBS maintenance tasks, including:
    • Handling T-code requests for resource positions
    • Addressing SAP errors and SU53 screens
    • Managing RBS log submissions for additions, modifications, and removals
    • Resolving security IAM issues and answering questions
    • Reviewing and approving privileged access role applications for assigned users
  • Conduct RBS audits, including approvals for privileged access role T-codes and monthly reviews of sensitive T-codes in ECC.
  • Update RBS maintenance logs with role changes, leading meetings and providing approval/rejection of changes. Also, provide final approval for RFC testing.
  • Maintain role approvals for QA business roles, IT roles, and production roles.
  • Enforce least privilege practices by reviewing and approving combination approvals, ensuring resources can fulfill their duties without conflicts.
  • Perform semi-annual role reviews across all production environments.
  • Collaborate with the identity and access management team to review and consult on role approver lists for all SAP environments. Assist with RBS log testing and address any sub-role-related queries.
  • Monitor and mitigate access conflicts by reviewing ECC roles for updates as department structures change. Review T-codes within roles for resource account usage and ensure RBS reflects business changes.

Job Requirements

  • Undergraduate degree and a minimum of 4-5 years of relevant experience.
  • Experience in Access Controls Security including SAP and GRC (required), plus UNIX, Windows (AD), IBM Tivoli Identity Manager, and OS400 is an asset.
  • Familiarity with information and network security practices, designs, tests, and processes.
  • CISSP or CISM certification is a plus.
  • Experience with Jira/Confluence and VPN is preferred.
  • Ability to prioritize and execute tasks effectively in a high-pressure environment.
  • Strong communication skills to engage with individuals at all levels of the organization.
  • Willingness to participate in a 24/7 operations rotation.
Apply Online

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.