Cyber SAP Business Process Controls Senior Consultant

at Deloitte
Published February 14, 2024
Location Houston, TX
Category Default  
Job Type Full-time  


SAP Business Process Controls Senior Consultant

Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Join our Cyber & Strategic Risk Application Security team and help organizations design and build the controls and deploy tools they need to protect enterprise resource planning (ERP) and core business applications.

Work you'll do

As a Business Process Controls Senior Consultant in our Cyber& Strategic Risk Application Security team, you will be part of our SAP practice and will be responsible for delivering SAP S/4 HANA and/or ECC business process controls implementations and assessments. Responsibilities will include strategy and approach development, assessment, design, testing, and implementation of a business process and information technology controls frameworks in a collaborative client-facing environment.

The team

Deloitte Advisory's Cyber & Strategic Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory's Cyber & Strategic Risk practice.



  • Limited visa sponsorship may be available

  • 4+ years of internal business process controls experience and understands key business processes, the inherent risks, and potential controls

  • 3+ year of proven experience in the design, testing, and implementation of business process and ITGCs in an SAP S/4 HANA and/or ECC environment, including both SAP automated and manual controls

  • 2+ year of working with segregation of duty frameworks and associated mitigating controls

  • Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve

  • Bachelor's degree


  • Previous Consulting or Big 4 experience

  • Certification preferred, such as: CPA, CISA, CISSP, CISM, or PMP

  • Excellent written and verbal communication skills

  • Full cycle implementation experience with SAP S/4HANA and/or ECC, including risk assessment, control identification, design, testing, and deployment

  • Technical understanding of SAP configurations as it relates to the design, development, and testing of automated controls

  • Strong understanding of regulatory concerns impacting SAP environments, including Sarbanes Oxley and data related regulations (GDPR, CCPA)

  • Strong understanding of relevant leading practices as it relates to control environment

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $97,613 - $188,375.

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any depends on various factors, including, without limitation, individual and organizational performance.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.