Careers

SOX Consultant (m/f/d) - SAP Compliance

Cologne region / Ruhr area / Remote Full-time Posted 03 July 2026

About the role

In a SOX-regulated environment, no change to an SAP system may happen uncontrolled. This is exactly where you come in: you own the IT controls (ITGC) around a grown SAP landscape with S/4HANA and SAP BW - with a clear focus on SAP BW - and make sure that changes, access and processes are cleanly documented, traceably reviewed and implemented in line with the rules.

You work at the interface of business, IT and external service providers, and keep the overview where many parties, tight requirements and ongoing operations meet. One quality is decisive here: you stand firm - even when it gets uncomfortable. You represent rules, controls and audit trails reliably towards internal teams and external partners, without losing the working relationship.

Your tasks

  • Ensure IT General Controls (ITGC) across the SAP landscape: access management, change management and IT operations.
  • Analyse segregation of duties (SoD), assess conflicts and drive their remediation - including authorisation concepts and critical access.
  • Support change management for SAP changes in a SOX-compliant way: keep requirements, approvals, audit trails and evidence clean (including in Jira and comparable systems).
  • Design, test and document controls - design and operating-effectiveness tests, walkthroughs, robust control evidence.
  • Work with SAP GRC where in place (Access Control, Process Control) - e.g. access risk analysis and controlled emergency access (Firefighter).
  • Coordinate internal business units, IT and external service providers and hold them to compliance.
  • Prepare and support internal and external audits (incl. external auditors); present findings and deficiencies and follow up on their remediation.

Your profile

  • Experience with SOX or comparable compliance and control requirements in an SAP environment.
  • A sound understanding of IT General Controls (ITGC): access, change and operations controls.
  • Knowledge of segregation of duties (SoD) and SAP authorisation concepts.
  • Experience with SAP GRC (Access Control, possibly Process Control) is an advantage.
  • Sound SAP knowledge, in particular SAP BW; familiarity with S/4HANA and SAP Solution Manager is an advantage.
  • Confident use of Jira and other change-management or ticketing systems; an understanding of common control frameworks (COSO/COBIT) is a plus.
  • Strong assertiveness and steadfastness - you represent your position reliably towards internal and external parties and keep your composure.
  • A structured, thorough and reliable way of working; an eye for detail and for the bigger picture. Very good German and good English.

What you'll find with us

  • Demanding compliance topics in a regulated SAP environment - with real responsibility.
  • A boutique that meets you at eye level: short paths instead of corporate bureaucracy.
  • A team that has your back when you need to stand firm.

Framework

Location: Cologne region / Ruhr area, mostly remote. Scope: full-time. Start: as soon as possible.

Apply now

Send us your documents or a few lines about yourself - informal is fine.

Apply by email
← All open positions