SAP Security Architect ( Remote)

Key Responsibilities:

SAP Security: Design and implement robust security roles and authorizations for SAP S/4HANA, SAP Success Factors and SAP Employee Central Payroll, including Fiori applications, ensuring Segregation of Duties (SoD) compliance and optimal user experience.

SAP GRC (Governance, Risk, and Compliance): Architect, configure, and maintain SAP GRC Access Control (ARM, ARA, BRM, EAM) and other relevant GRC modules to manage user provisioning, risk analysis, emergency access, and periodic access reviews.

Role Administration: Lead the design, creation, and maintenance of SAP roles, including the effective utilization of derived roles and composite roles to ensure efficient and compliant security assignments.

Position-Based Security: Design and implement position-based security models, safeguarding that access is granted based on an employee's organizational assignment and responsibilities.

User Administration: Oversee and optimize user administration processes, ensuring timely and secure provisioning and de-provisioning of user access across SAP systems.

Table Data Security: Implement and enforce table data security measures to restrict unauthorized access to sensitive business data within SAP.

Lead the design and development of comprehensive SAP security architectures and strategies for S/4HANA, SAP GRC and SuccessFactors (RBP, ECP).

Define security policies, standards, and guidelines that align with industry best practices and internal controls.

Conduct security assessments to identify access risks and propose mitigation strategies across the SAP ecosystem.

Provide expert guidance on SAP security preferred practices, risk management, and compliance strategies to various stakeholders.

Develop and execute comprehensive security testing strategies, including unit, integration, regression, and user acceptance testing, to validate security configurations and controls.

Coordinate with functional teams, developers, and testers to ensure security is embedded throughout the system development lifecycle (SDLC) from design to deployment.

Develop and maintain comprehensive security documentation, including architecture diagrams, technical specifications, and operational procedures.

Provide training and mentorship to junior team members on SAP security concepts, tools, and best practices.

Required Qualifications:

Bachelor’s degree in computer science, Information Technology, Cybersecurity, or equivalent experience

10+ years of progressive experience in SAP Security, with at least 5 years in an Architect role supporting large, complex enterprise environments.

Deep expertise in SAP S/4HANA security architecture, including Fiori security and embedded analytics.

Extensive hands-on experience with SAP GRC Access Control (ARM, ARA, BRM, EAM) implementation, configuration, and support.

Excellent analytical, problem-solving, and critical thinking skills.

Exceptional communication (written and verbal), interpersonal, and stakeholder management skills.

Ability to work independently and collaboratively in a fast-paced, dynamic environment.

Preferred Qualifications:

SAP Certified Associate – Security Administrator

SAP Security and/or GRC certifications (e.g., SAP Certified Application Associate - SAP S/4HANA Security, SAP Certified Technology Associate - SAP GRC Access Control).

Experience with other SAP cloud solutions and integration technologies (e.g., SAP BTP, SAP CPI).

Strong understanding and hands-on experience with SuccessFactors Role-Based Permissions (RBP) and Employee Central Payroll (ECP) security.

Proven experience designing and implementing security for SAP Analytics Cloud (SAC).

Strong understanding of industry security standards, regulatory compliance (SOX, HIPAA), and audit requirements.tions, click on the Content Manager button in the Add panel on the left.