SAP Security Architect

SAP Security Architect

Work Location: Raleigh, NC - Onsite

Experience: 12 years

Job Description:

This position will require a key player in engaging with business/functional team in providing best fit technical solutions while conforming to client’s development standards. You will also support knowledge transfer with the objective of providing value-adding consulting solutions that enable our clients to meet the changing needs of the global landscape.

Required Qualifications For SAP Security Architect

• Master’s/Bachelor’s degree or foreign equivalent required from an accredited institution. Will also consider three years of progressive experience in the specialty in lieu of every year of education
• A minimum of 12 years of experience in SAP
• Location for this position is Indianapolis. This position may require travel and/or relocation
• SAP Product Certifications are a plus
  
  

Preferred Experience For SAP Security Architect

• Experience in SAP Security in Development / Configuration / Solutions Evaluation / Validation and Deployment
• At least 12 years of experience in Project life cycle activities on development, maintenance, and upgrade projects
• At least 12 years of experience in Design and Architecture review
• At least 12 years of experience in Business Process Consulting, problem definition, Architecture / Design / Detailing of Processes
• Security expertise in SAP S/4HANA, HANA, Fiori, ECC / CRM / BW / BIbO / EP / CUA / BOBJ / GRC (hands-on experience in minimum 3 systems – e.g., ECC, GRC, and S/4HANA)
• GRC Access Control support / upgrade experience
• Experience in Process Control & Automations will be an added advantage
• Team leading / Management experience, resource planning, issue resolution, weekly status reports, and timesheets
• Experience in SoD remediation and conducting SOX controls / reviews
• Experience working on security assessments for various SAP systems
• Hands-on experience executing SU25 upgrade steps during SAP ECC to S/4HANA upgrades, including:
• Experience developing and maintaining an SU25 Upgrade Playbook, covering pre-upgrade baseline snapshots, step-by-step execution procedures, exception handling, sign-off checkpoints, and post-upgrade validation
• Experience performing pre- and post-upgrade role delta analysis to identify authorization gaps introduced by S/4HANA simplification items
• Experience remediating Fiori tile and OData service authorizations introduced during upgrade, including catalog / group assignment and PFCG Fiori object integration
• Knowledge of SAP security impact assessment for simplification items from the SAP Simplification List relevant to authorization objects and role design
• Experience conducting end-to-end SAP Security Assessments across ECC, S/4HANA, BW, GRC, and cloud systems, covering people, process, and technology dimensions
• Ability to evaluate and baseline the current state of SAP security design, including role architecture, authorization concept documentation, naming conventions, and structural design patterns (single roles, composite roles, derived roles, reference roles)
• Experience reviewing and assessing SAP authorization concepts against industry best practices, SAP standard recommendations, and customer-defined security policies
• Hands-on experience assessing critical authorization objects and sensitive access combinations, including evaluation of SAP profile parameter baselines for security-relevant parameters (login/, auth/, rdisp/, icm/) and benchmarking against SAP security hardening guides and CIS/DSAG baselines
• Ability to assess SAP network security controls including RFC trusted system relationships, ICM/ICF service exposure, and Web Dispatcher configurations
• Experience reviewing SAP GRC Access Control configuration including ruleset completeness, workflow design, role owner assignments, access request process effectiveness, and periodic review cycle health
• Familiarity with SAP Fiori security assessment activities including launchpad catalog / group access review, OData service authorization evaluation, and backend authorization object alignment
• Experience evaluating SAP audit log and security monitoring configurations, including Security Audit Log (SM19 / SM20), System Log (SM21), and Change Document review completeness
• Ability to assess user administration procedures and governance including user type usage (Dialog, Service, System, Communication users), password policy enforcement, and periodic user access review processes
• Experience evaluating SOX and GxP control effectiveness within SAP security, including evidence of periodic SoD reviews, privileged access reviews, and audit trail integrity
• Experience benchmarking client SAP security posture against industry frameworks such as SAP Security Baseline, DSAG Security Guidelines, CIS SAP Benchmarks, and NIST controls
• Ability to facilitate assessment workshops and interviews with SAP Basis, Security, Internal Audit, and Business Process Owner stakeholders to gather evidence and validate findings
• Good understanding of business processes in the Life Sciences / Pharmaceutical domain
• Good understanding of GxP and SOX requirements; should have working experience in a validated environment
• Ability to communicate and collaborate with senior business and IT stakeholders
• Strong communication skills and ability to understand Life Science-specific document requirements and experience updating the same
• Experience in providing professional client presentations
• Effective time management, communication, and organizational skills
• Proficient in use of Word, Excel, Visio, and PowerPoint
• Ability to work independently without supervision
• Strong analytical and problem-solving skills with the ability to assess relevant facts
• Excellent communication and interpersonal skills; well-versed in English with excellent spoken and written skills
• Proactive approach to problem solving; motivated self-starter with exceptional team building, leadership, and interpersonal skills
• Experience leading large upgrade teams with onsite and offshore coordination
• High-impact communication with senior stakeholders
• Monitor systems and report any issues to Senior SAP Security and Controls Consultant
• Provide technical support for customer role upgrade and / or role redesign by assisting customers in defining roles and remediating potential Segregation of Duty (SoD) conflicts
• Research client problems and provide accurate, timely documentation
• Enforce security policies and procedures by performing periodic reviews of security reports
• Continuously develop problem-solving skills and apply critical thinking
• Develop awareness and understanding of SAP Security products and evolving upgrade toolsets
• Familiarity with onsite-offshore models; has led teams of offshore and onsite resource.
  
  

Thanks & Regards...

Suresh Kumar

Accounts Manager

Galaxy i Technologies inc.

EMail:

Ph No:

Alt No: