Security Architect – SAP Implementation

Job Title: Security Architect – SAP Implementation

Location: Preference given to candidates in Ohio, Indiana, Kentucky, Maryland, Pennsylvania, or Virginia
Remote: Yes, with possibility of biweekly travel to Columbus, OH and Merrillville, IN
Period: 03/03/2025 – 09/31/2025 (potential contract-to-hire)
Hours/Week: 40 hours
Rate: $70 – $80/hour
Contract Type: W-2 only, no visa sponsorships or subcontracting

Scope of Services:

The Security Architect will be responsible for ensuring the security and integrity of the SAP system implementation within the Work and Asset Management program. This role involves designing and implementing security strategies, frameworks, and policies to protect the system, data, and infrastructure from potential threats. The Security Architect will collaborate closely with IT, business stakeholders, and the project team to establish best practices for secure configurations, data protection, and compliance with relevant regulations. This role will play a critical part in enabling a secure, compliant, and high-performance SAP implementation for the organization.

Role, Responsibilities & Deliverables:

• Security Design & Architecture: Develop security strategies and frameworks for SAP implementation, ensuring alignment with the organization’s security policies and industry best practices. Define security architecture to safeguard SAP system components and related infrastructure.
• System Security Configuration: Work with the SAP project team to configure security controls, including user access management, role-based access control (RBAC), and encryption protocols, ensuring compliance with security standards.
• Data Protection: Implement robust data protection measures, including data encryption, secure storage, and secure transmission, to prevent unauthorized access and data breaches.
• Vulnerability Management: Conduct regular vulnerability assessments and penetration tests to identify security risks in the SAP implementation. Lead efforts to address and mitigate identified vulnerabilities.
• Security Compliance: Ensure that the SAP system implementation adheres to relevant regulatory and industry standards, such as GDPR, HIPAA, and PCI DSS, by implementing necessary controls and documentation.
• Incident Response Planning: Develop and maintain incident response plans to detect, respond to, and recover from security breaches or threats. Ensure the team is trained in incident response procedures.
• Collaboration with IT & Business Teams: Work closely with IT teams to ensure proper security integrations and data protection strategies are in place. Collaborate with business stakeholders to ensure security considerations align with organizational goals.
• Security Documentation & Reporting: Create and maintain detailed security documentation, including security policies, procedures, and configurations. Regularly report security status, risks, and mitigation efforts to leadership and project stakeholders.
• Ongoing Monitoring & Improvement: Monitor the security of the SAP system throughout its lifecycle, including conducting audits, reviewing logs, and ensuring continuous improvement of security practices.

Required Experience:

• Experience: Minimum of 7-10 years of experience as a Security Architect or similar security-focused role, with a proven track record in securing enterprise systems such as SAP.
• SAP Security Experience: Strong understanding of SAP security modules, including user access management, SAP GRC (Governance, Risk, and Compliance), and SAP security configuration.
• Cybersecurity Expertise: Extensive experience with cybersecurity frameworks, risk management, and vulnerability assessments. Familiarity with common security threats and mitigation strategies in enterprise software systems.
• Regulatory Compliance: Experience ensuring compliance with relevant data privacy and security regulations, such as GDPR, HIPAA, and PCI DSS.
• Waterfall Methodology: Experience working in a Waterfall project environment, ensuring structured, methodical progress toward security objectives.
• Utilities Industry Experience: Experience working within the utilities industry or similar sectors where cybersecurity and compliance are critical is a plus.

Key Skills:

• Security Architecture: Ability to design and implement secure architectures for large-scale enterprise systems like SAP, ensuring integrity and data protection.
• Risk Management: Expertise in identifying, assessing, and mitigating security risks within enterprise systems and IT infrastructure.
• Security Configuration & Controls: Experience in configuring security controls, including user permissions, role-based access control (RBAC), encryption, and compliance reporting.
• Incident Management: Strong skills in designing and executing incident response plans and managing security events.
• Communication Skills: Excellent verbal and written communication skills to articulate security risks, strategies, and solutions to technical and non-technical stakeholders.
• Project Management Support: Ability to support project management by tracking security progress and aligning with overall project timelines and goals.

Education & Certifications:

• Education: Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or similar certifications preferred.
• SAP Certification: SAP Security or SAP GRC Certification is highly preferred.
• Additional Certifications: ITIL, ISO 27001, or other relevant cybersecurity certifications are a plus.

Salary : $70 - $80