16 Apr
|
Appcast
|
Toronto
Apply on Kit Job: kitjob.ca/job/2fsrna
Our client in the professional services sector is seeking a contract based hands-on SAP S/4HANA Architect responsible for rapidly assessing, remediating, and certifying the security and access control readiness of the environment ahead of production deployment.
Duration: 3 months to start
Location: Remote
Responsibilities:
Core Focus – Go-Live Readiness
- Conduct rapid security assessment of SAP S/4HANA environment prior to go-live
- Identify and remediate critical security gaps, misconfigurations, and risks
- Validate role design, RBAC, and Segregation of Duties (SoD) compliance
- Review and secure privileged access and emergency access (Firefighter IDs)
Access & Controls
- Ensure user provisioning, deprovisioning, and access governance controls are in place
- Validate integration with IAM (Entra ID / Azure AD), SSO, and MFA enforcement
- Perform access reviews and audit validation for go-live sign-off
Technical Security Hardening
- Validate SAP security baselines:
- Disable insecure defaults
- Restrict RFC access
- Secure interfaces (HTTP, APIs, Cloud Connector)
- Ensure encryption standards and secure communication protocols are enforced
Audit & Compliance
- Prepare audit-ready documentation and evidence (SOX, internal audit, etc.)
- Support internal/external audit teams during go-live readiness review
- Validate logging, monitoring, and SIEM integration for production readiness
Cutover Support
- Participate in cutover planning and execution from a security standpoint
- Provide real-time support during go-live window
- Act as final security gatekeeper / sign-off authority
Requirements
- 8–10+ years in IT security with robust SAP S/4HANA hands-on experience
- Proven experience supporting SAP go-live readiness or cutover phases
- Deep expertise in: SAP Security & Authorizations, SAP GRC (Access Control, SoD)
- Solid experience with: Audit readiness, Access reviews and control validation
- Hands-on experience with: IAM integration (Entra ID / Azure AD, SSO, MFA), SAP system hardening and security validation
Nice-to-Have
- Certifications: CISSP, CISM, SAP Security/GRC
Apply on Kit Job: kitjob.ca/job/2fsrna
📌 Security Architect (SAP S/4HANA - hardening) (Toronto)
🏢 Appcast
📍 Toronto