Skip to content
mimi
All jobs

SAP S/4HANA Architect

Resonaite

Remote · Canada Contract Lead 2mo ago
Apply with a tailored resume Save job

About the role

Our client in the professional services sector is seeking a contract based hands-on SAP S/4HANA Architect responsible for rapidly assessing, remediating, and certifying the security and access control readiness of the environment ahead of production deployment.

Duration: 3 months to start

Responsibilities

Core Focus – Go-Live Readiness

  • Conduct rapid security assessment of SAP S/4HANA environment prior to go-live
  • Identify and remediate critical security gaps, misconfigurations, and risks
  • Validate role design, RBAC, and Segregation of Duties (SoD) compliance
  • Review and secure privileged access and emergency access (Firefighter IDs)

Access & Controls

  • Ensure user provisioning, deprovisioning, and access governance controls are in place
  • Validate integration with IAM (Entra ID / Azure AD), SSO, and MFA enforcement
  • Perform access reviews and audit validation for go-live sign-off

Technical Security Hardening

  • Validate SAP security baselines:
    • Disable insecure defaults
    • Restrict RFC access
    • Secure interfaces (HTTP, APIs, Cloud Connector)
    • Ensure encryption standards and secure communication protocols are enforced

Audit & Compliance

  • Prepare audit-ready documentation and evidence (SOX, internal audit, etc.)
  • Support internal/external audit teams during go-live readiness review
  • Validate logging, monitoring, and SIEM integration for production readiness

Cutover Support

  • Participate in cutover planning and execution from a security standpoint
  • Provide real-time support during go-live window
  • Act as final security gatekeeper / sign-off authority

Requirements

  • 8–10+ years in IT security with strong SAP S/4HANA hands-on experience
  • Proven experience supporting SAP go-live readiness or cutover phases
  • Deep expertise in: SAP Security & Authorizations, SAP GRC (Access Control, SoD)
  • Strong experience with: Audit readiness, Access reviews and control validation
  • Hands-on experience with: IAM integration (Entra ID / Azure AD, SSO, MFA), SAP system hardening and security validation

Nice-to-Have

  • Certifications: CISSP, CISM, SAP Security/GRC

Skills

Azure ADCloud ConnectorEntra IDHTTPIAMMFASAP GRCSAP S/4HANASAP SecuritySIEMSSO

Similar roles

Senior, hands-on Cloud Security Engineer

Sigma

$210k – $240k/yr

Senior AWS Cloud Engineer

Droisys

$70 – $75/hr

Identity & Access Management (IAM) Analyst (AI Training)

Alignerr

Don't send a generic resume

Paste this job description into Mimi and get a resume tailored to exactly what the hiring team is looking for.

Get started free