Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : SAP Identity and Access Management, Business Transformation, IAM Platform (SAP IGA, SAP RI
Good to have skills : NA
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary:
As an experienced SAP IAG & RISE Architect and You will be responsible for implementation, administration, and support of SAP Identity Governance solutions across SAP and integrated enterprise applications. The role focuses on identity lifecycle management, access governance, compliance support, and operational excellence in complex SAP landscapes. Also responsible for securing SAP platforms and underlying infrastructure across on-premise, cloud, and hybrid environments. The role focuses on platform hardening, vulnerability management, compliance support, and security operations, working closely with SAP Basis, Cloud, Network,
Roles & Responsibilities:
- Expected to be an SME, collaborate and manage the team to perform.
- SAP IAG & Security Operations
- Lead implementation and support of SAP Identity Access Governance (IAG), SAP BTP, and Fiori security
- Oversee user provisioning, de-provisioning, and access modifications across SAP systems.
- Manage role design, maintenance, and authorization troubleshooting.
- Ensure timely resolution of access-related issues and incidents.
- Guide the team on best practices for SAP security operations.
- Access Governance & Compliance
- Execute access risk analysis (SoD) and support mitigation activities.
- Perform access certifications, periodic reviews, and audit evidence preparation.
- Ensure compliance with SOX, GDPR, and internal security policies.
- Maintain SAP security documentation, SOPs, and role design guidelines.
- Define and enforce SoD rulesets, risk matrices, and governance frameworks aligned with business and regulatory requirements.
- Lead remediation initiatives for identified access risks and track closure of audit findings.
- Establish and monitor Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for access governance.
- Drive periodic review of critical access, privileged users, and sensitive transactions.
- Oversee emergency access (Firefighter) reviews, logging, and compliance reporting.
- Collaborate with internal and external auditors to ensure smooth audit execution and timely closure of observations.
- Ensure proper segregation and control over business roles, technical roles, and composite roles.
- Support regulatory and compliance assessments, including control design and effectiveness testing.
- Maintain risk documentation, control narratives, and audit trails within IAG/GRC tools.
- Drive continuous improvement of governance processes through automation and standardization.
- Provide advisory to business and IT teams on risk-aware access design and compliance requirements.
- Ensure alignment of SAP security controls with enterprise security policies and frameworks.
- Integration & Enhancements
- Support integration of SAP IAG with SAP systems (ECC, S/4HANA, BW,BTP,Fiori)
- Directories (AD, Entra ID / Azure AD)
- Cloud & Hybrid Security Support
- Support security controls for SAP hosted on Azure / AWS
- Partner with SAP Basis teams to ensure secure system configurations and patching.
Professional & Technical Skills:
- Must To Have Skills: Proficiency in SAP Identity and Access Management, Business Transformation.
- Hands-on experience with SAP IAG or SAP GRC Access Control
- Hands-on experience with SAP S4 BTP ,HANA and Fiori
- Hands-on experience with Experience supporting SAP systems in production environmen
- Hands-on experience with Strong understanding of:
- Hands-on experience with SAP authorization concepts
- Hands-on experience with Role design and remediation
- Hands-on experience with dentity lifecycle management
- Experience supporting SAP ECC and S/4HANA systems.
- Exposure to SAP on cloud platforms (Azure / AWS).
Additional Information:
- The candidate should have minimum 5 years of experience in SAP Identity and Access Management.
- This position is based at our Mumbai office.
- A 15 years full time education is required.
- Bachelors and above degree in Computer Science, Information Technology, MIS, Engineering / Bachelor or college degree in related field or equivalent work experience (Full time).
- The candidate should have minimum 7+ years in Strong understanding of IAM concepts, RBAC, least privilege, and governance & SAP CIS
- SAP Security or IAM certifications.
- SAP Certified Associate – Security Administrator
Mumbai
Requesting an Accommodation
Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.
If you would like to be considered for employment opportunities with Accenture and have accommodation needs such as for a disability or religious observance, please call us toll free at 1 (877) 889-9009 or send us an email or speak with your recruiter.
Equal Employment Opportunity Statement
We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.
For details, view a copy of the Accenture Equal Opportunity Statement
Accenture is an EEO and Affirmative Action Employer of Veterans/Individuals with Disabilities.
Accenture is committed to providing veteran employment opportunities to our service men and women.
Other Employment Statements
Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.
Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Further, at Accenture a criminal conviction history is not an absolute bar to employment.
The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.
California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.
Please read Accenture’s Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process.
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.