Description
Key Responsibilities
Design and govern an enterprise wide security capabilities architecture in line with the organization business strategy, regulatory requirements and security policies.
Lead the development of the security strategy, architecture, governance, and roadmaps
Define the security architectural principles and standards in line with the business and IT strategy, Cyber Security Policies and industry practices.
Advocate for and contribute to the development and enforcement of cyber security policies across all systems and solutions.
Support audit, risk assessment and compliance functions by designing solutions to address findings and risks.
Work closely with other architects within the team to ensure alignment with cyber security strategy and architecture.
Help guide business units to implement suitable cyber security solutions for their needs while adhering to standards and policies.
Deliver cyber security capabilities architectural artifacts during project life cycle
Identify potential areas of improvement in the enterprise cyber security capabilities
Technologies
The principal security architect should have qualified to deliver solutions based on the following technologies:
SAP Security
Cloud security Infrastructure Technologies
Encryption, Masking and Key Management
Data Classification and Data Leakage Prevention
Network security
Web Application Security Technologies
Endpoint Security
SIEM and Log Management
Identity and Access Management
Forward and Reverse Proxy
Required Skills
Strong ability to deliver architectural artifacts such as: reference architectures, high-level design, conceptual diagrams.
Skills in presenting information to different audiences at the suitable level of detail
Openness to new ideas, with a mindset of continuous development and improvement
Good communication skills with deep technical knowledge and practicality
Strong business sense and balancing between user needs with security needs
Solid technical leadership skills and stakeholder management
Requirements
Degree or Honors (12+3 or equivalent) in Computer Science, Engineering, or an equivalent IT related discipline or equivalent experience.
10+ Years of Experience in Architecture and Security
Deep Knowledge of Architecture Methods, Principles and Patters.
Solid Understanding of TOGAF, SABSA, IASA, Zachman and other Enterprise Architecture frameworks, certification is a plus.
Thorough knowledge of Information Security standards including ISO 27001, PCI DSS.
Certification in GIAC, CISSP-ISSAP (Information System Security Architecture Professional)
Understanding of capability frameworks such as CMMI.
Understanding of industry standard development methods (eg RUP, SCRUM)
Understanding of ITIL Framework.
Strong Architectural and Technical leadership qualities
Solid Experience in Cyber security solution architecture and system integration
Cyber security operations and services work experience
Note: This is not an SAP GRC role.