Share this job
Apply now »







Title:  SAP Security Architect Manager

Job ID:  62330
Country:  Spain
City:  Madrid
Professional area:  Information Technology
Contract type:  Permanent
Professional level:  Experienced

Madrid, M, ES, 12799


We’re JTI, Japan Tobacco International and we believe in freedom. We think that the possibilities are limitless when you’re free to choose. In fact, we’ve spent the last 20 years innovating, creating new and better products for our consumers to choose from. It’s how we’ve grown to be present in 130 countries.

But our business isn’t just business. Our business is our people. Their talent. Their potential. We believe when they’re free to be themselves, grow, travel and develop, amazing things can happen for our business

That’s why our employees, from around the world, choose to be a part of JTI. It’s why 9 out of 10 would recommend us to a friend. And why we’ve been awarded Global Top Employer status, six years running

So when you’re ready to choose a career you’ll love, in a company you’ll love, feel free to #JoinTheIdea. 

Learn more: jti.com


SAP Security Architect Manager



What this position is about - Purpose:


In this role, you will be designing and maintaining SAP security authorizations and related processes based on the information from stakeholders and identified needs. You will design and implement controls, manage partners/vendors, ensure stakeholders’ satisfaction and promote an information security culture driven by risk considerations.


What will you do - Responsibilities:


  • engineer and maintain a sustainable SAP access model to facilitate maintenance of SAP authorizations in the JTI SAP landscape (S4, HR, BW, TM, Solution Manager, Fiori, HANA db, IBP Cloud, SAP Analytics Cloud, SuccessFactors, Concur)
  • act as interface between the different stakeholders (Business, IT, Financial and Controls group); ensure alignment on the security design and the implementation plan
  • engineer and maintain a sustainable SailPoint Business Roles architecture for SAP and non-SAP solutions
  • identify potential vulnerabilities and misconfigurations in SAP landscape
  • ensure security measures around the SAP landscape are adequately designed
  • design SAP security-related authorizations, processes, procedures, systems, controls and guidelines
  • evaluate whether improvement opportunities could be obtained from implementing new system, or leveraging existing system functionality
  • design and implement controls ensuring SAP systems remain available, transactional integrity is guaranteed, data confidentiality requirements are met and risks are considered
  • manage and transfer knowledge by designing training materials; train SAP security staff and other stakeholders
  • provide 3rd level support aimed of solving the most complex challenges related to security design, SAP code and configuration
  • support technical aspects related SailPoint system configuration and synchronization to JTI infrastructure and systems with special focus on SAP HR, ServiceNow, Linux, AD and Azure AD


Who are we looking for - Requirements:


  • strong experience in SAP authorizations with a focus on design/architecture (5+ years)
  • project management experience (2+ years)
  • ability to think critically and creatively, to see big picture while focusing on details
  • understanding business and functional processes – audit background is welcome
  • strong security background – non-SAP certifications welcome (CISSP, CISA, etc.)
  • customer orientation with focus on quality, strong stakeholder management
  • degree in Computer Science, Information Systems or related


What are the next steps – Recruitment process:


Thank you very much for your interest in the role. You are welcome to apply.

We will make sure every candidate will receive a reply within 2 weeks after the application deadline.

Job Segment: Architecture, SAP, ERP, Developer, Engineering, Technology, Security

Apply now »