Job Description
Salary: $105,000 - 149,000 per year Requirements:
- We require a bachelors degree in IT or a related discipline.
- We need at least 8 years of hands-on SAP Security and Authorization experience.
- We require 8+ years of experience personally building, testing, and troubleshooting SAP roles in ECC.
- We need 2+ years of practical experience with S/4HANA, HANA DB, SAC, Datasphere, PaPM, ECC, BI, and PI systems.
- We require 8+ years of experience supporting production SAP environments in a large, multi-instance landscape.
- We need 2+ years of experience supporting audits and remediation activities directly within SAP.
- Preferred qualifications include the ability to balance business-as-usual support with major transformation work.
- Preferred qualifications include strong communication skills to explain security impacts to both technical and non-technical partners.
- Preferred qualifications include experience supporting SAP S/4HANA transformations or large ERP modernization initiatives.
- Preferred qualifications include experience creating SAP S/4 Fiori roles from catalogs, groups, spaces, and pages.
- Preferred qualifications include experience designing HANA database security roles with system, object, and analytical privileges.
- Preferred qualifications include experience with Datasphere roles, scoped roles, SAC roles, role collections, and BTP applications such as PaPM and Cloud Identity Services.
- Preferred qualifications include familiarity with IAM, GRC, ILM, and automated access provisioning frameworks.
- Preferred qualifications include experience supporting analytics and reporting platforms integrated with SAP, such as BW, SAC, and AO.
- Preferred qualifications include prior experience in financial services or another regulated industry.
Responsibilities: - We will have you serve as the hands-on SAP Security lead for S/4HANA programs, including role design, build, testing, maintenance of business Fiori roles, removal of deprecated tiles, and authorization updates during upgrades.
- We expect you to support unit testing, SIT, UAT, performance, reporting, and training cycles, often across large user populations.
- You will resolve defects identified in testing by updating roles.
- You will work directly with developers and functional teams to assess security impacts, carry out pre-business testing, and validate fixes before business testing.
- You will personally design, build, test, and maintain SAP security roles and authorizations across platforms including S/4HANA, Fiori, HANA DB, SAC, Datasphere, PaPM, ECC, BI, and XI.
- You will troubleshoot and remediate complex authorization issues affecting Finance, HR, Procurement, BW, and reporting users.
- You will provide direct production support, including urgent access issues, role corrections, and user remediation.
- You will assess new technologies through proof-of-concept and feasibility work.
- You will secure custom programs and tables in partnership with ABAP development teams.
- You will carry out monthly SAP Security Note reviews, support pack validation, and hands-on regression testing.
- You will support Sandbox, Development, QA, Pre-Production, and Production environments.
- You will act as the hands-on SAP security subject matter expert for IAMSTRONG integrations, manager access reviews, transfer reviews, segregation of duties, and orphaned access remediation.
- You will support and troubleshoot ILM tooling related to onboarding, offboarding, audit controls, and access cleanup.
- You will partner with IAM, ServiceNow, and security teams to improve and stabilize access request and fulfillment processes.
- You will support SAP audits through access reviews, evidence collection, remediation, and direct security corrections in SAP.
- You will serve as the primary technical contact for Audit, Business, Risk, and Compliance partners on SAP security matters.
- You will act as the go-to SAP security authority for Finance Technology.
- You will mentor team members through direct collaboration and hands-on problem solving.
- You will create and maintain practical documentation and FAQs to improve self-service and reduce recurring issues.
- You will help prioritize work while remaining accountable for complex or high-risk security changes.
Technologies: - ABAP
- Apex
- Cloud
- ERP
- IAM
- Support
- SAP S/4HANA
- SAP
- Security
- ServiceNow
More:
We are MassMutual, a purpose-driven organization focused on meaningful long-term impact. This role sits within Finance Technology and supports a large, complex SAP landscape during S/4HANA and APEX modernization efforts. We offer a collaborative environment where perspectives are welcomed, clear ownership and accountability, access to learning and development, employee-led communities, and a culture grounded in integrity, responsibility, stewardship, and inclusion. We are an equal employment opportunity employer and welcome all persons to apply.
last updated 28 week of 2026
Job Tags
Full time