SAP Infrastructure Engineer - Cyber Security Specialist
Darwin Consultancy, an Australian-owned ICT talent partner, is hiring on behalf of a Government Department.
Role Description
The role seeks an SAP cyber security specialist with deep expertise in securing SAP systems in hybrid environments.
The ideal candidate will protect mission‑critical SAP systems, manage identity integrations, and ensure compliance through proactive monitoring and root‑cause analysis.
Key Duties and Responsibilities
* Administration and troubleshooting of Identity Management systems including SAP, Azure AD, Microsoft Identity Manager, and other systems.
* Management of secure identity provisioning and de‑provisioning across SAP landscapes.
* Implementation of authentication protocols (SAML 2.0, OIDC, OAuth 2.0) and secure authentication in hybrid environments.
* Implementation of SP Access Control components.
* Designing and enforcing risk‑based authentication policies and configuration of policy‑based authorizations for SAP applications.
* Integration of multi‑factor authentication platforms with SAP.
* Monitoring and mitigation of threats across multiple surfaces including RFC connections and dormant or orphaned accounts.
* Configuration and maintenance of SAP UI masking and UI logging for sensitive data protection, including log extraction and analysis.
* Leading identification and response to potential security events, including root‑cause analysis for incidents and documentation of remediation steps.
* Ensuring ongoing system security compliance with Whole‑of‑Government and internal standards, including supporting Authority to Operate processes, penetration testing and IRAP assessments of SDO systems.
* Operations support for major incidents.
* Collaboration with cross‑functional teams for technology initiatives, system integrations, disaster recovery planning and end‑user support.
* Knowledge sharing, team mentoring, and uplift of technical capability including documentation of processes, design etc., and fostering a collaborative and high‑performing culture.
Qualifications and Skills
* Tertiary education in Information Security, Computer Science, or a related field.
* Subject matter expertise (equivalent to 10+ years of experience) in SAP cybersecurity focused roles.
* Expertise in SAP Cloud solutions, including SAP BTP and Cloud Identity Services.
* Proven experience with hand or strong understanding of SAML 2.0, OIDC, OAuth 2.0, SCIM.
* SAP IDM.
* SAP Access Control, including HR trigger and UAR customizations.
* SU25, roll emigration from ECC to S/4HANA.
* BTP and SAP Cloud systems security.
* SIEM tools and incident response procedures.
* Managing security in hybrid SAP environments.
* Australian government compliance and security standards (ISM, PSPF, IRAP, ANAO etc.).
* Previous experience with the technical delivery aspects of ERP implementations, including system configuration, integration and data migration.
* Australian Citizenship and ability to secure Baseline Security clearance.
Please submit a resume and letter addressing the above criteria, demonstrating experience, qualifications, and past performance delivering services of comparable scale and complexity.
This is a 12‑month contract EL1 role with potential extension. Full‑time onsite. Flexible work arrangements may be considered in line with the Department's Flexible Work Policy.
Seniority Level
Mid‑Senior level
Employment Type
Full‑time
Job Function
Information Technology
Industries
Technology, Information and Media
#J-18808-Ljbffr