Cyber Security Architect

Cyber Security Architect

NTT Data Business Solutions is an IT services and solutions provider, primary engaged with implementation and maintenance of SAP and other business information systems, IT Infrastructure services, Information Security solutions, Business Development and Project Management. We are working on projects around the world: almost all countries in Europe, the Middle East, the USA and Africa. We are a strategic partner of the biggest SAP Services providers where we are delivering Implementation and Support services. NTT Data Business Solutions is a part of NTT Data Business Solutions Germany.

We are looking for a skilled Cyber Security Architect to lead the design, implementation, and governance of security frameworks across our Customer Experience (CX) suite. This role is key to ensuring robust protection of customer data, enforcing compliance, and aligning Security Policy Framework (SPF), the security architecture references with enterprise-wide policies and industry best practices. The candidate will collaborate with cross-functional teams, including developers, enterprise/lead architects, DevOps/SRE teams, PASO’s (product area security officers) and compliance leads, to embed security throughout the CX ecosystem.

Key Responsibilities:

• Design and maintain the security architecture for the SAP CX (Customer Experience) suite (e.g., SAP Commerce Cloud, SAP Sales & Service Cloud, SAP Emarsys Cloud, etc.).
• Define access control policies, roles, and authorization concepts across CX modules.
• Experience with Implementation Identity and Access Management (IAM) strategies, including integration with enterprise identity providers (e.g., Azure Entra ID’s with Azure Enterprise Apps, SAP IAS/IPS).
• Ensure compliance with security standards such as GDPR, ISO 27001, PCI-DSS, etc.
• Support risk assessments, security exceptions, security reviews, Threat Modeling’s, and audits across environments.
• Drive the adoption of DevSecOps principles.
• Define and enforce data protection, data handling and encryption standards within the stack.
• Provide expert guidance on integration security within SAP products, with third-party applications and APIs.
• Evaluate, implement, and drive Proof of Concepts (PoCs) for third-party security tools or open-source solutions to enhance the overall security posture.
• Collaborate with vendors, internal stakeholders, and IT teams to assess the feasibility, scalability, and integration of security solutions into the environment.
• Support incident response, forensic analysis, and root cause investigation for any security breaches.

Required Qualifications:

• Hands-on experience with Identity Authentication Service (IAS) and Identity Provisioning Service (IPS).
• Strong understanding of OAuth2, SAML, OpenID Connect, and modern authentication protocols.
• Experience with policy-based access control (PBAC), role-based access control (RBAC) and attribute-based access control (ABAC).
• Familiarity with CIAM (Customer Identity and Access Management) & PAM (Privilege Access Management) solutions and best practices.
• Understanding of Zero Trust Architecture, secure by design and Data Loss Prevention (DLP) techniques.
• Knowledge of network security, application firewalls, and cloud-native security controls.
• Strong documentation and communication skills; ability to present technical content to non-technical stakeholders.

Preferred Qualifications:

• SAP Certification in SAP Customer Experience, or SAP Security.
• (ISC)² Certified Information Systems Security Professional (CISSP)
• Experience working with cloud environments like SAP BTP, Azure, GCP, or AWS.
• Microsoft Certified: Cybersecurity Architect Expert (SC-100), AWS Certified Security – Specialty, Google Professional Cloud Security Engineer
• Previous exposure to Agile/DevOps methodologies and security integration into CI/CD pipelines.

We offer:

• To join one of the fastest-growing and successful companies in the field of Information technology.
• To work in a friendly, motivated, and achievement-oriented team of professionals.
• Challenging assignments and career development opportunities.
• Competitive remuneration package and social benefit program.
• Remote work.

If you are interested in becoming part of our team, please do not hesitate to send us your resume in English. We thank all interested applicants but will only contact the short-listed ones. Please indicate in the “Subject” the position you are applying for. All applications will be treated with strict confidentiality.