SAP Security Professional - Data Security & Privacy (SAP D&S, DFPS)
Next Ventures are currently executing a search for an experienced SAP Security Professional - Data Security & Privacy (SAP D&S, DFPS) with Experience within SAP Defence & Security (DFPS/D&S) within a highly secure, regulated environment.
Industry
Defence, Aerospace, Public Security, Government
Contract Details
- Duration: Initial 12-month contract with extensions (programme duration up to 3 years)
- Work Model: On-site/hybrid (dependent on security requirements)
- Remote Working: Possible, subject to programme security constraints
- Travel: Willingness to travel within Europe approximately once per month
- Location: EU-based projects
- Eligibility:
- EU or UK passport holders
- Willingness to undergo security clearance process
Security Clearance
- SC or DV clearance (or eligibility to obtain), depending on programme requirements
The role:
SAP D&S Security Professional - Data Security & Privacy
Location: [eg Remote/Hybrid/Remote options available] on site vists to Poland
Department: IT Security/Governance, Risk & Compliance (GRC)
Reports to: SAP Security Lead/Head of Data Protection & Security
About the Role
We are seeking an experienced SAP Data Security & Privacy Professional with strong expertise in SAP environments (including S/4HANA, ECC, and cloud solutions such as RISE with SAP or SAP BTP) to join our team. The role focuses on safeguarding sensitive business and personal data within SAP landscapes, ensuring robust data protection, privacy compliance (GDPR, CCPA, Schrems II, etc.), and alignment with internal security policies.
This position combines classic SAP security (authorizations, roles, SoD) with specialized data security & privacy capabilities - including data masking, anonymization, encryption, personal data life cycle management, and privacy-by-design implementation in SAP systems.
Experience within SAP Defence & Security (DFPS/D&S) within a highly secure, regulated environment
Ideal for professionals who have worked with SAP Information Lifecycle Management (ILM), SAP Data Privacy Governance, SAP GRC Access Control/Process Control, or third-party tools integrated with SAP for data protection.
Key Responsibilities
- Design, implement, and maintain SAP data security & privacy controls across on-premise, cloud (RISE/BTP), and hybrid SAP landscapes
- Configure and manage SAP data masking, anonymization, pseudonymization, and encryption features (field-level, column-level, dynamic masking)
- Lead implementation and operation of SAP Personal Data Management/Data Protection & Privacy functionalities (eg, right to access, right to erasure/deletion blocks, retention rules via ILM)
- Perform Privacy Impact Assessments (PIAs/DPIAs) for SAP implementations, custom developments, and integrations
- Ensure compliance with global privacy regulations (GDPR, UK GDPR, CCPA/CPRA, LGPD, etc.) and industry standards within SAP environments
- Collaborate with SAP functional teams, Data Protection Officers (DPO), legal, and business stakeholders to translate privacy requirements into technical SAP configurations
- Define and enforce sensitive data discovery, classification, and protection policies in SAP systems
- Support SAP GRC processes related to data privacy (eg, integration with Access Request Management, Business Role Management, and Continuous Controls)
- Conduct regular security & privacy reviews, audits, and SoD/conflict analysis with a strong focus on data exposure risks
- Monitor SAP systems for unauthorized access to personal/sensitive data and respond to potential privacy incidents
- Provide expert guidance on secure SAP development practices (ABAP, Fiori, custom code security) with privacy considerations
- Stay current with SAP roadmap updates (eg, SAP S/4HANA privacy enhancements, Intelligent Enterprise features) and evolving privacy legislation
- Contribute to security awareness training focused on data handling in SAP
Required Qualifications & Experience
- 5-8+ years of hands-on experience in SAP Security with at least 3+ years focused on data security, data privacy, or data protection in SAP environments
- Deep knowledge of SAP authorization concept (PFCG, SUIM, SU24, roles, profiles, Fiori catalog/group security)
- Proven experience implementing SAP data masking/anonymization tools and techniques
- Strong understanding of SAP ILM (Information Lifecycle Management) for retention and deletion of personal data
- Practical experience with SAP Data Privacy Governance or equivalent privacy management capabilities in SAP
- Solid knowledge of GDPR/data protection principles and their technical implementation in ERP systems
- Experience with SAP GRC Access Control (ARM, EAM, BRM) and/or Process Control modules (advantage)
- Familiarity with SAP S/4HANA security model, SAP BTP security, and cloud security concepts (advantage)
- Understanding of complementary tools (eg, Pathlock, SecurityBridge, OneTrust integrations with SAP)
Preferred Skills & Certifications
- SAP certifications: SAP Certified Technology Associate - SAP System Security, SAP S/4HANA Security, SAP GRC, or similar
- Privacy certifications: CIPP/E, CISM, CDPSE, or equivalent
- Knowledge of SAP BTP Identity Authentication/Identity Provisioning
- Experience with SAP HANA security (row-level, analytic privileges)
- Scripting/automation skills (eg, ABAP, Python for security reporting)
Personal Attributes
- Analytical mindset with strong attention to detail
- Excellent communication skills - able to explain complex privacy/security concepts to non-technical stakeholders
- Proactive, solution-oriented, and able to balance compliance requirements with business needs
- Team player with experience working in cross-functional and international environments
If you are passionate about protecting sensitive data in complex SAP landscapes and want to play a key role in building privacy-resilient ERP systems - we would love to hear from you!
Apply now with your CV and a brief note on your most relevant SAP data privacy project.
More information is available on application
CV in word
The post SAP Security Professional - Data Security & Privacy (SAP D&S, DFPS) appeared first on Next Ventures.
