SAP Security & Authorization Engineer
MassMutual
The Opportunity
MassMutual is seeking a senior, hands‐on SAP Security & Authorization Engineer to directly design, build, test, and support SAP security across a large, complex SAP landscape. This role is execution‐focused and requires deep, day‐to‐day work in SAP systems while also serving as the primary technical authority and advisor for SAP security within Finance Technology.
The successful candidate will spend the majority of their time working directly in SAP, resolving complex authorization issues, supporting audits, and partnering closely with project and business teams during SAP S/4 HANA and APEX‐related modernization initiatives, while also mentoring others through hands‐on collaboration.
The Team
S/4HANA & Enterprise Program Support
Serve as the hands‐on SAP Security lead for S/4HANA programs, including:
Removal of deprecated tiles and update authorizations during upgrades
Updates to company‐code‐driven and derived roles Actively support unit testing, SIT, UAT, performance, reporting, and training cycles, often involving large user populations.
Resolve defects raised in various testing cycles by updating the roles.
Work directly with developers and functional teams to: Assess security impacts
Perform pre‐business testing
Validate fixes prior to business testing The Impact
Hands‐On SAP Security Delivery (Primary Focus)
Personally design, build, test, and maintain SAP security roles and authorizations across SAP systems (S/4HANA, Fiori, HANA DB, SAC, DATASPHERE, PAPM, ECC, BI, XI)
Perform hands‐on troubleshooting and remediation of complex authorization issues impacting Finance, HR, Procurement, BW, and reporting users.
Provide direct production support, including urgent access issues, role corrections, and user remediation.
Perform feasibility assessments for new technologies by doing Proof of Concepts/Technology
Secure custom programs/tables working with the ABAP development teams.
Execute monthly SAP Security Note reviews, support pack validation, and hands‐on regression testing.
Actively support Sandbox, Development, QA, Pre‐Production, and Production environments.
Identity, Access & GRC Integration
Act as the hands‐on SAP security SME for: IAMSTRONG integrations
Manager access reviews and transfer reviews.
Segregation of Duties (SoD) and orphaned access remediation Personally support and troubleshoot ILM tooling related to onboarding, offboarding, audit controls, and access cleanup.
Partner directly with IAM, ServiceNow, and security teams to modernize and stabilize access request and fulfillment processes.
Audit, Risk & Compliance
Personally support SAP audits, including access reviews, evidence collection, and remediation.
Execute required security corrections directly in SAP to address audit findings.
Serve as the primary technical contact for Audit, Business, Risk, and Compliance partners on SAP security matters.
Technical Leadership & Knowledge Sharing
Serve as the go‐to SAP security authority for Finance Technology.
Mentor and support team members through direct collaboration and hands‐on problem solving.
Create and maintain practical documentation and FAQs to improve self‐service and reduce repeat issues.
Help prioritize work while remaining directly accountable for complex or high‐risk security changes.
The Minimum Qualifications
Bachelors degree in IT or related field of study
8+ years of hands‐on SAP Security & Authorization experience.
8+ years demonstrated experience personally building, testing, and troubleshooting SAP roles in ECC
2+ years hands on experience S/4HANA, HANA DB, SAC (Security Analytical Cloud), Datasphere, PAPM, ECC, BI, PI systems
8+ years proven experience supporting production SAP systems in a large, multi‐instance landscape
2+ years experience supporting audit activities and remediation directly within SAP
Preferred Qualifications
Ability to balance BAU production support with major transformation initiatives.
Strong communication skills with the ability to clearly explain security impacts to both technical and non‐technical partners
Experience supporting SAP S/4HANA transformations or large ERP modernization programs
Experience with building SAP S/4 Fiori roles from catalogs/groups and spaces/pages
Experience with design and building of HANA database security roles with System, Object and Analytical privileges
Experience working with Datasphere roles/scoped roles, SAC teams/Roles, role collections in BTP applications like PaPM, Cloud Identity Services.
Familiarity with IAM, GRC, ILM, and automated access provisioning frameworks.
Experience supporting analytics and reporting platforms integrated with SAP (BW, SAC, AO, etc.)
Prior experience in financial services or other regulated industries.
What Success Looks Like in This Role
SAP security remains stable, compliant, and business‐enabling throughout ongoing S/4HANA and APEX initiatives
Audit requests are handled efficiently with strong ownership and clear documentation
Business partners experience responsive, well‐explained, hands‐on support.
IAM and access management processes continue to improve through practical execution and collaboration
The SAP Security team benefits from knowledge transfer, consistency, and technical mentorship
What You Can Expect at MassMutual
MassMutual offers the opportunity to do meaningful work within a purpose-driven organization that values long-term impact over short-term outcomes. In this role, you can expect:
Clear areas of ownership and accountability, with work that connects directly to company and customer outcomes
A collaborative environment where perspectives are welcomed
Access to learning, development, and internal networks that support continuous growth and skill-building over time
Employee-led communities and forums that foster connection, learning, and inclusion across the organization
A culture grounded in integrity, responsibility, and stewardship—supported by a company with a strong legacy and a future-focused mindset
LI-SC1
MassMutual is an equal employment opportunity employer. We welcome all persons to apply. If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
California residents: For detailed information about your rights under the California Consumer Privacy Act (CCPA), please visit our California Consumer Privacy Act Disclosures page.$156k - $253k
...in months, not years. ABOUT THE TEAM We're seeking a product security engineer to own security for assigned products in your technical domain... ...maintain an active U.S. TS Security clearance with SCI and/or SAP eligibility Familiarity with security architectures of embedded...SAPFull timeWork experience placement$60k - $80k
Security Engineer — Application Security & Identity Function: Information Security Reports to: Head of Security Role Summary Owns application... ...development pipelines while maintaining independent review authority. Applications originate as AI‑assisted prototypes and...SuggestedWork experience placementLocal areaRemote work- ...SAP S/4HANA Security Architect Lead the design, implementation of security and governance solutions within the SAP S/4HANA landscape.... ...implement SAP S/4HANA security architecture including roles, authorizations, and user management. Lead the deployment and...SAP
$40k
...mission‑critical programs across national security, defense, and public service delivery.... ...a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity... ...availability of the position, and receipt of authorization to proceed. Ability to obtain and...SuggestedContract workRemote work$140k - $180k
...Principal Security Engineer The Principal Security Engineer role will support the cyber team that handles the mergers and acquisitions... ...directory, Identity store tools, authentication, and authorization best practice for both internal employee and external party...SuggestedLocal areaFlexible hours- The Senior Security Engineer serves as a critical guardian of CHA’s digital landscape. This role combines high-level technical expertise in... ...Management: Oversee secure authentication to ensure only authorized personnel access clinical systems. Qualifications: Education...Work at officeRemote work
$75.85k - $126.59k
...Kleinfelder, a Forbes' Top Employer for Engineers in North America, is committed to a... ...opportunity to work with cutting‑edge security solutions. Our security team is responsible... ...Management (APIM) for authentication, authorization, and traffic control. Experience securing...Live inFlexible hours$86.4k
...Highmark Health Job Summary The Identity & Access Management Security Engineer participates in the development, testing, implementation,... ...to identities, systems, access, accounts, authentication, authorization, entitlements, and permissions. Determines and recommends the...For contractorsWork at officeLocal areaRemote work$104k - $156k
...Advanced Security Engineer The Advanced Security Engineer is a technically deep, hands-on practitioner who forms the operational backbone of the enterprise security function. Operating within a layered defense-in-depth program, this engineer owns the design, deployment...$121k - $226k
...you. As we continue to grow, we're looking for a Sr. AI Security Engineer. Hi Marley is building an AI-native operating model: personal... ...with your Form I-9 information to confirm that you are authorized to work in the U.S. For more information, please review the...Work at officeFlexible hours2 days per week3 days per week- ...Health in Boston is looking for an Identity & Access Management Security Engineer responsible for developing, testing, and integrating IAM... ..., and can manage issues related to authentication and authorization processes. A relevant Bachelor's degree is required. #J-18...
$127.6k - $206.53k
...Staff Network Security Engineer At Palo Alto Networks®, we're united by a shared mission—to protect our digital way of life. We thrive at the intersection of innovation and impact, solving real-world problems with cutting-edge technology and bold thinking. Here, everyone...Full timeWork at officeVisa sponsorshipWork visa$90k - $140k
Security Engineer Position Summary As a Security Engineer, you will be part of our growing IT, Security & Compliance team, designing,... ...contingent on the ability to obtain and maintain appropriate authorizations. All hiring complies with applicable federal and state laws...Full time- 7AI is seeking a Senior Security Engineer to join our Boston team, focusing on defining security workflows and incident response strategies. You will design and implement advanced security use-cases, build simulations of attack scenarios, and enhance our AI agents through...
- At 7AI, security is foundational to everything we build. Our customers trust us with some... ...are seeking a Senior Product Security Engineer to join our Platform team. In this role... ...design, including authentication, authorization, secrets management, software supply chain...
- ...A leading financial institution is seeking a Senior Ethical Hacker to evaluate the security of applications and technologies within its Cyber Security Assurance group. The ideal candidate will have over 5 years of experience in pentesting or ethical hacking, alongside...Work at office
- ...Network Security Engineer Boston, MA Must be onsite in Boston 3 days a week. ~ Must have strong Palo Alto, Juniper, and heavy Security ~5+ years of Network Security ~ Industry certifications (e.g., Palo Alto PCNSE, Juniper JNCIS-SEC...Contract work3 days per week
- ...increase positive reputation in market and with vendors Ensure proper authorization of invoices using approval routing software or matching... ...Experience with a mid-to-large ERP/accounting system is required and SAP experience is a plus Detail orientated Proven ability to handle...SAP
- ...collaborative excellence, we're shaping the future of data infrastructure, built for speed, flexibility, and simplicity. This role as a Security Engineer intersects software engineering, infrastructure, and security, partnering with engineering teams to improve security across...Remote workFlexible hours
$160k - $205k
...Senior Full Stack Pentester to join our world-class offensive security team. The role focuses on hunting high-risk vulnerabilities across... ...senior leadership on development projects and mentor junior engineers. Assist with monitoring, detection, and response functions to...Remote workShift workDay shift- ...We are seeking a Senior Security Engineer to join our team, focusing on defining security workflows and incident response (IR) strategies. Our AI Security Engineers are at the forefront of the Agentic Security revolution, working directly with our customers to ensure the...
- ...late‑phase clinical development programs, including innovative trial design and endpoint strategy. Author statistical sections of protocols and lead development of SAPs for Phase 2/3 studies and integrated analyses. Partner cross‑functionally with Clinical Development,...SAP
$166k - $253k
...computer vision, sensor fusion, and networking technology to the military in months, not years. About The Job We're seeking a Security Software Engineer to develop novel security tooling for securing embedded Linux systems and Android devices. The ideal candidate can...Full timeWork experience placementImmediate startRelocation package$132.8k - $199.2k
...functional collaboration as we work together to engineer the extraordinary. In your role, you... ..., Florida Boston, Massachusetts The Security Engineering Manager serves a key member... ...be specific to each role. U.S. Work Authorization & Sponsorship At Medtronic, we are...H1bWork at officeLocal areaFlexible hoursShift work- Shape the Future of AI Security We are seeking a Senior AI Security Engineer to join our innovative team at Tricentis. As a Senior AI Security Engineer, you... ...process or subsequent employment. U.S. Work Authorization This role is not eligible for employer-sponsored work...Work experience placementVisa sponsorshipWork visa
$187k - $253k
...time zone Contentful strives to build a secure and safe service and commits... ...scalable ways. As a Manager of Security Engineering, you will own security engineering across... ...initiatives and influence outcomes without direct authority. Experience owning end‑to‑end security...Full timeWork at officeWorldwide$130k - $170k
...businesses fuel innovation with AI. About the Role: As a Security Engineer focused on Application and Product Security, you will play... ...of secure coding principles, API security, authentication, authorization, and secrets management. Strong problem‑solving skills and...Work at officeLocal areaFlexible hours2 days per week1 day per week- ...to shape development plans and regulatory interactions. You will oversee the statistics and programming team in a mixed outsourcing model, author the statistics sections of protocols, SAPs, and SDTM/ADaM deliverables, and ensure the integrity #J-18808-Ljbffr JobtailorSAP
- ...Cyber Security Architect Position: Cyber Security Architect Location: Hybrid in... ...Designed application authentication and authorization solutions including Single-Sign-On, Multi... ...architecture, data architecture, engineering, and infrastructure. • Minimum 12 years...Work experience placement
$170k - $200k
...Remote employees considered) Contract Full-time, Hybrid / Flexible - 35‑hour week Salary $175,000 base + 15% bonus Title Senior Security Engineer (US) Overview We are seeking a hands‑on, senior security engineer to proactively strengthen our security posture across cloud...Full timeContract workWork at officeRemote workFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to SAP Security & Authorization Engineer. Be the first to apply!
- sap developer Boston, MA
- IT security engineer Boston, MA
- sr security engineer Boston, MA
- information technology security engineer Boston, MA
- endpoint security engineer Boston, MA
- application security engineer Boston, MA
- senior application security engineer Boston, MA
- security engineering manager Boston, MA
- aws cloud security engineer Boston, MA
- security engineer Boston, MA


