Sign upLog in

IT Solution Architect Principal II - SAP Application Security

PSEG

Newark, NJ

Apply
JOB DETAILS
SALARY
$121,200–$199,200 Per Year
SKILLS
Access Authorization, Access Control, Analysis Skills, Applications Security, Architectural Design, Architectural Services, Business Case, CISA - Certified Information Systems Auditor, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Cloud Computing, Code of Federal Regulations, Community Support, Computer Engineering, Computer Science, Continuous Deployment/Delivery, Control Objectives for Information and related Technology (COBIT), Customer Support/Service, Delivery Management, Ecosystems, Enterprise Protection, Fortune 500 Customers, ISO (International Organization for Standardization), Identity Data Management, Information Science, Information Technology & Information Systems, Leadership, Maintain Compliance, Mathematics, Metrics, Microservices, Policy Development, Process Control Engineering, Quality Metrics, Regulations, Regulatory Compliance, Regulatory Requirements, Risk Management, SAP, SAP BusinessObjects Governance Risk & Compliance (GRC), Sarbanes-Oxley Act (SOX), Security Architecture, Security Design, Standards Development, Strategic Planning, Technical Delivery, Technical Leadership, Test Program, U.S. National Institute of Standards and Technology (NIST), Use Cases, Work From Home
LOCATION
Newark, NJ
POSTED
30+ days ago
Requisition: 83525


PSEG Company: PSEG Services Corp.


Salary Range: $ 121,200 - $ 199,200


Work Location Category: Hybrid Flexible


We’re one of the country’s largest energy companies, with a vision of powering a future where people use energy more efficiently and it’s safer and delivered more reliably than ever. We’re also deeply connected to the communities we serve, with more than 13,000 employees working together to support our customers and make a difference every day.

Here, you’ll have the stability and exciting opportunities that come with being a Fortune 500 company — along with a supportive, friendly work environment where your contributions are valued.


We know life isn’t one-size-fits-all, and neither is work. That’s why we offer flexible work options depending on the role.

In support of this model, roles have been categorized into one of three work location categories:

1. Onsite – roles where employees are expected to be onsite daily.

2. Hybrid fixed – roles that are a mix of remote work and onsite work fixed days each week

3. Hybrid flexible – roles that are a mix of remote work and onsite work, but the onsite requirements have greater flexibility. (i.e. 5-8 days a month vs. set days each week).


As an employee, if you are regularly scheduled to work 20 or more hours per week, you will have access to a wide range of comprehensive benefits from day one, designed to support your total well-being: medical, dental, vision, parental leave and family leave programs, behavioral health programs, 401(k) with company match, life insurance, tuition reimbursement, and generous paid time off.


More than 13,000 people already call PSEG their work home, taking pride in providing safe, reliable service to millions of customers. If you’re looking for a place where you can build a meaningful career and help power and support our communities, we’d love to welcome you to the team.


PSEG is not offering visa sponsorship for this position.


Job Summary


The SAP Application Security Architect is responsible for leading the strategy, design, and governance of SAP security architecture for the PSEG SAP Modernization project to migrate to S/4HANA. This role ensures the confidentiality, integrity, and availability of SAP systems by establishing robust security frameworks, access controls, and compliance standards aligned with business and regulatory requirements. Key responsibilities include designing and maintaining SAP role-based access controls (RBAC), Segregation of Duties (SoD) frameworks, and identity and access management (IAM) integrations across SAP landscapes including S/4HANA, SAP Fiori, SAP BTP, and related cloud platforms (including SAP Service Cloud). The role partners closely with business, audit, compliance, infrastructure, and application teams to proactively mitigate risk, support regulatory audits, and enable secure digital transformation initiatives.


The ideal candidate brings deep expertise in SAP authorization concepts, security architecture design, risk management, and governance, along with proven leadership experience in complex, multi-system SAP environments.


This position reports to the SAP Modernization Technology Delivery Manager.


Job Responsibilities


+ Partner and collaborate with all stakeholders to understand and translate goals and objectives into architecture, roadmaps and capability models. Reconcile different perspectives and drive toward consensus.

+ Look across applications, infrastructure, technology components and data to when developing roadmaps and capability models that outline how technology solutions are and will be structured.

+ Create and maintain reusable artifacts and patterns. Harvests artifacts across initiatives to extend the library of reusable artifacts and patterns or to enhance the existing reusable artifacts.

+ Develop policies, standards, guidelines, procedures and metrics that measure architectural quality and business outcomes.

+ Engage with implementation teams to encourage and promote use of existing models, methods, services and other artifacts and capabilities resulting in increased speed of technology solution delivery, making such delivery more predictable and increasing the overall re-use of technology components.

+ Research architectural paradigms and modern architecture constructs. Learn how processes such as continuous delivery or technologies such as micro services impact technology architecture.

+ Ensure compatibility with existing solutions infrastructure, services and strategic requirements.

+ Act as a bridge among various parties during implementation of architecture components and their integration.

+ Communicate the objectives and business outcomes of the technology architecture and the associated use cases in which the organization will derive the most value.

+ Provide support and leadership to inform and aid evaluation and decision making in technology spending.

+ Participate in the ecosystem strategy development, including environmental analysis, opportunity identification, value cases and business innovation portfolio development.


Job Specific Qualifications


+ Bachelor’s degree in Engineering, Computer Science, Mathematics, Information Technology, Computer Engineering or Information Sciences preferred, or related field.

+ 10 years of work experience in technology solution engineering. 12+ years of work experience in technology solution engineering without a degree.

+ 6-8 years of experience in SAP security and authorization design.

+ Deep expertise in SAP security architecture across S/4HANA, ECC, BW/4HANA, SAP Fiori, and SAP BTP.

+ Strong hands-on experience designing and maintaining role-based access controls (RBAC.)

+ Proven experience implementing and managing Segregation of Duties (SoD) frameworks (e.g., SAP GRC Access Control.)

+ Experience integrating SAP with enterprise Identity and Access Management (IAM) solutions.

+ Strong understanding of SAP authorization objects, profiles, and transport management.

+ Experience supporting SOX, NERC, or other regulatory compliance audits.

+ Knowledge of SAP cloud security principles and hybrid landscape security design.

+ Department of Energy’s regulation 10 CFR 810 is required


Desired


+ SAP certifications (e.g., SAP Security, SAP GRC, S/4HANA, SAP BTP).

+ Industry certifications such as CISSP, CISM, CISA, or similar.

+ Experience with SAP GRC modules (Access Control, Process Control, Risk Management)

+ Experience designing security for SAP Fiori and SAP Gateway

+ Familiarity with enterprise security frameworks (e.g., NIST, ISO 27001, COBIT)

+ Experience leading large-scale SAP transformations (e.g., ECC to S/4HANA) from a security architecture perspective.

+ Experience with large scale SAP Utility projects.


Some positions at PSEG require access to information covered by the Department of Energy’s regulation 10 CFR 810 (Part 810). If applicable, the successful applicant must prove they are: (1) a citizen or national of the USA; OR (2) a lawful permanent resident of the United States (Non-Conditional Permanent I-551 / Green Card / Permanent Resident Card holder); OR (3) a citizen, national, or permanent resident of a “Generally Authorized” destination on the attached list (https://corporate.pseg.com/-/media/PSEG/Corporate/Careers/Careers At PSEG/AppendixAtoPart810_ Title10) not also a citizen, national, permanent resident of any country not listed; OR (4) a “Protected Individual” under the Immigration and Naturalization Act (8 U.S.C 1324b(a)(3)).


As an employee of PSEG, you should be aware that during emergency restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.

For all roles, PSEG’s drug and alcohol testing program includes pre-employment testing, testing for cause, and post-incident/accident testing.

Employees who are hired or transfer into a federally regulated role (including positions covered by USDOT, PHMSA, or NRC regulations) are subject to random drug and alcohol testing, inclusive of marijuana. Although numerous states throughout the country have legalized marijuana/cannabis products recreationally and medically, the use of these products are prohibited for employees in federally regulated roles. Please note that the use of CBD products may result in a positive drug test for THC/Marijuana and such use is not a legitimate medical explanation for a positive result.


If you are a current PSEG Long Island (PSEGLI) employee and offered an opportunity with PSEG or any of its subsidiaries other than PSEGLI, you will be treated as a new hire. Please note that as a new hire to PSEG, your benefits will change and generally will be consistent with other similarly situated PSEG new hires. Similarly, for PSEG employees who accept job opportunities with PSEGLI, your benefits will change and generally be consistent with other similarly situated new hires of PSEGLI.


PSEG is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legally protected characteristic. Legally protected characteristics include race, color, religion, national origin, sex, age, marital status, sexual orientation, disability or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.

PSEG is committed to providing reasonable accommodations to individuals with disabilities. If you have a disability and need assistance applying for a position, please call 973-430-3845 or email accommodations@pseg.com.

If you need to request a reasonable accommodation to perform the essential functions of the job, email accommodations@pseg.com. Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.

ADDITIONAL EEO INFORMATION (Click link below)

Know your Rights: Workplace Discrimination is Illegal

About the Company

P

PSEG

The energy of Public Service Enterprise Group (PSEG) is our people! We offer employees opportunities to build careers working with skilled and dedicated people on some of the most important challenges of our time. We respect all aspects of diversity, valuing others' strengths, perspectives, and approaches. PSEG, a diversified energy holding company with over $28 billion in assets, is one of the nation's leading wholesale energy producers and most reliable electric and gas transmission and delivery utilities. PSEG has received numerous recognition awards for performance, safety, community support, diversity and the environment.

COMPANY SIZE
10,000 employees or more
INDUSTRY
Energy and Utilities
FOUNDED
1903
WEBSITE
https://www.pseg.com/home/index.jsp