SAP BTP Security Consultant (NCS/Job/ 3419)

▪ Design and implement security architecture for SAP BTP, including Identity and Access Management (IAM),

authentication, and authorization models.  

▪ Configure and manage SAP Identity Authentication Service (IAS) and Identity Provisioning Service (IPS).

▪ Establish trust between SAP IAS and Microsoft Azure AD or other Identity Providers (IdPs).  

▪ Configure IAS integration with SAP SuccessFactors and Joule etc.

▪ Implement user provisioning via IPS to SAP on-premise and Cloud applications (e.g., Ariba, SuccessFactors).  

▪ Configure Role Collections for BTP services, including Group-to-Role Collection mapping and BTP platform role

management.  

▪ Design and maintain secure authentication mechanisms using OAuth, SAML, OIDC.  

▪ Ensure compliance with SAP security guidelines and regulatory standards.  

▪ Monitor and remediate vulnerabilities in SAP BTP environments.

Qualifications and Requirements

Key competencies in SAP BTP Security

▪ Minimum 5+ years of SAP security experience, with at least 2 years in SAP BTP security.  

▪ Hands-on experience in:  

• Establishing trust between IAS and Azure AD or other IdPs.

• IAS integration with SuccessFactors and Joule.

• Implementing conditional authentication rules in IAS

• Expertise in IAS trust configuration with multiple IdPs and SAP applications.

• User provisioning via IPS to SAP on-premise and SAP Cloud apps (Ariba, SuccessFactors).

• Configuring Role Collections, Group-to-Role mapping, and BTP platform role management.

• Designing and maintaining provisioning jobs for complex user lifecycle scenarios.

• Creating custom transformation rules in IPS for attribute mapping and filtering.

• Integrating IPS with non-SAP systems using SCIM or REST APIs.

• Monitoring and troubleshooting provisioning logs and error handling in IPS.

• Implementing role-based provisioning and dynamic group assignments.

▪ Proficient in OAuth, SAML, OIDC protocols.

▪ Expertise in SAP Identity and Access Management.  

▪ Strong understanding of SAP BTP security architecture.

Other skills and abilities

▪ Self-driven, Proactive, Systems Thinking

▪ Flexible and reliable- displaying great ownership in all aspects

▪ Ability to work in global distributed setting without supervision