SAP SuccessFactors Security Architect Manager
JTI · Madrid, Community of Madrid, Spain
- On site
- Full-time
- $150,000 / year
- Madrid, Community of Madrid, Spain
Job highlights
- Design SAP SuccessFactors access and authorization models.
- Collaborate with business, IT, and compliance teams.
- Ensure system security, integrity, and compliance.
- Manage and mentor SAP security staff.
- Support IAM integration and governance processes.
About the role
SAP SuccessFactors Security Architect Manager
At JTI, we celebrate differences, and everyone truly belongs. 46,000 people from all over the world are continuously building their unique success story with us. 83% of employees feel happy working at JTI. To make a difference with us, all you need to do is bring your human best. What will your story be? Apply now! Learn more jti.com. Please apply by 28 January 2026.
About the Role
In this role, you will design and maintain access models and governance-related business processes based on information from stakeholders and identified needs. You will implement controls, manage vendors and partners, ensure stakeholder satisfaction, and promote a risk-driven culture of information security.
Position Responsibilities
- Design and maintain a sustainable SuccessFactors access model to facilitate the maintenance of authorizations in the JTI SAP SSFF landscape.
- Act as an interface between different stakeholders (Business, IT, Compliance/Legal teams) to ensure alignment on the access design and implementation plan.
- Engineer and maintain a sustainable Business Roles architecture for SAP SSFF, troubleshoot, and resolve authorization-related issues.
- Maintain documentation of roles, permission sets, and security policies.
- Participate in SAP release cycles and assess the impact on authorization structures.
- Ensure security measures and policies around the SAP SSFF landscape are adequately designed.
- Perform regular audits and reviews of access controls to ensure compliance with internal policies and external regulations (e.g., GDPR, SOX).
- Design and implement new controls ensuring SAP SSFF systems remain available, transactional integrity is guaranteed, data sensitivity and confidentiality requirements are met, and risks are considered.
- Look for improvement opportunities via automation of internal processes or leveraging existing system functionality.
- Manage and transfer knowledge by designing training materials, training SAP security staff, and other stakeholders.
- Support integration with Identity and Access Management solutions (Identity IIQ/SailPoint preferred).
Requirements
- University degree in Computer Science, Information Systems, or a related field is preferred.
- Strong experience in SAP SuccessFactors authorizations with a focus on design/architecture (5+ years).
- Authorizations Mandatory Role-Based Permissions, LMS, Onboarding.
- SSFF modules: Employee Central, Onboarding, Recruiting Management, Recruiting Marketing, Learning, Performance & Goals, Calibration, Career Development Planning (for now, only Development plans are in use), Succession.
- Proxy Management Configuration.
- Experience with SuccessFactors API and integration security.
- Project management experience (2+ years).
- Knowledge of SSFF business and functional processes.
- Ability to work autonomously.
- Ability to think critically and creatively, to see the big picture while focusing on details.
- Proficiency in Identity and Access Governance processes.
- SAP SuccessFactors certification(s) in relevant modules.
- Security background – non-SAP certifications welcome (CISSP, CISA, etc.).
- Customer orientation with focus on quality, strong stakeholder management.
What To Expect
Expect well-being initiatives, flexible work arrangements, growth opportunities, and excellent benefits, including a unique family leave policy. For more details on local policies, speak with the Talent Advisor.
Are you ready to join us?
Build your success story at JTI. Apply now!
Next Steps
After applying, if selected, please anticipate the following within 1-3 weeks of the job posting closure: Phone screening with Talent Advisor > Assessment tests > Interviews > Offer. Each step is eliminatory and may vary by role type.
Diversity & Inclusion
At JTI, we strive to create a diverse and inclusive work environment. As an equal-opportunity employer, we welcome applicants from all backgrounds. If you need any specific support, alternative formats, or have other access requirements, please let us know.
Key skills/competency
- SAP SuccessFactors Security
- Access Management
- Authorization Design
- Identity and Access Governance
- Risk Management
- Stakeholder Management
- SAP Security Audits
- GDPR Compliance
- SOX Compliance
- Project Management
Skills & topics
- SAP SuccessFactors
- Security Architect
- Manager
- Access Management
- Authorization Design
- Identity and Access Governance
- SAP Security
- Information Security
- Compliance
- Project Management
- GDPR
- SOX
- CISSP
- CISA
- LMS
- Employee Central
- Onboarding
How to get hired
- Customize your resume: Highlight SAP SuccessFactors security, authorization design, and IAM experience.
- Tailor your application: Emphasize your project management skills and knowledge of SSFF modules.
- Prepare for interviews: Be ready to discuss your experience with access controls and compliance regulations like GDPR and SOX.
- Showcase technical acumen: Demonstrate understanding of SAP SuccessFactors API, integration security, and governance processes.
- Highlight leadership: Showcase experience in stakeholder management and knowledge transfer for SAP security staff.
Technical preparation
Master SAP SuccessFactors authorization concepts.,Understand Role-Based Permissions and security settings.,Familiarize with SuccessFactors API security.,Practice IAM integration scenarios.
Behavioral questions
Describe a complex authorization issue solved.,How do you manage conflicting stakeholder needs?,How do you ensure data confidentiality and integrity?,How do you approach training and knowledge transfer?
Frequently asked questions
- What are the key SAP SuccessFactors modules for this Security Architect Manager role at JTI?
- The key SAP SuccessFactors modules for this role include Employee Central, Onboarding, Recruiting Management, Recruiting Marketing, Learning, Performance & Goals, Calibration, Career Development Planning, and Succession. Experience with Role-Based Permissions, LMS, and Onboarding authorizations is mandatory.
- What is JTI's policy on flexible work arrangements for the SAP SuccessFactors Security Architect Manager position?
- JTI offers flexible work arrangements, along with well-being initiatives and growth opportunities. Specific details regarding local policies can be discussed with the Talent Advisor.
- What are the expected next steps after applying for the SAP SuccessFactors Security Architect Manager job at JTI?
- After applying, if selected, the next steps typically include a phone screening with a Talent Advisor, assessment tests, interviews, and potentially an offer. These steps occur within 1-3 weeks of the job posting closure and are eliminatory.
- Does JTI require specific certifications for the SAP SuccessFactors Security Architect Manager role?
- While a university degree in a related field is preferred, SAP SuccessFactors certification(s) in relevant modules are highly valued. Non-SAP security certifications such as CISSP or CISA are also welcomed.
- What kind of experience is needed for the SAP SuccessFactors Security Architect Manager position at JTI?
- The role requires strong experience (5+ years) in SAP SuccessFactors authorizations, focusing on design/architecture. Additionally, 2+ years of project management experience and proficiency in Identity and Access Governance processes are necessary.
- How does JTI approach diversity and inclusion for the SAP SuccessFactors Security Architect Manager role?
- JTI is committed to creating a diverse and inclusive work environment and welcomes applicants from all backgrounds. They operate as an equal-opportunity employer and can provide specific support or alternative formats upon request.
- What are the primary responsibilities of the SAP SuccessFactors Security Architect Manager at JTI?
- The primary responsibilities include designing and maintaining SAP SuccessFactors access models, engineering business roles architecture, managing authorizations, ensuring system security and compliance with regulations like GDPR and SOX, and supporting IAM integrations.