About the role
Spinnaker Support provides global enterprise software support, managed services, and project-based consulting to many of the world’s most recognized and respected brands. Founded in 2008, our customer focus, business integrity, exacting standards, and depth of expertise have earned us the trust and loyalty of over 1,300 organizations located in 104 countries. Our dedicated international team works closely with every customer to ensure they receive exceptional, customized services that clear the way for their operational success. Today, Spinnaker Support is proud to be the industry’s highest-rated provider for third-party software support services for VMware, Oracle and SAP.
We have an immediate need for an SAP Security Services Architect based in the UK or South Africa. This position can be based out of your home office. The Security Services Architect will be responsible for developing and maintaining the operations of security products and offering within Spinnaker Support. This role will serve to define and deliver Spinnaker Support’s approach to security within the 3rd party support and managed service markets.
This position requires a deep knowledge of the SAP architecture and experience in applying defense in depth strategies to SAP systems. This position will be responsible for providing guidance to clients on attack surface reduction strategies in relationship to the SAP system landscape. This will include identifying, documenting, and guiding clients in security best practices related to the applications, network and infrastructure of SAP systems. This position requires a person with multiple years of hands-on technical expertise in hardening the SAP environment. The applicant should have an in-depth knowledge and understanding of SAP Subnets and network DMZ.
Direct Responsibilities:
- SAP CVE and vulnerability analysis - Researching newly disclosed vulnerabilities, assessing technical impact, and developing hardening guidance.
- Security bulletin authoring - Writing customer-facing monthly bulletins summarizing threats and remediation steps for vulnerabilities identified in SAP Security Patch Day notifications.
- Rapid response for critical vulnerabilities - Developing and communicating guidance when high-severity or zero-day SAP vulnerabilities emerge.
- Structured security assessment delivery - Conducting assessments, analyzing results, compiling reports with actionable remediation recommendations
- Customer case management - Triaging and responding to customer security inquiries.
Required Competencies and Experience:
- 7+ years of SAP technical experience
- 3+ years of SAP security hardening, attack surface reduction, and vulnerability analysis
- 3+ years of scripting and automation
- Proven technical writing skills with the ability to document details for complex solutions.
- Deep knowledge of the security architecture across multiple deployment platforms (network, firewall, computer, storage, database and application)
- A detailed understanding of common network topologies and their application to security mitigation.
- Strong field-level/consultative experience with ability to staff teams to meet customer support and service requirements
- Strong analytical skills with ability to understand and document details for complex solutions
- Experience in performing NetWeaver AS system security operations.
- Fundamental knowledge of protecting SAP infrastructure at SAP/OS and DB level.
- Understanding of different SAP products at architectural level
- Understanding of SAP Security Note Monitoring/Telemetry and Proficiency with SAP Vulnerability Management
- Working knowledge of SAP users, roles and authorizations
Preferred
- 2+ years Python scripting programming
- C_SEC_2405 - SAP Certified Associate - Security Administrator
- Management and implementation of RFC Gateway and SNC
- Substantive knowledge of SSO, SNC and SSL
- Security certified
- Information Systems Security Architecture Professional (ISSAP)
- Relevant GIAC certifications (e.g., GSEC, GEVA, GPEN, GSNA)
- 1+ year of Application Security Testing
- Experience in addressing SAP vulnerabilities beyond leveraging SAP Notes.
For California based applicants, see our CCPA policy here - Privacy Policy
Aplyr's read
Spinnaker Support specializes in third-party enterprise software support, attracting professionals focused on cost-efficient, high-quality service delivery for Oracle and SAP products.
What's promising
- •Spinnaker Support offers cost-saving alternatives to traditional software vendor support.
- •The company is known for high-quality service that often exceeds vendor support standards.
- •Employees work with leading enterprise software, enhancing their technical expertise.
What to watch
- •Limited public information about company culture and internal growth opportunities.
- •The niche focus on Oracle and SAP could limit exposure to other technologies.
- •Potential reliance on a few large clients could pose revenue risks.
Why Spinnaker Support
- •Spinnaker Support provides specialized third-party support, distinct from typical vendor services.
- •The company enables clients to extend the life of their software investments.
- •Highly specialized roles cater to experts in Oracle and SAP technologies.
Aplyr’s read is generated by AI from public sources. Was it useful?
About Spinnaker Support
Spinnaker Support provides third-party support for enterprise software, including Oracle and SAP products, helping organizations reduce costs and improve service quality.
Similar roles
IT Compliance Manager
NXP Semiconductors
Information Systems Security Officer (ISSO)
General Dynamics IT
Associate, Patient Materials Operations, MSS
Bristol-Myers Squibb
IT Business Analyst - Intern
Johnson Controls
IT Business Analyst - Intern
Johnson Controls
IT Technical Product Manager – Smart Factory (Military Business)
GE Aerospace