Role Overview:
The Senior ERP Security Architect will be responsible for leading security pre-planning, risk assessment, and post-implementation security validation for a Microsoft Dynamics 365 ERP deployment within a regulated UK energy-sector environment.
This role ensures that ERP security controls are properly designed, implemented, and validated to protect sensitive operational, financial, and customer data while meeting UK regulatory, audit, and critical-infrastructure expectations. The role operates in close coordination with ERP IT teams, business stakeholders, implementation partners, and security governance functions.
This is a hands-on architecture and assurance role, not a compliance-only or operational SOC function.
Key Responsibilities:
Security Pre-Planning & Architecture
- Define and validate the end-to-end security architecture for Dynamics 365 ERP
- Design role-based access control (RBAC) models aligned with least-privilege principles
- Define Segregation of Duties (SoD) controls for finance, supply chain, and operational workflows
- Review and approve identity, access, and integration security designs
- Ensure security is embedded into ERP configuration, customizations, and integrations before go-live
Identity & Access Management
- Architect and assess Microsoft Entra ID (Azure AD) integration with Dynamics 365
- Validate MFA, Conditional Access, privileged access, and service account controls
- Ensure robust joiner / mover / leaver processes are enforced
- Review API, non-interactive identity, and partner access models
Cloud & Platform Security
- Assess Azure platform security controls supporting the ERP environment
- Validate network segmentation, secure connectivity, and data access controls
- Ensure secure integration with third-party systems and implementation partner tooling
- Apply shared-responsibility principles appropriate to SaaS ERP platforms
Risk Assessment & Control Validation
- Conduct pre-implementation security risk assessments
- Identify and document risks related to access, data exposure, and privilege escalation
- Perform post-implementation security assessments and control effectiveness testing
- Develop remediation recommendations aligned to business impact and risk tolerance
Compliance, Audit & Regulatory Alignment
- Ensure ERP security controls align with UK energy-sector expectations, including:
- NIS Regulations
- ISO 27001 / ISO 27019 (energy-specific controls)
- NIST CSF (where applicable)
- SOC / internal audit requirements
- Support audit readiness through documentation, evidence, and control mapping
- Produce clear, defensible security artefacts for regulators and auditors
Stakeholder & Partner Engagement
- ERP IT teams
- Business process owners
- Implementation partners
- Security and risk leadership
- Provide clear guidance on security decisions and trade-offs
- Translate technical security findings into business-relevant risk statements
Never miss an opportunity! Create an alert based on the job you applied for.
