Training
Featured CourseView All Courses

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

SEC595Cyber Defense, Artificial Intelligence
SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals
View course detailsRegister
Get a Free Hour of SANS Training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
NEW - AI Security Training
Can't find what you are looking for?

Let us help.

Contact us
Free Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

Customer Case Studies

Discover how organizations and individual cyber practitioners use SANS training and GIAC certifications

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Contact Sales
Contact Sales

Security Architect

Return To SAP HomepageJoin The SANS Community
SAP

Role Description 

Security Architects are responsible for designing, implementing, and maintaining the security of SAP systems. They ensure systems are protected against threats and aligned with organizational goals by developing and enforcing policies, conducting risk assessments, and collaborating with teams to integrate security throughout the SAP lifecycle.

BLUF 

Security Architects must combine fundamental knowledge, hands-on architecture skills, and advanced design principles to secure complex SAP environments. This roadmap progresses from core security foundations (T1) through threat modeling and design (T2–T3) into enterprise defense-in-depth and advanced system security (T4–T5).

Development Roadmap with TKS Alignment

T1 – Novice (Foundations)

Course: SEC275 / SEC401. Aligned TKSs: 101 Security Fundamentals, K1111 Application Security Design Principles (introductory), T1327 Update Security Documentation (basic exposure)

  • Slide 1 of 2

    SEC275: Foundations: Computers, Technology, & Security

    Beginner
    SEC275Cyber Defense
    SEC406: Linux Security for InfoSec Professionals
    • GIAC Foundational Cybersecurity Technologies (GFACT)
    • 38 CPEs / 38 Hours (Self-Paced)
    • Labs: 90 Hands-On Labs

    View course detailsRegister
  • Slide 2 of 2

    SEC401: Security Essentials - Network, Endpoint, and Cloud

    Essentials
    SEC401Cyber Defense
    SEC401: Security Essentials - Network, Endpoint, and Cloud
    • GIAC Security Essentials (GSEC)
    • 6 Days (Instructor-Led)
    • 46 CPEs / 46 Hours (Self-Paced)
    • Labs: 20 Hands-On Labs

    View course detailsRegister

T2 – Practitioner (Applied Knowledge)

Course: SEC530. Aligned TKSs: S0350 Design Access Control Solutions, S0853 Cybersecurity Architecture Analysis, T0122 Implement Security Designs for New or Existing Systems, T1148 Develop Systems Security Design Documentation

SEC530: Defensible Security Architecture and Engineering: Implementing Zero Trust for the Hybrid Enterprise

Intermediate
SEC530Cyber Defense
SEC530: Defensible Security Architecture and Engineering: Implementing Zero Trust for the Hybrid Enterprise
  • GIAC Defensible Security Architecture (GDSA)
  • 6 Days (Instructor-Led)
  • 36 CPEs / 36 Hours (Self-Paced)
  • Labs: 24 Hands-On Labs

View course detailsRegister

T3 – Advanced (Specialized Knowledge)

Course: SEC549. Aligned TKSs: K1274 Threat Modeling Tools & Techniques, S0588 Skill in Threat Modeling, T0271 Develop Cybersecurity Designs to Meet Operational Needs, T1320 Conduct Threat Modeling, T1365 Document Cybersecurity Design & Development Activities

SEC549: Cloud Security Architecture

UPDATED
Advanced
SEC549Cloud Security
SEC549: Cloud Security Architecture
  • GIAC Cloud Security Architecture and Design (GCAD)
  • 5 Days (Instructor-Led)
  • 30 CPEs / 30 Hours (Self-Paced)
  • Labs: 35 Hands-On Labs

View course detailsRegister

T4 – Expert (Enterprise Integration)

Course: LDR419. Aligned TKSs: T1151 Develop Cybersecurity Designs for Multilevel Security Requirements, T1152 Develop Cybersecurity Designs for Multiple Data Classifications, T1153 Integrate Cybersecurity Designs for Systems & Networks, T1426 Determine Cybersecurity Design & Architecture Effectiveness

LDR419: Performing A Cybersecurity Risk Assessment

Intermediate
LDR419Cybersecurity Leadership
LDR419: Performing A Cybersecurity Risk Assessment
  • 2 Days (Instructor-Led)
  • 12 CPEs / 12 Hours (Self-Paced)
  • Labs: 7 Hands-On Labs

View course detailsRegister

T5 – Expert / Mentor (Strategic Oversight & Defense Leadership)

Course: SEC560. Aligned TKSs: T1402 Implement Defense-in-Depth Strategies, T1018 Identify In-Process Accounting Requirements for COMSEC, K1111 / K1274 (mentor-level guidance on design & threat modeling), T1327 Update Security Documentation (executive refinement)

SEC560: Enterprise Penetration Testing

UPDATED
Intermediate
SEC560Offensive Operations
SEC560: Enterprise Penetration Testing
  • GIAC Penetration Tester (GPEN)
  • 6 Days (Instructor-Led)
  • 36 CPEs / 36 Hours (Self-Paced)
  • Labs: 30 Hands-On Labs

View course detailsRegister