SAP HANA Security Delivery Lead with SOC 2, NIST, FedRAMP (INDEPENDENT CANDIDATES ONLY)

MUST BE AUTHORIZED TO WORK FOR ANY EMPLOYER IN USA.

ONLY OPEN FOR INDEPENDENT CANDIDATES THAT CAN WORK ON W2/1099/C2C (SELF INCORP)

NO THIRD PARTY CANDIDATES OR C2C CANDIDATES FROM STAFFING AGENCIES/RECRUITERS/EMPLOYERS

Database Administrator T3 -SAP HANA Security Delivery Lead

Remote

12 Months, possible convert to hire after 1 year

Description

Required Qualifications

• Strong understanding of security and compliance frameworks such as SOC 2, NIST, and FedRAMP.
• Hands-on experience with SAP GRC, Fiori authorization concepts, and SAP HANA database security.
• Experience managing vulnerability and configuration management, preferably within a regulated environment.
• Proficiency using ServiceNow.
• Prior experience managing or supporting SAP or other ERP platforms in cloud environments.
• Strong analytical skills with the ability to translate technical findings into clear, actionable guidance for leadership and other stakeholders.

Preferred Skills

• Familiarity with cloud security controls and architectures (IaaS, PaaS, SaaS).
• Experience supporting CMMC compliance initiatives.

Key Responsibilities

Governance, Risk & Compliance

• Participate in internal and external audits, including evidence collection, control testing, and remediation tracking.
• Participate in SAP internal and external audit discussions, addressing governance and compliance findings.
• Support the ongoing maturity of compliance programs, including SOC 2 and CMMC, aligned with evolving regulatory requirements.
• Apply working knowledge of NIST and SAP IT General Controls (ITGC) to security and operations solutions.

Security Operations & Vulnerability Management

• Collaborate with cross-functional operations teams to drive timely remediation of vulnerabilities and misconfigurations, with strong risk-based prioritization.
• Assist with security assessments and vulnerability remediation efforts across the different towers.
• Analyze SAP patches and SAP Notes to support customer implementations and security posture.

Patch & Configuration Management

• Plan and coordinate the installation of security patches, upgrades, and new products.
• Develop patch mitigation strategies and coordinate with Customer Delivery Managers and Service Delivery leads to ensure remediation is completed within agreed timelines.
• Review & provide expertise on applying SAP security patches, hotfixes, and updates.
• Assess operational risk and advise leadership when deferring a patch is in the best interest of system reliability, ensuring documented mitigation strategies are in place.