SAP HANA Security Architect

We are seeking a specialized SAP Security Consultant to lead the implementation of profit centre/division level data restrictions within our SAP HANA environment. The primary focus of this role is to design, build, and deploy HANA Analytical Privileges and synchronize them with SAP BW architecture to ensure secure, granular data access across the organization.

Key Responsibilities

•       Design & Architecture: Conduct a comprehensive impact assessment of current data access models. Design new Analytical Privileges and security roles that align with divisional data segregation requirements.

•       Development: Build and configure HANA Analytical Privileges (SQL-based or Classical) and update relevant BW views to incorporate these security filters.

•       Role Management: Create and modify technical roles to include new privileges; manage the lifecycle of legacy roles, ensuring a clean transition and retirement of obsolete access.

•       Testing & QA: Perform rigorous unit testing on both privileges and roles. Set up test personas to validate that data masking and row-level restrictions function as intended.

•       Deployment & Support: Lead the migration of security artifacts to Production. Provide hypercare support and troubleshoot access issues during the User Acceptance Testing (UAT) and post-go-live issues.

Technical Qualification:

•       HANA Security Expert: Proven experience creating and managing HANA Analytical Privileges and HANA Repository/Catalog roles.

•       SAP BW Integration: Strong understanding of how HANA security interacts with SAP BW on HANA or BW/4HANA (e.g., Composite Providers, Open ODS views).

•       GRC Knowledge: Familiarity with SAP GRC (Access Control) for role provisioning and risk analysis is highly preferred.