[Hiring] Cybersecurity Consultant - Critical Enterprise Platforms (SAP Focus) @iSanqa

Role Description

Our client is seeking a highly experienced Cybersecurity Consultant to support enterprise clients across critical business platforms and complex enterprise environments. This is not a traditional SAP Security, GRC, authorisation administration, or general infrastructure security role. The successful candidate will operate in a senior advisory capacity focused on:

• Vulnerability analysis
• Security hardening
• Defensive strategy
• Threat intelligence
• Risk mitigation across business-critical enterprise platforms — including SAP environments

This role requires a strong cybersecurity foundation combined with deep technical understanding of complex enterprise application environments and platform-level security. Candidates must understand how enterprise platforms are architected, integrated, exposed, monitored, and defended across:

• Application
• Network
• Operating system
• Database
• Identity
• Integration layers

Strong technical exposure to enterprise SAP environments is essential.

Qualifications

• 10+ years of experience across enterprise IT and cybersecurity environments
• Proven experience in vulnerability management, threat analysis, security hardening, or defensive security advisory
• Strong technical understanding of critical enterprise platforms and integrated enterprise environments
• Significant exposure to enterprise SAP landscapes including:
  • ECC
  • S/4HANA
  • BW
  • Fiori
  • SAP NetWeaver
• 3+ years specifically focused on security hardening, vulnerability analysis, defensive security controls, or enterprise platform security advisory
• Proven experience researching platform vulnerabilities, SAP Security Notes, CVEs, vendor advisories, or enterprise application exposures and translating findings into customer-facing guidance
• Demonstrated ability to recommend compensating controls where standard remediation cannot immediately be applied
• Ability to assess vulnerability exposure and recommend defensive strategies using independent technical reasoning beyond standard vendor remediation guidance
• Experience producing customer-facing written deliverables including:
  • Security bulletins
  • Hardening guides
  • Vulnerability assessments
  • Remediation reports
• Ability to assess and advise across enterprise attack surfaces including:
  • Application layer
  • Network layer
  • Operating systems
  • Databases
  • Identity & access
  • Monitoring and integration layers
• Experience conducting technical security assessments and producing actionable remediation guidance
• Strong client-facing advisory and technical writing capability
• Ability to communicate effectively with both technical and business stakeholders

Requirements

• Strongly Preferred Background:
  • Enterprise platform security advisory
  • SAP Basis → Cybersecurity
  • SAP Technical Architecture → Security Engineering
  • SAP Infrastructure Engineering → Threat/Vulnerability Management
  • Platform hardening and defensive engineering
  • Threat intelligence or vulnerability research
  • Experience supporting or advising within third-party enterprise support environments
• Preferred Technical Exposure:
  • Enterprise application security
  • SAP Gateway Security
  • RFC Security & Trusted Connections
  • ICM / Web Dispatcher Security
  • Fiori Security
  • SAProuter
  • SAP HANA Security
  • OS and Database Hardening
  • Network Segmentation & Virtual Patching
  • Identity & Access Management (IAM)
  • Security Monitoring & Threat Detection
• Preferred Certifications:
  • CISSP
  • CISM
  • GIAC Certifications (GSEC, GPEN, GSNA, GEVA, etc.)
  • SAP-related certifications
  • SAP Certified Associate – Security Administrator
  • Additional cybersecurity certifications

Benefits

• Contract (12 Months – Potential Renewal) / Permanent Considered
• Location: South Africa (Remote / Hybrid)

Key Attributes

• Strong analytical and investigative mindset
• Deep technical curiosity and research capability
• Ability to operate in high-pressure advisory environments
• Excellent technical writing and reporting skills
• Strong stakeholder engagement and communication ability
• High attention to detail and governance