SAP Software Solutions is hiring a Security Specialist to join our Business Applications and Technology group. This role is a founding member position within the Security & Compliance unit of the Sovereign Cloud Technology & Deliver team. You will help build a comprehensive security and compliance program for Sovereign Cloud, defining processes, conducting assessments, and managing remediation efforts.
What You'll Do
- Become a founding member of the Technology and Engineering team.
- Help build a security and compliance program for Sovereign Cloud from the ground up.
- Define processes and requirements, conduct assessments, and manage remediation.
- Manage a set of compliance requirements.
- Focus your work on either risk management or engineering.
- Risk Management Focus: Assist with articulating and escalating risks, manage the risk register, draft risk responses, and mentor team members on risk topics.
- Engineering Focus: Act as the subject matter expert for technical domains, analyze regional requirements, translate between technical and non-technical personnel, and mentor team members on engineering topics.
What We're Looking For
- Thorough understanding of security-related topics.
- Strong technology skills and willingness to learn new topics quickly.
- Strong analytical research and problem-solving skills.
- Ability to take large quantities of information and identify key themes.
- Ability to clearly and succinctly describe processes.
- Ability to manage through ambiguities while being innovative and collaborative.
- Strong communication skills and cultural awareness.
- Ability to communicate complex technical requirements to a variety of stakeholders.
- Strong commitment to high-quality work.
- Willingness to work flexible hours to accommodate time differences.
- Willingness to travel (less than 10%).
- Fluent in English.
- 4+ years of related professional experience, such as IT audit, risk management, or DevOps.
- Specialization in either risk management or engineering.
- Risk management focus: requires experience with quantitative risk management.
- Engineering focus: requires hands-on Security DevOps experience in a cloud environment.
Nice to Have
- Fluent in other languages (second language preferred).
- Experienced in the use of at least two cybersecurity frameworks such as UK Cyber Essentials, BSI IT Grundschutz, SecNumCloud, ISO 27001, or NIST 800-53.
Team & Environment
This role is part of the Security & Compliance unit within the Sovereign Cloud Technology & Deliver team, which is part of the SAP Government Security & Secrecy board area.
Work Mode
This position follows a hybrid work model.
SAP is committed to the values of Equal Employment Opportunity and provides accessibility accommodations. Qualified applicants will receive consideration without regard to age, race, religion, national origin, ethnicity, gender, sexual orientation, gender identity or expression, protected veteran status, or disability.
