דרושים Cloud Engineer/developer Common Service Infrastructure Observability ב-Sap ב-Czechia, Prague

The Role:

As a Cloud Network Security Engineer with deep focus on Web Application Firewall (WAF) rule tuning, DDoS mitigation, and cloud-native policy-as-code, you will play a critical role in designing, implementing, and maintaining robust cloud perimeter and workload protection strategies. You will own the continuous improvement of WAF rule sets, Network Security Groups (NSGs), security policies, DDoS detection and mitigation strategies, and threat detection logic—all delivered and maintained as code.

Key Responsibilities

Cloud WAF Design & Tuning

• Define and implement WAF strategies using native services (e.g., AWS WAF, Azure WAF, Google Cloud Armor).
• Conduct detailed analysis and tuning of WAF rules to reduce false positives while maintaining strong protections against OWASP Top 10 threats and custom application vulnerabilities.
• Collaborate with application security and DevSecOps teams to align WAF configurations with business logic and risk profiles.

DDoS Detection, Mitigation & Validation

• Develop and continuously improve DDoS prevention and mitigation strategies across cloud platforms and network layers (L3, L4, L7).
• Monitor DDoS metrics and anomalies, validate mitigation effectiveness, and fine-tune thresholds and countermeasures to balance security and legitimate traffic.
• Collaborate with SOC and threat intelligence teams to investigate and respond to DDoS incidents, perform post-attack analysis, and produce mitigation reports.

Security Policy-as-Code

• Implement and manage cloud network and security controls as code using tools such as Terraform, AWS CDK, Azure Bicep, or Pulumi.
• Maintain and audit security group, firewall, routing, and DDoS protection policies across AWS, Azure, and GCP for consistency and compliance.
• Automate the deployment, validation, and rollback of security policies within CI/CD pipelines.

Monitoring, Visibility & Threat Detection

• Work closely with security operations and observability teams to ensure that WAF and DDoS logs, alerts, and security policy changes are captured, structured, and integrated into SIEM platforms (e.g., Splunk, ELK).
• Analyze WAF/network logs and DDoS telemetry to identify patterns of abuse, misconfiguration, or performance degradation.

Security Governance & Compliance

• Define standards and templates for cloud firewall, WAF, and DDoS configurations to meet internal security baselines and external compliance requirements (e.g., ISO 27001, SOC 2, GDPR).
• Participate in security reviews, audits, and risk assessments related to cloud networking, application ingress security, and DDoS defenses.

Collaboration & Support

• Partner with application owners, cloud engineers, and DevOps teams to provide secure-by-default network access and DDoS-resilient designs.
• Provide L2/L3 support for escalated security incidents, change requests, or false positives related to WAF and DDoS protections.

What You Bring

• Bachelor's degree in Computer Science, Cybersecurity, or related field.
• 5+ years of experience in cloud security engineering or network security roles.
• Expert-level hands-on experience with cloud-native WAF solutions: AWS WAF, Azure WAF, Google Cloud Armor.
• Deep understanding of WAF rule tuning, threat signatures, regex patterns, anomaly detection, and DDoS attack vectors and mitigation techniques.
• Proficient in network security configurations including NSGs, firewalls, VPC/Subnet security, and zero-trust principles.
• Experience with Infrastructure-as-Code and Policy-as-Code using Terraform, AWS CDK, Bicep, or equivalent.
• Solid scripting skills (Python, Bash, etc.) for automation, custom tooling, and DDoS mitigation orchestration.
• Familiarity with DevSecOps practices and integrating security controls into CI/CD pipelines.
• Experience with multi-cloud environments (AWS, Azure, GCP) and hybrid networks.

Bonus Points

• Cloud certifications (e.g., AWS Security Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer).
• Experience with security frameworks like MITRE ATT&CK, CIS Benchmarks, and NIST 800-53.
• Knowledge of API security testing and DDoS mitigation strategies.
• Experience working with SIEM platforms and log analytics for WAF incident detection.
• Contributions to open-source security tools or WAF rule sets.

Why Join Us

• Be a part of a world-class cloud security engineering team shaping the security of critical infrastructure.
• Solve complex problems in a high-scale, multi-cloud enterprise environment.
• Drive meaningful impact on the resilience and trustworthiness of business-critical applications

​

We win with inclusion

Successful candidates might be required to undergo a background verification with an external vendor.

Job Segment:Cloud, Network Security, Testing, ERP, Open Source, Technology, Security

What you’ll do

• Work with the team to create innovative features and implement defined functionality for the new SAP AI Powered enterprise mobile solutions – combined with Joule and Business AI across different platforms
• Innovate AI Powered development capabilities, e.g. Agentic app creation and continuous enhancements, for mobile application development
• Develop features for powerful enterprise-grade native mobile app with SAP Fiori, the new user experience (UX) for SAP software that applies modern design principles, and SAP Joule AI capabilities.
• Enhance SAP mobile development technology and products to meet customer high demands
• Develop and execute unit tests and functional tests, preferably with tools
• Address customers, partners and stakeholders’ issues and help customers’ adoptions
• Collaborate with development team members on best practices, code reviews, internal tools and process improvements
• Be an active member of Empowered Product Team (EPT), learn and exercise best practice of harmonized product operation model.
• Experiment new ideas and create prototypes for innovation

What you bring

• Bachelor's degree in Computer Science, or a related technical field.
• 0–3 years of experience in software development, preferably in mobile technology, mobile applications and cloud app development.
• Proficiency in JavaScript, TypeScript, Kotlin/Java and Swift programming. Python skills are at advantage
• Knowledge and preferably some experience in using AI development tools, e.g., GitHub Copilot, Cursor.
• Understanding of SAP Fiori apps and mobile products, e.g., SAP Business Technology Platform, Mobile Services and Mobile Development Kit
• Experience in working in Agile and Scrum team, practice with CI/CD model
• Experience in unit testing tools and/or automation testing would be at advantages
• Understanding of Agentic AI and SAP Joule AI
• Fast learner and strong problem-solving skills
• Excellent written and verbal communication skills in English

Successful candidates might be required to undergo a background verification with an external vendor.

AI Usage in the Recruitment Process

For information on the responsible use of AI in our recruitment process, please refer to our

Please note that any violation of these guidelines may result in disqualification from the hiring process.

Three reasons to intern at SAP

1. Culture of collaboration: meet with mentors, make new friends across the globe and create a thriving personal network.
2. Project-drivenexperience: gain cross-functional skills from our virtual and in-person learning sessions, diverse subject matter experts, and project deliverables.
3. Gain visibility: with SAP Internship Experience Program in your title, you’ll have a global network of SAP leaders, entrepreneurs and career development opportunities at your fingertips

Organizationally located within Global Controlling, the Cloud Revenue Center of Expertise (CoE) acts as trusted business partner for SAP’s Finance, Portfolio and Cloud Business organizations across the globe. The team engages in orchestrating SAP’s strive for operational excellence, hence a high-quality standard to support educated decision-making is essential to succeed.Our Portfolio comprises of:

• Cloud Topline
• Cloud Revenue
• Current Cloud Backlog

The major objective of the Cloud Revenue CoE is to support finance and business stakeholders in Financial Planning & Analytics (FP&A) activities across SAP’s complete Cloud portfolio, by establishing process governance, providing tool landscapes and driving budget and forecast processes for Cloud Revenue. Additionally, the is involved in operational tasks around reporting and Quarter End activities.

What you’ll do

Expected start date: Oktober 2025

In this role, you’l

• Understand key metrics of SAP’s Cloud business, strategy and operations; it’s services, solutions and organization
• Support Team during Forecast, Budget and Quarter End processes
• Support Team in creating standard reporting for Cloud Revenue and Current Cloud Backlog
• Be Fully Involved in the Process leading to the External Disclosure of our key Cloud KPIs
• Master data maintenance
• Ad-hoc task

Who you are:

You are a student (f/m/d) at a university or a university of applied sciences. We’re looking for someone who takes initiative, perseveres, and stays curious. You like to work on meaningful innovative projects and are energized by lifelong learning.

Student at a university or a university of applied sciences
• Preferred field of study: Business Administration
• Computer skills: Microsoft Office especially Excel
• Language skills: fluent in English
• Soft skills: Proactive thinking and reliability

Visit our for more information on the program.

Your set of application documents should contain a cover letter, a resume in table form, school leaving certificates, certificate of enrollment, current university transcript of records, copies of any academic degrees already earned, and if available, references from former employers (including internships). Please also describe your experience and skills in foreign languages and computer programs / programming languages.

AI Usage in the Recruitment Process

For information on the responsible use of AI in our recruitment process, please refer to our

Please note that any violation of these guidelines may result in disqualification from the hiring process.

WHAT YOU'LL DO

• The Cloud Native Automation Engineer will design, implement, and manage automated solutions in cloud-native environments, focusing on infrastructure as code (IaC), CI/CD pipelines, and application stability through self-healing mechanisms.
• The role involves integrating advanced network security protocols, such as firewalls, VPNs, and zero-trust architecture, to secure cloud and hybrid environments.
• The recruit will manage and optimize SAP Business Technology Platform (BTP) deployments, automating application updates, security patches, and resource provisioning to ensure high performance and availability of SAP workloads.
• Collaboration with cross-functional teams, including DevOps, IT, and SAP specialists, is essential for delivering scalable and secure solutions.
• Additionally, the engineer will document processes, scripts, and infrastructure designs to enable knowledge sharing and training.
• This position demands expertise in cloud-native technologies, automation tools, network security protocols, and SAP BTP, combined with strong problem-solving, communication, and collaboration skills.

WHAT YOU BRING

• Regular full time Graduation or Post Graduation
• 15+ years of professional software development experience, including full-stack and cloud-native development.
• Expertise in cloud-native technologies (AWS, Azure, GCP, Kubernetes, Docker).
• Proficiency in automation tools such as Terraform, Ansible, and Jenkins.
• Hands-on experience with SAP Business Technology Platform (BTP), including CAP or SAP HANA Cloud.
• Strong programming skills in Python, Java, or Go.
• Proven experience with network security protocols (SSL/TLS, VPNs, firewalls).
• In addition to technical expertise, candidates should possess strong problem-solving skills, effective communication, and the ability to collaborate in dynamic environments. Certifications in cloud platforms or SAP BTP are preferred.

​

What you'll do

Internal Communication Management:

• Manage events in collaboration with the administrative team and promote them

• Format monthly newsletter

• Write information emails

• Propose and design communication media/tools

External Communication Management:

• Contribute to the definition of the company's digital communication strategy (editorial content and schedule)

• Help promote the company’s activities, projects, and moments of life

• Ensuring constant social media intelligence in key areas of the business

• Analyze business activity and performance across business networks

• Managing institutional and media relations (press releases, emailings and on-site meetings, preparation of interviews and conferences)

• Develop creative and innovative assets to increase visibility

Administrative Management:

• Assist the administrative team in recurrent tasks (schedule, orders, invoicing, logistics, etc.).

What you bring

• You are a student in: Marketing, Master Grande École, or Master 1 or 2 in Communication/Marketing.

• You are proficient in office software (including Excel) and DTP (Desktop Publishing) tools.

• You are curious, flexible and agile. You can handle pressure and show initiative. You have an interest in the Tech world and possess an excellent level of English (B2 at least) and an excellent level of French (at least B2/C1).

• Work-study rhythm of apprenticeship: presence every week (Mougins).

Apprenticeship Contract

Duration: 1 year (or more)

Start Date: August 2025; End date: September 2026

This type of contract is subject to remuneration in alignment with the applicable collective agreement (SYNTEC Convention).

​

Job Segment:Marketing Communications, Cloud, ERP, PR, Apprentice, Marketing, Technology, Entry Level

What you'll do

In your role as IT Project Expert, you will be responsible for supporting the ECS customer for SAP innovative products. You will assess and solve issues in new or existing customers, and work with high attention to detail, reliability, and efficiency. You will collaborate closely with your team members to ensure success. In your day-to-day you will

• Over See all aspects of projects. Set deadlines, assign responsibilities, and monitor and summarize progress of project. Prepare reports for Higher management regarding status of project.

• Ability to work under pressure and constantly add value to customers and within the organization.

• Collaborate with different teams from within the ECS organization and outside to ensure excellent customer satisfaction; this includes interfacing with PMO, Partner Management team and Customer facing units etc.

• Support Partner Onboarding activities to handle E2E Build activities.

• Has experience on handling project related to the IT - Operations.

• Knowledge on the ITIL process.

• Experience in Leading and monitoring of complex activities and convert into the procedures.

• Driving the Transition projects and Quality improvement initiatives.

• Coordination with international teams in global projects.

• Preparation of project charter for the global projects.

• Coordination and completion of projects on time within budget and within scope.

What you bring

Are you analytical, self-motivated, and enjoy problem solving? Are you skilled in time management and task prioritization? Do you enjoy continuous learning and working efficiently in a fast-paced environment? If this sounds like you, do you also bring:

• Minimum 10+ years of experience in Project Management role.

• 5+ years of experience in SAP Basis, managing/running landscape provisioning, installation, migration, and release upgrades.

• Willingness to work on APJ/EMEA time zones.

• Bachelor’s or higher degree in Engineering (Computer Science, Information Technology, Electronics, Electrical or equivalent)

• Excellent inter-personal communication skills to liaise with multiple stakeholders within SAP.

• Good understanding of SAP Next Generation solutions and services (S4HANA Cloud, Analytics, SCP, Cloud, Mobility, HANA, Sybase).

• Hyperscalers basic knowledge (Azure, AWS or GCP).

• Project Management Certification is good to have.

• Excellent command of de-escalating critical situations.

• Experience in working with cross-cultural teams or individuals.

​

If you’re ready to code, configure, or cloudify everything from silicon to software, we’ve got a spot for you.

What you´ll do:

• Design and implement cloud-native backend APIs running in Kubernetes
• Create Kubernetes APIs and operators to automate the lifecycle management of cloud infrastructure
• Collaborate with and contribute to cloud-native open-source projects
• Instrument and Monitor applications within Kubernetes clusters using tools like Prometheus.
• Collaborate with DevOps teams to optimize and automate CI/CD workflows for containerized environments.

We are seeking an innovative, communicative, and self-driven individual with technical competence. Your expertise in cloud techniques, including Infrastructure-as-a-Service, containers, networking, orchestration, and automation, is highly valued.

• Degree in Applied Sciences. Preferred field of study: Computer Science or related field.
• Experience working with cloud platforms such as AWS, Azure, Google Cloud or OpenStack.
• Track record of software development preferably with Golang or Python
• Ability to approach complex problems systematically along with a sense of ownership and drive.
• Preferably experience working with Kubernetes and related cloud native technologies.
• Experience with agile practices and CI/CD driven development
• Knowledge of Linux, open source hypervisors, network equipment or storage systems would be an advantage.

Join PlusOne Central Engineering and work on SAP Converged Cloud. Using the latest cloud-native technologies we are building an Infrastructure as a Service (IaaS) platform that is deployed globally across 15 regions.

​