SAP Info Security Compliance Sr Specialist 

India, Karnataka, Bengaluru 

193394556

What you'll do:

This position coordinates within SAP and with others to support all aspects of enhancing the Customer Security Audit/Assessment process, including but not limited to the implementation, maintenance, and coordination of customer security audits, as well as tracking and reporting of audit issues, to appropriate levels of management. The candidate will also provide the operational support for the program through monitoring and analysis, and assessment activities in accordance with control objectives and activities according to the customer security audits outcomes. This strong team player is expected to have a high level of attention to details, a confirmed interest in compliance & security, as well a process-oriented and fostering the global mindset.
Position Responsibilities:

• Lead audit fieldwork with external customer auditors using appropriate auditing methods while leveraging existing documentation (ie Standard, procedures, Walkthrough decks, etc.) evidence and/or obtain new documentation to meet customer demands.
• Contribute to customer security audit in collaboration with SAP's various lines of business.
• Clearly communicate project status and results with senior management, project team, and stakeholders.

What you bring:

• Bachelor's degree or equivalent practical experience.
• 10+ years of experience in program or project management, specific to Risk, Compliance, and Security.
• 5 years of experience in a leading audits
• Relevant professional certifications including CISSP, CISA, CIPP, GIAC, or related information security certifications.
• Experience in information security and compliance, IT audit, consulting, and risk management.
• Experience with ISO 27k family, SOC reports, PCI DSS, FedRAMP, or equivalent information security and privacy compliance certifications.
• Experience translating compliance requirements into operational and technical control objectives.
• Deep knowledge and understanding about cloud security compliance and infrastructure.