SAP Product Security Sr Specialist 

Spain, Catalonia 

932413455

Original Posting Date: 06/30/25

Job Title:

Location:

Work Model:Hybrid work model

Purpose and Objective:

Concur Technologies, Inc. seeks ato ensure consistent security of the product(s)/application(s)/service(s) you are assigned to (including both on premise and cloud computingIaaS, SaaS, PaaS, etc.).

Expectations and Tasks:

Responsible for various technical and administrative activities depending on where in the secure product(s)/application(s)/service(s) lifecycle you support (e.g. planning the security measures during the initial phase, security review and testing during the development phase, or maintaining, monitoring, and incident response support during the utilization phase, etc.). Lead security operationspertaining toyour realm of responsibilities,such as plans, process workflows, and playbooks. Develop andprocesses, guidelines, and frameworks that enable developers to build secure codes efficiently and integrate security into the continuous integration / continuous delivery and deployment pipeline. Enhance tools and processes by developing advanced/automated security checkpoints &solutions, andimplementing new tools and techniques.leadership in developing and tracking program metrics. Contribute to extending and improving the security knowledge base in the organization. Proactively research latest trends and emerging technologies in security anddevelopment, andday to day

Education and OccupationalExperience:

Bachelor’s degree or foreign equivalent in Computer Science, Cybersecurity, Software Engineering, Riskor a related field of study and six (6) years of progressive post-baccalaureate experience in the job offered or related occupation. Employer will accepta 3 or 4 yearsdegree. Alternatively, adegree or foreign equivalent in Computer Science, Cybersecurity, Software Engineering, Riskor a related field of study and four (4) years of experience in the job offered or related occupation.

Qualifications/Skills and Competencies Experience:

Experience must involve four (4) years in the following:

• Assessment and management of vulnerabilities, SAST/DAST scans, penetration testing, Security Response, OWASP, and CVSS;

• Strategic threat modelingmethodology: STRIDE;

• Secure Software Development Lifecycle;

• Product Security in Coding and Architecture: SAST and OWASP;

• Cross-Product Security: OWASP, NIST, CERT.cc, FIRST;

• Cloud Security: SAP Cloud Platform, AWS Security, OWASP, Zero Trust Framework, and NIST; and

• Architecture Modeling and Documentation, Best Practice and Architecture Pattern: SAST and OWASP.

This position is eligible for the Employee Referral Program subject to the eligibility criteria outlined in the

Internal use only: reference code lhrs4262

SAP:SAIL

EX:OUT