As a product security and compliance (senior) engineer (f/m/d) you will contribute to:
- Design, develop, improve, and operate scalable microservices that serve critical security functions for SAP HANA Cloud, enabling our customers a trusted and secure environment
- Collaborate closely with cross-functional and internal development teams
- Assess new or changed regulatory requirements to identify technical gaps and consult development teams to close gaps, allowing to run our services compliant and enter new markets
- Own and improve current and newly introduced compliance controls, with a focus on optimization, harmonization, and test automation to fulfill internal and external compliance requirements; present them in audits
- Assist in the development and maintenance of SIEM capabilities
- Contribute to the security incidence response process
- Assess potential of emerging security technologies for SAP HANA Cloud and consult on their introduction
What you bring
- Bachelor’s / master’s degree in computer science, or related field
- Proven experience in developing and operating microservices in cloud native environments, or in a security & compliance role
- Understanding of security or regulatory compliance requirements in cloud native environments
- Experience with (Gardener-managed) Kubernetes, AWS, Azure, GCP, Converged Cloud
- Experience with CI/CD pipelines and DevOps practices
- Experience with infrastructure-as-code tools
- Familiarity with industry standards (e.g. GDPR, ISO 9001/27001/22301, SOC 2) or the SAP QMS, ISMS, Product Standards, SDOL and Control Framework
- Very good language skills in English
- We are looking for a team player with strong soft skills, a proactive attitude, and with a drive for automation mindset
- Preferable, you own a certification like CISSP, CISA, CISM
What we offer
- Expertise to develop and operate security critical microservices at large scale
- Deeper understanding of modern certification bodies (e.g. ISO27001, SOC 2) and their impacts on technical design and implementation of cloud native solutions
- Driving closer integration of services and processes to increase efficiency
- Driving cross projects and influencing architectural decisions in a dynamic and collaborative environment
The BTP HANA & Persistency organization is a global organization dedicated to delivering data management solutions that address customers’ unique and competitive business requirements.
You will work in a multi-national team responsible for security-relevant services, as well as the overall security and compliance posture of the BTP HANA & Persistency portfolio.
Job Segment:ERP, Compliance, Testing, Database, Cloud, Technology, Legal