What you’ll do
As a Product Security and Compliance (senior) Engineer (f/m/d) you will contribute to:
- Assess new or changed regulatory requirements to identify technical gaps and consult development teams to close gaps, allowing to run our services compliant and enter new markets
- Own and improve current and newly introduced compliance controls, with a focus on optimization, harmonization, and automation
- Present controls in internal and external audits
- Assist in the development and maintenance of SIEM capabilities
- Contribute to the security incidence response process
The BTP HANA & Persistency organization is a global organization dedicated to delivering data management solutions that address customers’ unique and competitive business requirements.
You will work in a multi-national team responsible for security-relevant services, as well as the overall security and compliance posture of the BTP HANA & Persistency portfolio.
What you bring
- Bachelor's or Master's Degree in computer science, informatics, business informatics, or related areas.
- Several years of professional work experience in a development or security & compliance role
- Understanding of regulatory compliance in cloud native environments
- Understanding of (Gardener-managed) Kubernetes, AWS, Azure, GCP, Converged Cloud
- Familiarity with industry standards (e.g. GDPR, ISO 9001/27001/22301, SOC 2) or the SAP QMS, ISMS, Product Standards, SDOL and Control Framework
- Experience with security incident response and SIEM tools
- Experience with automation tools or scripting language like Python is a plus
- Very good language skills in English
- “Drive for automation” mindset
- We are looking for a team player with strong soft skills
- Preferable, you own a certification like CISSP, CISA, CISM
What we offer
- Deep understanding of modern certification bodies like ISO27001, SOC, C5 and their impacts on technical design and implementation of cloud native solutions
- Driving closer integration of services and processes to increase efficiency
- Driving cross projects and influencing architectural decisions in a dynamic and collaborative environment
Job Segment:ERP, Compliance, Cloud, Informatics, Computer Science, Technology, Legal