SAP Sovereign Cloud Product Security Expert f/m/d 

Germany, Baden-Württemberg 

455888363

WHAT YOU'LL DO

In this role you will analyze security requirements, translate requirements into security design, and execute their implementation. You will implement/review the technical security measures necessary to support policies and prove compliance. You will implement and maintain security solutions to protect data in adherence to the data protection and privacy strategy.

You will conduct security assessments of SAP products as part of their adoption into the Sovereign Cloud portfolio. You will work closely together with the SAP product teams as well as Sovereign Cloud engineering to communicate assessment results with the relevant stakeholders and follow-up on remediation activities with the overall goal of pushing security requirements left.

You will develop, implement, integrate, and operate tools to support detection, prevention, analysis, and resolution of security threats

You will inspire innovation and drive execution of disciplined and standardized security processes and tools addressing mission-critical capability gaps and opportunities for maximized efficiency. You will help identify trade-offs in security deployment plans and any key day-to-day operational decisions impacting infrastructure investments significantly.

You need to ensure the team’s knowledge base is kept consistently up-to-date with native hyperscaler capabilities and modern infrastructure management tools. Starting from this status quo, you will design security concepts for our infrastructure management on the global scale.

WHAT YOU'LL BRING

· Bachelor’s or Master's degree in Computer Science, Information Technology or Engineering or other relevant disciplines

· Ability to manage through ambiguities while being innovative and collaborative

· Ability to take a technical approach to design specifications of our large-scale network

· Strong analytical research and technology skills and the willingness to learn new topics quickly

· Ability to think strategically, delivering services to meet stakeholders’ demands on a timely basis

· Ability to mix Open Source and Commercial technologies to achieve objectives

· Willingness to contribute to Open Source security projects and the greater security community

· Provision and support new and existing security cloud services through Terraform

· Proven ability to produce documentation for processes and procedures

· Proven ability to work and lead in cross-architecture teams

· Capability to influence without formal authority

· Strong communication and interpersonal skills

· Strong cultural awareness and intercultural competencies

· Ability to build trusted relationships with key stakeholders

· Proven ability to deliver against challenging timelines

· Persistence, self-motivation and willingness to work under pressure

· English and German (fluent)

WORK EXPERIENCE

· Very good understanding of infrastructure and security related topics

· 10 years of software development experience in all phases of SDLC, including 5 years of experience leading a geographically dispersed engineering or program management function in the data center, networking, or telecommunications industries

· Experience deploying technical infrastructure at a global scale

· Balanced expertise in both full stack application development and infrastructure development

· Thorough understanding of infrastructure firewalls, load balancers, storage, monitoring, security, IAM etc. and have experience with orchestration to develop a cloud solution

· Minimum 5 years of hands-on experience with infrastructure, application or database migration

· Strong experience in operating systems administration and security engineering

· Working knowledge of Ansible, Terraform, CI/CD tools, and GIT is required

· Working knowledge of Log Correlation, Vulnerability Management, Web Application Testing concepts is a plus

· Familiarity with managing and securing Kubernetes environments

· Exposure to either NIST, ISO, or other compliance frameworks

· Experience with securing products on AWS, Azure, and/or GCP is a plus

· Experience with sovereign cloud or Gaia-X concepts is a plus

Job Segment:Cloud, Testing, ERP, Open Source, Computer Science, Technology