Job Description:

What are we looking for?

8+ years of technical experience in the areas of SAP application security, vulnerability scanning, patch management, code security, and security incident response

In-depth knowledge of core SAP application security concepts – role-based access control, IT controls, sensitive access and segregation of duties

Hands-on experience working with SAP cybersecurity, vulnerability management, and code scanning tools (e.g., SAP Enterprise Threat Detection, Onapsis, SecurityBridge).

Strong communication skills and ability to prepare and present findings and recommendations, both written and verbally

Experience with SIEM tools and ServiceNow Vulnerability Response module is a plus

Experience with data protection tools (e.g., SAP UI Masking) is a plus

What will the role's key responsibilities be?

Work with our security implementation partner to configure and implement Onapsis

Run vulnerability scans, evaluate results, review / validate results, and prepare and review findings and recommendations with stakeholders (e.g., Basis / Platform Team, Developers).

Work with InfoSec / SOC teams to enhance SAP application security monitoring through integration with Mars SIEM tools

Work closely with SAP Security Operations Team Lead to identify process improvement opportunities and drive consistency between Digital Core (transformation) and steady state vulnerability management processes

Research and stay current with latest SAP vulnerabilities

Conduct proofs of concept for additional Onapsis functionality

Lead knowledge transfer sessions to managed service / operations team