Overview
At SAP, we keep it simple: you bring your best to us, and we’ll bring out the best in you. SAP is a global technology company with a focus on enterprise resource planning and cloud solutions. You’ll find a place where you can be yourself, prioritize your well‑being, and truly belong.
What You’ll Build
As an IT Security Officer of the ECS Partner Management – Partner Center of Expertise (PCoE) team, you will ensure the organizational orchestration of partners’ delivery procedures into the SAP ECS standard operations and serve as the interface between SAP’s Customer Engagement team and Technical Project Managers.
Managing IT security and compliance topics of partner‑delivered engagements ensuring partners understand SAP ECS security expectations and shared responsibility models.
Solving real‑world security incidents and compliance issues on service delivery while having a firm understanding of the contractual obligations, legal aspects, process & operational know‑how with responsibility for security incident response (IR), root cause analysis (RCA), post‑incident corrective actions, and crisis communication with partners and SAP stakeholders.
Performing a detailed review of vulnerability scanning, penetration test, hacker simulation, and audit reports, prioritizing and executing follow‑up actions based on assessing the risks associated with audit findings and recommendations covering reviews of security processes for premium suppliers.
Supporting partner security tool integration (e.g., FRUN monitoring, vulnerability and patch management tools, SIEM integration, etc.) as well as IAM, least privilege, privileged access controls, encryption, key management, and data protection mechanisms in cloud environments.
Managing the relations with partners and the customer‑facing teams at SAP while also providing security guidance, onboarding, enablement, and supporting partner security maturity improvements over time.
Responsibly devising innovative solutions after analyzing customer scenarios/requests with focus on secure cloud architecture, defense‑in‑depth strategies, and data protection requirements.
Managing documentation of ECS Partner delivery security process and governance spanning continuous updates based on incidents, audits, and regulatory changes.
Ensuring alignment with all relevant units (e.g., Customer, Partner, SAP Global Partner Delivery Director, ECS Partner Operations Management, ECS Partner Center of Expertise, Enterprise Cloud Success Manager, SAP Global Security, etc.) and facilitating coordination on regional security and compliance requirements.
Being the single point of contact for IT security, compliance related topics and service delivery, continuously aligning with the partner and customer, and acting as crisis coordinator and escalation owner.
Conducting the last line of defense for the ECS customer‑facing unit for partner‑delivered customer escalations for security and compliance topics, driving incident containment and recovery leadership.
Supporting continuous improvements for ECS partner delivery and operation processes based on critical customer feedback leveraging security incidents, audits, and partner maturity assessments.
Delivering onsite presence to the partner/customer site to ensure effective and successful project delivery.
Facilitating customers and partners on region‑based security laws, regulatory requirements, and data residency obligations.
What You Bring
Good understanding of the NIST Cybersecurity Framework and SAP Cloud Security Baselines.
Good understanding of SAP HANA and SAP Cloud technology, cloud security architecture, defense‑in‑depth, and shared responsibility models.
Good knowledge of Security Information and Event Management (SIEM) systems, incident monitoring, and alert handling.
Fair knowledge on SAP BASIS skills – SWL Tools, Migrations, Upgrade/Updates and technical understanding of cloud network security design, IAM concepts, least privilege, and secure network connectivity.
Experience securing and accrediting cloud / hyper‑scaler hosted systems and services, including encryption, key management, and data protection controls.
Total years of industry experience: 8 to 9 years.
Minimum of 2–3 customer‑facing experiences on incident management, crisis communication, and de‑escalations.
Team player, proactive networking attributes, results and execution focused, with strong stakeholder and partner management skills.
Fluent in English – Any other language is a plus.
Scripting skills and configuration know‑how for security tools (SIEM, IDS, scanning, etc.) is a plus.
Technical security certifications such as ISO 27001, CISSP, CAP, CISA, or similar is a plus.
Where You Belong
Within the Customer Services and Delivery board area, the mission of the Enterprise Cloud Services (ECS) organization is to run customers on cloud, simplify cloud consumption and ensure reliability with high customer satisfaction. The Partner Management organization ensures successful delivery for SAP Private Cloud partner‑delivered engagements and manages the entire lifecycle from partner strategy, partner relationship management to technical project management.
The Partner Management Organization Has The Following Priorities
Build and operate a world‑class, efficient and reliable organization to support our partner‑delivered customers’ journey toward their next‑generation business.
Help SAP customers realize the innovation power of SAP HANA and the SAP Cloud on a continuous basis.
Accelerate innovations on the SAP HANA platform (SAP Business Suite powered by SAP HANA, industries, and high‑value apps).
Ensure the provisioning of system landscapes, installation of applications, and performance of upgrades & upgrades by partners.
Provide project management and technology consulting for all partner‑delivered ECS Projects.
Act as the main interface to the customer project team to ensure effective communication.
Recruitment Process Information
AI Usage in the Recruitment Process: For information on responsible use of AI, refer to our Guidelines for Ethical Usage of AI in the Recruiting Process. Violations may lead to disqualification.
Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, gender (including pregnancy, childbirth, etc.), sexual orientation, gender identity or expression, protected veteran status or disability, in compliance with applicable federal, state, and local legal requirements.
Successful candidates might be required to undergo a background verification with an external vendor.
Requisition and Job Details
Requisition ID: 441864 | Work Area: Information Technology | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations:
#J-18808-Ljbffr