SAP Cybersecurity Expert

About The Position

Requirements

• Bachelor’s or Master’s degree in Information Security, Computer Science, Information Technology, or related field.
• Proven experience in SAP Security and Cybersecurity within enterprise environments.
• Strong knowledge of SAP authorization concepts, system security, and SAP landscape architecture.
• Experience supporting audits and compliance programs within regulated environments.
• Solid understanding of risk management, vulnerability management, and incident handling processes.
• Familiarity with cybersecurity standards and frameworks such as ISO 27001, NIST, GDPR, or HIPAA.
• Strong stakeholder management and cross-functional collaboration skills.

Nice To Haves

• Experience working within an SAP Center of Excellence or large global SAP environment.
• Knowledge of SAP Secure Operations, SAP CERT notes, and ABAP security analysis.
• Experience with SIEM integration and enterprise security monitoring.
• Relevant certifications such as CISSP, CISM, SAP Security certification, or equivalent.

Responsibilities

• SAP Security Governance & Architecture Define and maintain SAP security configurations, hardening standards, and protection concepts aligned with enterprise cybersecurity policies.
• Identify and implement continuous security improvements across SAP applications and services.
• Develop and maintain risk-based SAP security blueprints and technical security standards.
• Audit, Compliance & Regulatory Management Serve as the SAP CoE representative for system security audits and compliance activities.
• Coordinate internal and external audits, including collaboration with corporate audit teams and external partners.
• Manage remediation activities and ensure timely closure of audit findings.
• Ensure compliance with internal security requirements and applicable regulatory frameworks.
• Risk, Vulnerability & Threat Management Conduct threat and risk analyses and define mitigation strategies aligned with organizational risk acceptance criteria.
• Execute vulnerability assessments, classification, and protection evaluations.
• Monitor SAP source code security and oversee implementation of SAP security correction programs.
• Drive vulnerability remediation activities in collaboration with SAP operations teams.
• Secure Development & Release Assurance Review architecture, design, and implementation artifacts to ensure security-by-design principles.
• Support secure release approvals at defined project milestones and quality gates.
• Validate SAP applications through security testing, penetration testing coordination, and security reviews.
• Cross-Functional Collaboration Partner with SAP System Owners, Basis teams, QA, and development teams to ensure secure system operations.
• Act as a central interface between SAP IT, enterprise cybersecurity organizations, and business stakeholders.
• Provide cybersecurity guidance throughout the SAP solution lifecycle.
• Security Operations & Supporting Services Support implementation and governance of cybersecurity services such as SIEM integration, malware protection, and monitoring solutions within SAP environments.
• Track and report SAP security KPIs and performance metrics.
• Training, Awareness & Documentation Develop and deliver SAP security and compliance awareness training programs.
• Maintain SAP security documentation and records within CMDB and related IT management tools.
• Integrate lessons learned into continuous improvement and awareness initiatives.
• Third-Party & Supplier Security Support evaluation of third-party vendors, cloud providers, and service offerings from a cybersecurity perspective.
• Contribute to security requirements in contracts and supplier governance processes.

Benefits

• medical insurance
• dental insurance
• vision insurance
• 401(k) retirement plan
• life insurance
• long-term and short-term disability insurance
• paid parking/public transportation
• paid time off
• paid sick and safe time