SAP DevSecOps Engineer
Posted 1 week ago by 1754999359
Negotiable
Outside
Remote
USA
Summary: The SAP DevSecOps Engineer role focuses on integrating SAP security with DevSecOps practices to ensure secure development and operation of SAP systems. The position is critical for supporting a large IT transformation initiative aimed at migrating the SAP platform to the cloud while maintaining compliance and enhancing security. The ideal candidate will possess extensive experience in SAP security and cybersecurity platforms. This role is fully remote, allowing for flexibility in work arrangements.
Key Responsibilities:
- Ensure 'secure by design' and 'secure by default' principles throughout the development, deployment, and operation of SAP systems.
- Assist in the migration of the SAP platform to the cloud while maintaining compliance and enhancing security postures.
- Collaborate with cross-functional teams to align on security priorities and influence roadmaps.
- Implement and manage security measures for SAP environments, including role administration and SSO implementation.
- Support SOX compliance and auditing processes in SAP environments.
- Utilize automation tools and CI/CD pipeline security practices to enhance security measures.
Key Skills:
- Bachelor's degree in computer science, Information Security, or a related field (or equivalent experience).
- 5+ years of experience in IT security, with at least 3 years focused on SAP security engineering.
- Proven expertise in SAP platforms, including SAP HANA, BOBJ, BW, GRC, and NetWeaver Gateway.
- Strong understanding of DevSecOps principles, including CI/CD pipeline security and automation tools.
- Familiarity with cloud environments (AWS, Azure, Google Cloud Platform) and hybrid SAP deployments.
- Experience with SOX compliance and auditing processes in SAP environments.
- Hands-on knowledge of SAP security modules and SSO implementation.
- Relevant certifications such as SAP Certified Technology Associate Security, CISSP, CISM, or DevSecOps-specific credentials.
- Strong analytical and problem-solving skills with excellent communication and teamwork abilities.
- Experience with scripting languages for automation of security tasks.
- Knowledge of container security in SAP environments.
- Familiarity with secure software development lifecycle practices.
- Understanding of identity and access management tools integrated with SAP systems.
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Detailed Description From Employer:
Role- SAP DevSecOps Engineer
Location- Remote
Experience - 15+
Skills: SAP, HANA, IAM, AWS, Lambda, SAP security engineering
We are seeking an experienced and proactive DevSecOps SAP Engineer to join our Cybersecurity Application Platform Security Team. This role combines expertise in SAP security with a strong foundation in DevSecOps practices to ensure the 'secure by design', 'secure by default' principles throughout development, deployment, and operation of SAP systems. The ideal candidate will have hands-on experience with Cybersecurity platforms, with a deep understanding of SAP. This position plays a critical role in assisting large IT transformation initiative Propel, to move SAP platform to cloud; operate securely. maintaining compliance, enhancing security postures, and supporting our SAP ecosystem.
Qualifications:
- Bachelor's degree in computer science, Information Security, or a related field (or equivalent experience).
- 5+ years of experience in IT security, with at least 3 years focused on SAP security engineering.
- Proven expertise in SAP platforms, including SAP HANA, BOBJ, BW, GRC, and NetWeaver Gateway.
- Strong understanding of DevSecOps principles, including CI/CD pipeline security and automation tools (e.g., Jenkins, Git, Ansible, or similar).
- Familiarity with the shared responsibility model in cloud environments (AWS, Azure, Google Cloud Platform) and hybrid SAP deployments.
- Familiarity with SAP Cloud ALM (Application Lifecycle Management), clean core a plus.
- Experience with SOX compliance and auditing processes in SAP environments.
- Hands-on knowledge of SAP security modules, role administration, and SSO implementation (e.g., SAML, OAuth, Kerberos).
- Experience with SAP RISE or other SAP cloud transformation initiatives is highly desirable.
- Relevant certifications such as SAP Certified Technology Associate Security, CISSP, CISM, or DevSecOps-specific credentials are a plus.
- Strong analytical and problem-solving skills with excellent communication and teamwork abilities.
Preferred Technical Skills:
- Experience with scripting languages (e.g., Python, PowerShell) for automation of security tasks.
- Knowledge of container security (Docker, Kubernetes) in SAP environments.
- Familiarity with secure software development lifecycle (SDLC) practices.
- Understanding of identity and access management (IAM) tools integrated with SAP systems.
Soft Skills
- Excellent Communication Skills: Ability to clearly articulate security concepts to diverse audiences, including engineers, product managers, and executives.
- Collaboration & Influence: Proven ability to work cross-functionally with teams to align on security priorities and influence roadmaps.