Senior DevOps Security Engineer
- Recruiter
- SAP SE
- Location
- Palo Alto
- Salary
- Competitive
- Posted
- 28 Sep 2024
- Closes
- 26 Oct 2024
- Job Type
- Security Engineer
- Employer Sector
- Technology, IT & Telecoms
- Contract Type
- Permanent
- Hours
- Full Time
At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose–driven and future–focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.
As a Senior DevOps Security Engineer, you will be responsible for:
- Cloud Architecture & Security: Design and implement secure, scalable cloud architectures across multiple cloud platforms (Azure, GCP, AWS, SAP Converged Cloud) ensuring best practices for data security and availability.
- DevOps Toolchain Integration: Expertise in integrating security tools into the CI/CD pipeline using tools like Jenkins, GitLab.
- Infrastructure as Code (IaC): Utilize IaC tools such as Terraform, CloudFormation, or Ansible to automate cloud infrastructure deployment while enforcing security policies and compliance.
- AI/ML Model Deployment & Security: Develop and secure AI/ML pipelines for deploying models in production environments, ensuring data integrity, model security, and performance optimization. Research and develop new methods to secure AI/ML models against adversarial attacks and data poisoning.
- Incident Response & Threat Detection: Lead incident response and threat detection efforts, utilizing SIEM tools (e.g., Splunk, ELK Stack) and machine learning models for anomaly detection and predictive threat analysis.
- Automation & Scripting: Develop automation scripts using Python, Bash, or PowerShell for security monitoring, compliance checks, and infrastructure automation.
- Monitoring & Logging: Implement comprehensive logging, monitoring, and alerting solutions using tools like Prometheus, Grafana, and CloudWatch for proactive system health and security monitoring.
- Multi–Cloud Strategy & Cost Optimization: Develop and execute multi–cloud strategies, optimizing resource usage and costs while maintaining security and performance.
- Container Security: Secure containerized environments using tools like Kubernetes, Docker, and container security platforms.
- Vulnerability Management: Conduct regular vulnerability assessments and remediation plans for cloud resources and CI/CD pipelines using tools or open–source solutions.
- Performance Optimization & Scalability: Ensure the performance, scalability, and reliability of infrastructure and applications in cloud environments through continuous optimization and proactive management.
- Public Key Infrastructure (PKI) Management: Design, deploy, and manage PKI solutions to support secure communications and authentication, including certificate issuance, revocation, and renewal processes.
What you bring:
- Mastery in Security as Code, CI/CD, Infrastructure as Code, Security Coding Practices, Security Governance and Compliance, modern cloud services.
- Expert in developing security controls on at least one public hyperscaler.
- 10+ years of demonstrated experience in a security engineering role working with cloud computing technologies.
- 10+ years of demonstrated experience utilizing Agile continuous improvement principles to make tangible improvements.
- Strong development background in Python, Java, or Go.
- In–depth technical knowledge of cloud platforms – IBM Cloud, AWS, Azure, GCP.
- Familiar with coding change management principles and tools like Jira, Git.
- Experience working on projects as part of a global team across multiple time zones.
- Expert knowledge of cloud security, vulnerability management, major security compliance and development frameworks and principles.
- Experience working with CNAPP, CWP, CSPM platforms a plus.
- Strong analytical and reasoning, problem–solving, and decision–making skills.
- Experience working in a dynamic environment requiring collaboration across multiple organizations.
- Willingness to expand and grow.
- Excellent written, oral communication, and documentation skills.
- Above all, you'll be a strong team player and understand that we can only succeed as a distributed team. You'll have the drive to work collaboratively and independently.
Meet your team:
The GCS SRRC Hyperscaler Security Engineering team works on automating and administering Hyperscaler (IBM Cloud, AWS, Azure, GCP and AliCloud) security solutions. We are a geographically dispersed team who provides security configuration compliance scanning across all SAP public cloud environments. Our solutions allow SAP lines of business to increase their security by giving them critical security controls based on SGS policy. We utilize a combination of cloud native security tooling, automation, and processes to identify configuration gaps and provide actionable steps to remediate them.
Our team values:
- Collaboration and idea generation
- Outcomes
- Supports a balance between personal and professional life
Bring out your best
SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end–to–end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose–driven and future–focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.
We win with inclusion
SAP's culture of inclusion, focus on health and well–being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.
SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities.
EOE AA M/F/Vet/Disability
Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.
Compensation Range Transparency: SAP believes the value of pay transparency contributes towards an honest and supportive culture and is a significant step toward demonstrating SAP's commitment to pay equity. SAP provides the annualized compensation range inclusive of base salary and variable incentive target for the career level applicable to the posted role. The targeted combined range for this position is $136,300 – $283,400(USD) USD. The actual amount to be offered to the successful candidate will be within that range, dependent upon the key aspects of each case which may include education, skills, experience, scope of the role, location, etc. as determined through the selection process. Any SAP variable incentive includes a targeted dollar amount and any actual payout amount is dependent on company and personal performance.
Requisition ID: 406378 Work Area: Software–Development Operations Expected Travel: 0 – 10% Career Status: Professional Employment Type: Regular Full Time Additional Locations:
Nearest Major Market: San Jose
Nearest Secondary Market: Palo Alto
Job Segment: Cloud, ERP, Open Source, SAP, Technology, Security