Senior DevOps Security Engineer

Recruiter
SAP SE
Location
San Jose
Salary
Competitive
Posted
30 Sep 2024
Closes
28 Oct 2024
Employer Sector
Technology, IT & Telecoms
Contract Type
Permanent
Hours
Full Time


At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose–driven and future–focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.

As a Senior DevOps Security Engineer, you will be responsible for

  • Cloud Architecture & Security: Design and implement secure, scalable cloud architectures across multiple cloud platforms (Azure, GCP, AWS, SAP Converged Cloud) ensuring best practices for data security and availability.
  • DevOps Toolchain Integration: Expertise in integrating security tools into the CI/CD pipeline using tools like Jenkins, GitLab.
  • Infrastructure as Code (IaC): Utilize IaC tools such as Terraform, CloudFormation, or Ansible to automate cloud infrastructure deployment while enforcing security policies and compliance.
  • AI/ML Model Deployment & Security: Develop and secure AI/ML pipelines for deploying models in production environments, ensuring data integrity, model security, and performance optimization. Research and develop new methods to secure AI/ML models against adversarial attacks and data poisoning.
  • Incident Response & Threat Detection: Lead incident response and threat detection efforts, utilizing SIEM tools (e.g., Splunk, ELK Stack) and machine learning models for anomaly detection and predictive threat analysis.
  • Automation & Scripting: Develop automation scripts using Python, Bash, or PowerShell for security monitoring, compliance checks, and infrastructure automation.
  • Monitoring & Logging: Implement comprehensive logging, monitoring, and alerting solutions using tools like Prometheus, Grafana, and CloudWatch for proactive system health and security monitoring.
  • Multi–Cloud Strategy & Cost Optimization: Develop and execute multi–cloud strategies, optimizing resource usage and costs while maintaining security and performance.
  • Container Security: Secure containerized environments using tools like Kubernetes, Docker, and container security platforms.
  • Vulnerability Management: Conduct regular vulnerability assessments and remediation plans for cloud resources and CI/CD pipelines using tools or open–source solutions.
  • Performance Optimization & Scalability: Ensure the performance, scalability, and reliability of infrastructure and applications in cloud environments through continuous optimization and proactive management.
  • Public Key Infrastructure (PKI) Management: Design, deploy, and manage PKI solutions to support secure communications and authentication, including certificate issuance, revocation, and renewal processes.

What you bring:

  • Mastery in Security as Code, CI/CD, Infrastructure as Code, Security Coding Practices, Security Governance and Compliance, modern cloud services.
  • Expert in developing security controls on at least one public hyperscaler.
  • 10+ years of demonstrated experience in a security engineering role working with cloud computing technologies.
  • 10+ years of demonstrated experience utilizing Agile continuous improvement principles to make tangible improvements.
  • Strong development background in Python, Java, or Go
  • In–depth technical knowledge of cloud platforms – IBM Cloud, AWS, Azure, GCP,
  • Familiar with coding change management principles and tools like Jira, Git
  • Experience working on projects as part of a global team across multiple time zones.
  • Expert knowledge of cloud security, vulnerability management, major security compliance and development frameworks and principles.
  • Experience working with CNAPP, CWP, CSPM platforms a plus.
  • Strong analytical and reasoning, problem–solving, and decision–making skills
  • Experience working in a dynamic environment requiring collaboration across multiple organizations.
  • Willingness to expand and grow.
  • Excellent written, oral communication, and documentation skills
  • Above all, you'll be a strong team player and understand that we can only succeed as a distributed team. You'll have the drive to work collaboratively and independently.

Meet your team:
The GCS SRRC Hyperscaler Security Engineering team works on automating and administering Hyperscaler (IBM Cloud, AWS, Azure, GCP and AliCloud) security solutions. We are a geographically dispersed team who provides security configuration compliance scanning across all SAP public cloud environments. Our solutions allow SAP lines of business to increase their security by giving them critical security controls based on SGS policy. We utilize a combination of cloud native security tooling, automation, and processes to identify configuration gaps and provide actionable steps to remediate them.

Our team values:

  • Collaboration and idea generation
  • Outcomes
  • Supports a balance between personal and professional life

Bring out your best

SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end–to–end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose–driven and future–focused, with a highly collaborative team ethic and commitment to personal development.

We win with inclusion

SAP's culture of inclusion, focus on health and well–being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. SAP is proud to be an equal opportunity workplace and is an affirmative action employer.

EOE AA M/F/Vet/Disability

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.

Compensation Range Transparency: SAP believes the value of pay transparency contributes towards an honest and supportive culture and is a significant step toward demonstrating SAP's commitment to pay equity. The targeted combined range for this position is $136,300 – $283,400(USD) USD.

Requisition ID: 406378 Work Area:Software–Development Operations Expected Travel: 0 – 10% Career Status: Professional Employment Type: Regular Full Time Additional Locations: