SAP Security Analyst

SAP Security - Analyst - Deloitte Support India Private Limited

Deloitte leads with purpose, solving complex issues for our clients and communities. Across disciplines and across borders, Deloitte Touche Tohmatsu Limited (DTTL) Global supports our network of national member firms by developing and driving global strategy, programs, and platforms, and creating new solutions and transformational experiences. Our people share a passion for igniting change and a strong service orientation that shapes our organization and those it supports.

The Deloitte Global Cybersecurity function is responsible for the firm's overall objectives in enhancing data protection, standardizing, and securing critical infrastructure and gaining cyber visibility through security operations centres. The Cybersecurity organization delivers a comprehensive set of cybersecurity services to Deloitte member firms through regional delivery hubs and a Global Fusion Centre.

This role will oversee regional operational service delivery for the Attack Surface Assessment Group of Services, reporting to the Application Security Lead. The role is targeted to identify and support customer need with security assessment against SAP platforms.

Strategic

• Provide input into strategic insight on service roadmap, opportunities, and enhancements.
• Support ideas to enhance service value.

Operational

• Support the enhancement and delivery of operational processes, rules of engagements and methodologies to deliver quality vulnerability analysis, alerting/alarms, security control enforcement and monitoring to Deloitte.
• Executing ongoing and ad hoc security assessments using a mixture of tools to help driver organizational risk reduction.
• Review technical configurations, monitoring capabilities and customer alerting to increase service value and insight to customers.
• Help develop customer facing materials to increase understanding, enhance value and drive understanding of security related risk of operating SAP business services and the customisation that business teams may develop.
• Build customized reports with filtering capabilities for identifying proper owners of vulnerabilities. Knowledge required to determine who owns the vulnerabilities either the SAP Basis or SAP Security teams so they can take immediate remediation actions.
• Preferred understanding of the various SAP systems S/4, Fiori, PO, GRC, Sidecar, SLT, SolMan, Redwood, ECC, Gateway/Fiori, HANA, SF
• Support tooling deployment and new customer configurations.

Relationship Management

• Support presenting the service to existing and potential new customers, articulating the value and benefits of the service to customers. Ensure appropriate feedback loops are in place with customer to continue enhance services based on customer needs.

• Support member firm liaisons with member firm and DTTL management and technical teams to ensure they are consuming all the offered Services within the Risk Management group across the globe and to ensure member firm expectations are being met

• Collaborates with the Attack Surface Assessment group to understand trends, issues and risks and to exchange expertise

Qualifications & Skills

Education

• Bachelor's degree in computer science, Cyber Security, International Cyber Security, or equivalent education experience or relevant work experience.

Work experience

• Minimum of 1 years of combined experience in Cyber Security, Vulnerability Management or Application Testing
• At least 1 years' experience in supporting assessment and experience of SAP in the following areas.

o SAP Penetration testing

o SAP Code Assessment (ABAP-HANA) and Triaging

o SAP Vulnerability and Compliance

o SAP Development & Engineering

• Experience with SAP assessment tools such as Onapsis, Layer 7, Security bridge will be required.
• Developer skill knowledge of ABAP and Java to support code assessment of SAP business products.
• Application/Infrastructure/Architecture experience – experience with configuring on-premises scanning tools infrastructure hosted in a cloud environment. Responsibilities for this role include the following: tuning/testing of all Onapsis components, upgrades for both the Onapsis components and Ubuntu Operating System, hardening of servers/appliances, SMTP, OS patching, and consistent management of cloud costs.
• Ability to develop reports, metrics, dashboards, and capability to articulate the data presented within the reports to senior management and technical staff.

Location: Hyderabad(India)

Experience: 1 to 3 years

Our purpose

Deloitte's purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities.

Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.

Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.

Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.

Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code: 311006