Product Security Specialist
1 week ago
We help the world run better
At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.
Summary
SAP I&CX Cloud Operations and Trust office team increases trust of our customers into SAP products and enables the organization to apply security, data protection & privacy and compliance.
Compliance to Security is a default customer expectation for every product, and further-on in the context of the European Union (EU) General Data Protection Regulation (GDPR), there is an emphasis on Data Protection & Privacy (DPP) compliance, ISO 27001 compliance, etc now more than ever before.
The Security Expert in SAP I&CX Trust office is therefore the Product Security Specialist for the organization.
What you'll do
Deep understanding of adherence of Secure Software Development Lifecycle (Secure SDL) during design, development, testing, debugging, delivery and support phase of products.
Knowledge and experience with Data Protection & Privacy principles to be adhered (e.g. GDPR)
Collaborate with product development and solution teams proactively to manage software security risk aligned with business goals.
Support in external and internal audits and certifications of products (e.g., ISO 271001, SOC2 Type1/ Type 2 etc)
Basic understanding of OWASP top 10 and similar application security methodologies
Hands on experience in conducting penetration for web application, API, Webservices, mobile application and thick clients (both cloud and on prem)
Proven hands-on experience working with Static (Checkmarx & Fortify) and Dynamic Security Scan tools (Burp suite, WEB Inspect).
Experience on Open-Source Security code scan tools (e.g., WhiteSource and Blackduck)
Prior experience with Secure Programming principles in at least one programming language (Java, JavaScript’s, C++ etc) will be added advantage.
Understanding of architecture and basic development experience with SAP technologies will be an added advantage.
Expectations and Tasks
S/He shall ensure that all I&CX delivered products mandatorily go through the SAP Secure Software Development Lifecycle (S2DL).
Her/His technical competencies therefore include the ability to
-Lead Security Evaluations & Estimations during the Solution Proposal phase (prior delivery).
-support the Threat Modeling Workshops and Data Protection Compliance Evaluation Workshops during the Design phase.
-perform end to end risk assessment.
-advocate the Secure Programming Guidelines to the Development team during the Build phase.
-own the DPP testcases and audit the mandatory execution of these tests during the MIT phase.
-conduct of the Security Code Scans on support bug fixes and regression tests for resolution of critical Security vulnerabilities
-conduct open-source security scan and guide projects teams to fix vulnerabilities.
Guide architecture decisions based on SAP Product Standard Security and Secure Programming principles.
Drive and ensure the compliance of all delivered projects to Security and Data Protection & Privacy guidelines.
Work closely with Solution Architects, Development Architects, Project Managers, Developers and Quality Assurance, to coordinate the delivery of secure solutions (delivery includes design, development, testing, documentation, go-live and maintenance & support activities)
Perform dynamic application security testing (manual and tool based). Remove the false positives and report issues to the development team.
Perform penetration testing for the applications.
Create and maintain network with Security Experts across SAP (both internal and external).
What you bring
5-8 years of total experience in Information Security
Security certifications like CEH, Security+, CCSP, CISSP or any other security related certifications is preferable.
Good English communication skills (written and verbal)
Quick Learner, passionate, motivated, and self-managed
S/He shall ensure that all I&CX delivered products mandatorily go through the SAP Secure Software Development Lifecycle (S2DL).
Bring out your best
SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.
We win with inclusion
SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.
SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.
EOE AA M/F/Vet/Disability:
Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.
Successful candidates might be required to undergo a background verification with an external vendor.
Requisition ID: 404340 | Work Area: Solution and Product Management | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations: #LI-Hybrid.
-
Product Security Sr Specialist
1 month ago
Bengaluru, Karnataka, India SAP Ariba Full timeApply for Product Security Sr Specialist Security Control Job Details SAP, Career Progress Consultants in Bengaluru/ Bangalore for 5 - 9 Year of Experience on
-
Product Security Sr Specialist
1 month ago
Bengaluru, Karnataka, India timesjobs Full timeSolution and Product ManagementProduct Security Sr Specialist - Security ControlWe help the world run betterAt SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces...
-
Product Security Sr Specialist
3 months ago
Bengaluru, India SAP Full timeWe help the world run better At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and...
-
Product Security Sr Specialist
3 months ago
Bengaluru, India SAP Full timeWe help the world run better At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and...
-
Product Sales Specialist
2 days ago
Bengaluru, India Proactive Data Systems Pvt. Ltd. Full timeProduct Sales Specialist – CybersecurityLocation: Bengaluru Job Summary:The Product Sales Specialist – Cybersecurity, is a key technical sales role, responsible for driving sales of cybersecurity solutions. With deep knowledge of cybersecurity products, the PSS provides expertise, advice, and demonstrations to help customers understand how these...
-
Security Product Sales Specialist
1 month ago
Bengaluru, India Cisco Full timeWhy you’ll Love Cisco We connect everything: people, processes, data, and things. We innovate everywhere, from launching a new era of networks that adapt, learns and protect, to building services that accelerate business outcomes. And we do it in style with outstanding personalities who aren’t afraid to change the way the world works, lives,...
-
Product Specialist
4 weeks ago
Bengaluru, India Anthology Inc Full timeDescription Product Specialist Bangalore, India The Opportunity: Anthology delivers education and technology solutions so that students can reach their full potential and learning institutions thrive. Our mission is to empower educators and institutions with meaningful innovation that’s simple and intelligent, inspiring student success and...
-
Security Specialist
1 month ago
Bengaluru, India Philips Full timeJOB DESCRIPTION Job Title Security Specialist Job Description Job title: Security Specialist Your role: Regularly performing security checks and evaluations on systems, platforms, and applications to ensure they are configured securely with special focus on Philips cloud environments. Executing various tools and scripts to assess and verify...
-
Product Sales Specialist
2 days ago
Bengaluru, India Proactive Data Systems Pvt. Ltd. Full timeJob DescriptionProduct Sales Specialist – CybersecurityLocation: Bengaluru Job Summary:The Product Sales Specialist – Cybersecurity, is a key technical sales role, responsible for driving sales of cybersecurity solutions. With deep knowledge of cybersecurity products, the PSS provides expertise, advice, and demonstrations to help customers understand...
-
Product Security Specialist
3 months ago
Bengaluru, India SAP Full timeWe help the world run better At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and...
-
Product Designer
1 week ago
Bengaluru, India Andromeda Security Full timeProduct DesignerSummary:Andromeda Security is a leading Silicon Valley VC-funded multinational startup dedicated to tackling complex challenges in cloud security. Our mission is to empower businesses by managing cloud credentials effectively and preventing security breaches. We pride ourselves on fostering a culture of trust, excellence, humility, grit, and...
-
Product Designer
4 days ago
Bengaluru, India Andromeda Security Full timeProduct Designer Summary: Andromeda Security is a leading Silicon Valley VC-funded multinational startup dedicated to tackling complex challenges in cloud security. Our mission is to empower businesses by managing cloud credentials effectively and preventing security breaches. We pride ourselves on fostering a culture of trust, excellence, humility, grit,...
-
Product Specialist
1 week ago
Bengaluru, India CloudSEK Full timeWHO ARE WE?We are a bunch of super enthusiastic, passionate, and highly driven people, working to achieve a common goal! We believe that work and the workplace should be joyful and always buzzing with energy!CloudSEK,one of India’s most trusted cybersecurity product companies, is on a mission to build the world’s fastest and most reliable AI technology...
-
Information Security Specialist
3 months ago
Bengaluru, India SecPod Full timeWhat We Do at SecPodSecurity Podium (incarnated as SecPod) is a SaaS-based cybersecurity products and technology company. We believe a strong defence is better than a weak cure. Our product SanerNow Cyber hygiene Platform is used by enterprises and MSPs of all sizes around the world to secure and manage their endpoints.Preventing cyberattacks is our top...
-
Product Designer
3 months ago
Bengaluru, India Andromeda Security Full timeProduct DesignerSummary:Andromeda Security is a leading Silicon Valley VC-funded multinational startup dedicated to tackling complex challenges in cloud security. Our mission is to empower businesses by managing cloud credentials effectively and preventing security breaches. We pride ourselves on fostering a culture of trust, excellence, humility, grit, and...
-
Product Designer
3 months ago
Bengaluru, India Andromeda Security Full timeProduct Designer Summary: Andromeda Security is a leading Silicon Valley VC-funded multinational startup dedicated to tackling complex challenges in cloud security. Our mission is to empower businesses by managing cloud credentials effectively and preventing security breaches. We pride ourselves on fostering a culture of trust, excellence, humility, grit,...
-
Product Designer
3 months ago
Bengaluru, India Andromeda Security Full timeProduct DesignerSummary:Andromeda Security is a leading Silicon Valley VC-funded multinational startup dedicated to tackling complex challenges in cloud security. Our mission is to empower businesses by managing cloud credentials effectively and preventing security breaches. We pride ourselves on fostering a culture of trust, excellence, humility, grit, and...
-
Information Security Specialist
3 months ago
Bengaluru, India SecPod Full timeWhat We Do at SecPod Security Podium (incarnated as SecPod) is a SaaS-based cybersecurity products and technology company. We believe a strong defence is better than a weak cure. Our product SanerNow Cyber hygiene Platform is used by enterprises and MSPs of all sizes around the world to secure and manage their endpoints. Preventing cyberattacks is our...
-
Product Security Specialist
3 months ago
Bengaluru, India SAP Full timeWe help the world run better At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and...
-
Product Specialist
1 week ago
Bengaluru, India CloudSEK Full timeWHO ARE WE? We are a bunch of super enthusiastic, passionate, and highly driven people, working to achieve a common goal! We believe that work and the workplace should be joyful and always buzzing with energy! CloudSEK, one of India’s most trusted cybersecurity product companies, is on a mission to build the world’s fastest and most reliable AI...