Security Architect - Signavio Platform Cloud OS

We help the world run better

Our company culture is focused on helping our employees enable innovation by building breakthroughs together. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from. Apply now!

Security Architect – Signavio Platform Cloud OS (T3)

Our company culture is focused on helping our employees enable innovation by building breakthroughs together. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from. Apply now!

We are looking for an experienced Security Architect with a background in devops to strengthen our CloudOS SecOps team in Signavio’s Platform Group. Our mission is to build the foundation for our application developers so they can focus on creating value - profiting from the scale of SAP without being too dragged down by overhead, with low cognitive load, and with security & compliance built-in. We pride ourselves in following a Platform Engineering approach, being infrastructure-as-code only, and we continuously push to adopt new technologies that solve our biggest issues once they’re proven.

What you'll do

• Pushing DevSecOps - improving Signavio security with a “shift left” approach. Help implementing and rolling out security and compliance guardrails using various policy engines
• Conducting threat modelling/pre-mortem exercises and periodic security reviews
• Drive and proactively follow up security related events. Identify and fix security vulnerabilities in our Cloud infrastructure
• Perform on-going internal security testing and security focused code reviews to improve Cloud security. Automate vulnerability management
• Advocate for improvements to Cloud security, quality and performance
• Support implementing asset management requirements. Support the organisation in performing ISO 27001 or SOC2 audits.
• Educate and enable staff members on secure coding techniques through code reviews, training and raising awareness. Align and collaborate with security engineers from other engineering departments
• Conduct research and prototyping on current and emerging technologies and issues to ensure engineering excellence within your team

What you bring

• Engineering graduate with 8+ years of SecOps expertise.
• Excellent knowledge of typical security vulnerabilities in the Cloud and how to prevent these. Ideally certified “AWS Security Specialty” or similar
• Ability to lead through, connect and create progress when things aren’t clear or the way forward is not yet well-defined in all aspects of security research and development
• Coding skills to implement policies in policy engines like Kyverno, AWS Config, Checkov. Coding skills in AWS CDK (TypeScript) and Terraform.
• Knowledge of AWS, Kubernetes, Helm, Splunk SIEM, AWS GuardDuty, AWS Security Hub.
• Comfortable working with both modern code and legacy code and willing to refactor legacy code
• A passion for coaching and mentoring your less experienced colleagues by drawing upon your experience, skills and knowledge to ‘give back’ to others
• A willingness to contribute on our journey from our start-up heritage to our SAP Signavio future – which sometimes means having to reconcile the larger corporate picture or processes with our own desire for speed and experimentation (we know this isn’t easy).
• Clear and concise communication in both writing (for example, RFC/ADRs and one-pagers) and speaking

Meet Your Team

Building on the intelligent enterprise strategy, SAP Signavio set out to support and accompany SAP customers in navigating through their digital transformation by helping them understand and improve their business processes. The platform group is one of five groups in the engineering department of SAP Signavio, and our CloudOS teams are responsible for cloud and database infrastructure, shared infrastructure services,and Security Operations, with a goal of providing an effective Internal Developer Platform.

Do I need to meet all the requirements to apply?

Studies by several different sources have shown that, on average, men will apply for a job if they meet 60% of the application requirements. In contrast, women/non-binary people will seek to match a much higher percentage of the requirements before applying. We strongly encourage everyone to apply and give us a chance to evaluate your skills and experience. We are all learning on the job, and although the listing above has been carefully compiled, we are also open-minded and interested to hear about the value you can bring to the role. roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy.

#SAPInternalT3 #SAPSignavio #signavio  #sapvacantcareers #sapvacantsaplabscareers #sapvacantmayercareers

We build breakthroughs together

SAP innovations help more than 400,000 customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with 200 million users and more than 100,000 employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, we build breakthroughs, together.

We win with inclusion

SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.
SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.

EOE AA M/F/Vet/Disability:

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.
Successful candidates might be required to undergo a background verification with an external vendor.

Requisition ID: 388140  | Work Area: Software-Development Operations  | Expected Travel: 0 - 10%  | Career Status: Professional  | Employment Type: Regular Full Time   | Additional Locations: #LI-Hybrid.