Register Here to Apply for Jobs or Post Jobs. X

SR. SAP Security Software Engineer

Job in Redmond - King County - WA Washington - USA
Company: Microsoft
Full Time position
Listed on 2021-04-16
Job specializations:
  • IT/Tech
    Cyber Security, Network Security, SAP
  • Security
    Network Security, Data Security
Job Description & How to Apply Below

Sr. SAP Security Software Engineer

The mission of Microsoft Digital is to power, protect, and transform Microsoft as the voice of our digital transition in the market.

​​​​​​As part of Microsoft’s Cloud + AI Group, we are responsible for building, managing, and securing the platform, products, processes, and services that powers Microsoft. We build, maintain, and implement a cloud-first approach to our technology and experiences, from custom-built business solutions developing our campus of the future and our productivity and collaboration experiences like Teams and SharePoint, to horizontal 3rd party solutions like SAP and Adobe. As a steward of Microsoft and our customer’s data, a core function of Microsoft Digital is ensuring the security of every aspect of the business. Microsoft Digital is responsible for company-wide information security and compliance, with a strategic focus on information protection, assessment, awareness, governance, and enterprise business continuity. Microsoft Digital’s charter is also to influence and work alongside engineers across the company and with strategic partners to build and grow their cloud products and services. As customer zero, we deploy these services inside Microsoft and then share best practices with enterprise customers at scale across the globe.

We are looking for individuals that want to change the IT landscape at Microsoft. Come work for Core Platform Engineering Business Platform & Supply Chain (BPSC) team and help shape the future of ERP at Microsoft. BPSC is accountable for Microsoft’s ERP utilizing SAP. BPSC is seeking a Software Engineer to develop solutions focusing on security and compliance within Microsoft’s ERP environment including SAP.


The SAP Security Engineer is accountable for supporting the BPSC ERP strategy via their contributions within a project team and is accountable for the delivery of high-quality enterprise level solutions in support of the BPSC Mission. This position will represent the Security Development discipline during a project and will have oversight of the project’s Security resources in support of ERP solution development. In addition, this role will be accountable for following (and enforcing) Microsoft policies and procedures, including: Information Technology Life Cycle (ITLC), SOX, Privacy and Access Control.

The SAP Security Engineer is a critical part of the ERP delivery function and will need to have a very solid understanding of SAP solutions and technology.

Responsibilities

Key Responsibilities:

  • Actively drive Security design and architecture in SAP to ensure data is protected from unauthorized access
  • Develop, monitor and enforce security design in accordance with Microsoft policies and standards.
  • Develop authorizations in alignment with best practices and Microsoft policies and standards.
  • Stay current on industry best practices and the latest technologies relevant to Microsoft’s environment and roadmap.
  • Continuously update the teams and partners on security requirements and provide security recommendations on security integration points in SAP.
  • Proactively monitoring for new and changing SAP security threats and implement remediation plans when necessary.
  • Drive and ensure project development teams incorporate and document security and compliance requirements consistent with Microsoft’s methodology including ITLC.
  • Documenting SAP Security design and administration procedures with an understanding of Microsoft’s Regulatory requirements and maintain guidelines/documentation for completeness and consistency.
  • Successfully drive and oversee project team in the completion of development phases and projects in conformance to project goals, requirements, and schedule in collaboration with other partner teams.
  • Accurately estimate work/time required to complete SAP security related tasks Create project plans for security phases/deliverables.
  • Manage the annual security and privacy program by creation of new security guidelines and procedures for SAP and its integrated systems.
  • Manage the SAP GRC Access Control tools.
  • Responsible for resolving escalated security issues.
  • Provide thought leadership to team members and management.
  • Proactively monitoring for new and changing SAP security threats and implement remediation plans when necessary.
  • Drive and ensure project development teams incorporate and document security and compliance requirements consistent with Microsoft’s methodology including ITLC.
  • Documenting SAP Security design and administration procedures with an understanding of Microsoft’s Regulatory requirements and maintain guidelines/documentation for completeness and consistency.
  • Successfully drive and oversee project team in the completion of development phases and projects in conformance to project goals, requirements, and schedule in collaboration with other partner teams.
  • Accurately estimate work/time required to complete SAP security related tasks Create project plans for security phases/deliverables.
  • Manage the annual security and privacy program by creation of new security guidelines and procedures for SAP and its integrated systems.
  • Manage the SAP GRC Access Control tools.
  • Responsible for resolving escalated security issues.
  • Provide thought leadership to team members and management.
  • Qualifications

    Required Qualifications:

  • 8+ years of experience in SAP Security including S4/HANA, ECC, MDG, BIS, BPC HR, BW, GTS and/or APO with a deep understanding of the SAP’s authorization concepts.
  • 5+ years of experience in managing security based on regulatory requirements such as SOX, GDPR, PCI, international access security restrictions and requirements.
  • BS/MS in Computer Science or Engineering, or a related field, or equivalent alternative skills and/or practical experience is required.
  • The successful candidate must be a Citizen.
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: 

    -Citizenship Verification: This position requires verification of US Citizenship to meet federal government security requirements.

    - Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

    Preferred Qualifications:

  • Outstanding leadership and team coordination skills, with ability to lead security projects from end to end.
  • Excellent verbal and written communication skills.
  • Sound risk-based problem solving, problem resolution, judgment, negotiating, and decision-making skills.
  • Solid cross group collaboration abilities.
  • Ability to succeed in ambiguous environment.
  • Adept at prioritizing and working in a fast-paced organization.
  • Excellent attention to detail.
  • A solid understanding of software development lifecycle methodology, and information systems development and support.
  • Understanding of one or more business process in the FI, Commerce, HR or SCM areas.
  • Understanding of local/international security/privacy laws and its impacts on security architecture.
  • Experience leading teams within a global delivery model.
  • 5+ years of experience in SAP GRC or higher or experience in implementing ARA and ARQ.
  • 5+ years of experience in managing role Segregation of Duties (SOD) with an understanding of business processes and applicable mitigating controls.
  • 5+ years of experience in designing ARA or equivalent rule sets.
  • 5+ years of experience with BRF+ and MSMP.
  • Experience with ARIBA, IBP, Concur and SuccessFactors.
  • Basic understanding of SAP’s ABAP language.
  • Experience in audit related projects and working as a liaison between the business operations and auditors.
  • Experience with a variety of SDLC methodologies such as: Waterfall and Agile methodologies.
  • Enterprise IT experience, preferably with ERP.
  • Understanding of servers, networking, security, monitoring (Solution Manager, etc.).
  • One or more of the following certifications- SAP Security, GRC, CISSP or CISA.
  • Experience with Microsoft Azure Security.
  • Proficient in Microsoft Access and Power BI.
  • #MD

    #MDPE

     
     
     
    Search for further Jobs Here:
    (Enter less keywords for more results. Suggestions may be selected)
    Location
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    LOGIN Area - Jobsite