SAP Security Test Engineer - P&I | SAP Global Security | Secure Development Job in Bangalore, India
Requisition ID: 181090
Work Area: Software-Development Operations
Expected Travel: 0 - 10%
Career Status: Professional
Employment Type: Regular Full Time
As market leader in enterprise application software, SAP helps companies of all sizes and industries innovate through simplification. From the back office to the boardroom, warehouse to storefront, on premise to cloud, desktop to mobile device – SAP empowers people and organizations to work together more efficiently and use business insight more effectively to stay ahead of the competition. SAP applications and services enable customers to operate profitably, adapt continuously, and grow sustainably.
Senior Security Test Engineer
P&I | SAP Global Security | Secure Development
Security Validation India
PURPOSE AND OBJECTIVES
A penetration tester is a type of network security consultant that tries to break into or find possible exploits in different computer systems and software.
They act as Ethical Hacker and generally are expected to run a Vulnerability Assessment / Penetration Testing and create assessment reports about the findings for Higher Management. While they will often be running pre-determined types of tests, they will also be innovating their own tests a depending upon the Products and solutions from SAP portfolio, which requires creativity and imagination.
EDUCATION AND QUALIFICATIONS/ SKILLS AND COMPETENCIES
Bachelor degree or higher, technical discipline preferred
3 years of working experience in IT Security,
• Experienced in application security testing (source code review and application penetration tests)
• Working knowledge of Security principles, techniques and technologies
• ISO27034 (Nice to have)
• Good understanding of network protocols, design and operations
• Strong analytical skills and efficient problem solving
• Understanding of Data Privacy protection and assessment skillsets.
• Good English communication skills (written and oral)
• Willingness to Travel.
Application development background and security knowledge – example of languages include C, C#, C , Java, J2EE
Vulnerability and threat management experience
Experience with various security tools and products (Fortify, AppScan Burp Suite, etc…)
Good understanding of the components of a secure DLC/SDLC
Vulnerability analysis and application reversing skills
Understanding of GDPR regulations.
Nice to Have :
CISSP, CISA, CEH, OSCP or other information security Certifications.
Security Consulting exposure.
EXPECTATIONS AND TASKS
As a penetration tester, you would be expected to conduct Vulnerability Analysis and Penetration tests on web-based applications, networks, and other types of computer systems on a regular basis.
You will be expected to work on Cloud Security, Mobile Security, and Security of ERP Products. Along with these tests and assessments, candidate is expected to perform regular security audits from both Design, Process and technical / hands-on standpoint.
Identify improvements areas in the existing process and contribute for Continous improvement of the processes.
Candidate is also expected to acquire Data privacy skillsets to perform the DPP assesssments.
SAP'S DIVERSITY COMMITMENT
To harness the power of innovation, SAP invests in the development of its diverse employees. We aspire to leverage the qualities and appreciate the unique competencies that each person brings to the company.
SAP is committed to the principles of Equal Employment Opportunity and to providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team (Americas: Careers.NorthAmerica@sap.com or Careers.LatinAmerica@sap.com , APJ: Careers.APJ@sap.com , EMEA: Careers@sap.com ). Requests for reasonable accommodation will be considered on a case-by-case basis.
Additional Locations :