Senior Cloud Security Engineer - Azure Specialist

We help the world run better

At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.

About the Role

We are seeking a Senior Cloud Security Architect with a strong background in Azure security architecture and engineering. This role requires deep hands-on experience in cloud security and governance, with prior exposure to technologies such as Microsoft Purview (DLP), Azure Policy, and Microsoft Entra ID Conditional Access. In addition, the ideal candidate will have solid experience with DevSecOps practices, automation, and infrastructure as code (IaC) to ensure scalable, secure, and compliant deployments across our Azure environment.

You will work closely with security, development, and operations teams to implement security controls, translate requirements, and drive cloud security automation and risk reduction initiatives.

Key Responsibilities

• Translate security and compliance requirements into practical, scalable, and cost-efficient Azure security controls.
• Design and implement Azure-native security services (e.g., Microsoft Defender for Cloud, Key Vault, Sentinel, Firewall).
• Collaborate with cloud and DevOps teams to integrate security into CI/CD pipelines (DevSecOps approach).
• Develop and maintain Azure DevOps pipelines to support automated deployment and security testing.
• Create and manage infrastructure as code using Terraform or Azure Resource Manager (ARM) templates.
• Automate security tasks, audits, and monitoring workflows using Python and other scripting languages.
• Leverage Azure Policy to enforce cloud governance and ensure consistent security posture.
• Apply prior experience with Microsoft Purview (DLP) to support data classification and protection efforts.
• Support Microsoft Entra ID Conditional Access implementation for identity-based access controls.
• Conduct security assessments, threat modeling, and risk analysis for Azure-hosted services.
• Provide technical guidance to engineering teams and ensure alignment with industry standards (NIST, ISO, etc.).

Required Qualifications

• Bachelor’s or Master’s degree in Information Security, Computer Science, or a related field.
• 8+ years of experience in cybersecurity, with 3+ years specifically in Azure cloud security roles.
• Hands-on experience with:
  • Azure DevOps, including CI/CD pipeline creation and management
  • Python scripting for automation of security-related workflows
  • Terraform or ARM templates for infrastructure as code
  • Azure Policy, Microsoft Purview (DLP), and Microsoft Entra ID Conditional Access
• Strong understanding of cloud security controls, identity management, encryption, and Azure governance.
• Proven experience implementing DevSecOps practices and integrating security into deployment pipelines.
• Relevant certifications such as AZ-500, SC-100, SC-300, CISSP, or CCSP.

Preferred Qualifications

• Experience with Microsoft Defender suite and Microsoft Sentinel for monitoring and incident response.
• Familiarity with regulatory frameworks such as SOC 2, ISO 27001, NIST 800-53, GDPR.
• Knowledge of secure software development life cycle (SDLC) and CI/CD security best practices.
• Exposure to container and Kubernetes security (AKS) and hybrid/multi-cloud environments

 ​Bring out your best

SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.

We win with inclusion

SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.
SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.

EOE AA M/F/Vet/Disability:

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.
Successful candidates might be required to undergo a background verification with an external vendor.

Requisition ID: 429387  | Work Area: Information Technology  | Expected Travel: 0 - 10%  | Career Status: Professional  | Employment Type: Regular Full Time   | Additional Locations: Virtual - Europe #LI-Hybrid.