SAP Platform Security Operations and Audit & Compliance

Job Location

MANILA NET PARK OFFICE

Job Description

Job Description: Security Engineer - Band 1

We seek a highly skilled and experienced professional to assume the Technical Manager of SAP Platform Security Operations and Audit & Compliance role.  In this high impact position, you will support all security aspects beneath our SAP Basis Application – including Infrastructure, Operating Systems, Databases, and any horizontal software components shared across multiple applications.  Your technical expertise will be crucial in maintaining the integrity of our SAP landscape and supporting the organization's overall security operations – including ensuring audit & compliance requirements and delivering key security projects.

Job Family Summary:

This role falls under the Information Technology Security job family. Members of this job family are responsible for protecting the organization's information and information systems from both loss and compromise through the application and management of security controls.

Job Description:

The Security Engineer - Band 1 is responsible for handling day-to-day design, build, implementation, testing, deployment/release management, and monitoring of security solutions and platforms. They will engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. They will communicate vulnerability results in a manner understood by technical and non-technical business units based on risk tolerance and threat to the business and gain support through influential messaging. They will identify, analyze, and respond to malicious behaviors from a variety of sources and create action plans to mitigate future incidents.

The SAP Platform Security Operations and Audit & Compliance Team oversees, assesses, and manages:
•    Security approach driven by business, compliance, and regulatory requirements.
•    Security solutions that align with the key principles outlined within P&G’s Info Security policies.
•    Security structure that imposes the minimum administrative overhead from a sustainability perspective.
•    Restrict access authorizations to the user’s job requirements and responsibilities.
•    Provide expertise, best practices, and guidance on SAP security standards.
•    Provide appropriate security monitoring to reduce the risk of any audit & compliance deviations.
 

Key Responsibilities:

Support the SAP Security Operations & Audit & Compliance Team on an operational level.   He/she will deliver support that is consistent, of the highest quality, and complete as it relates to all security aspects beneath our SAP Basis Application – including Infrastructure, Operating Systems, Databases, and any horizontal software components shared across multiple applications.

• Handle day-to-day design, build, implementation, testing, deployment/release management, and monitoring of security solutions and platforms.
• Engage in information security projects that evaluate existing security infrastructure.
• Communicate vulnerability results in a manner understood by technical and non-technical business units.
• Identify, analyze, and respond to malicious behaviors from a variety of sources.
• Create action plans to mitigate future incidents.

Qualifications:

• Demonstrates depth of applied IT skills across at least two IT job profiles.
• Requires at least one relevant role with experience influencing people or organizations to achieve significant IT outcomes.
• Demonstrates application of skills in at least one IT job profile with basic awareness of Integrated Risk Management and IT Operations.
• Participates in the development of others in the function, indicating a sustainable career journey ahead.

Job Qualifications

•    Bachelor’s degree in business, Information Systems, or a related field; master's degree preferred.
•    Extensive experience (3+ years) in SAP Platform Security, SAP Basis, HANA DB, internal controls, compliance, or a related field, focusing on SAP systems.
•    Extensive and broad-based experience and expertise with all stacks of SAP Infrastructure and Application stack with demonstrated understanding of SAP Security and Compliance within a large and diverse enterprise environment or business community. 
•    Strong understanding of SAP processes, modules, and configurations, including ECC, S/4HANA, BTP, SAP Platform, Basis, Integration, OS, and related technologies.
•    Ideally, knowledge of the P&G information security framework and SAP Enterprise Security Control 
•    Knowledge of IT SAP security tools such as code scanners, GRC tools, or tools for SAP SoD monitoring.
•    Relevant certifications such as ITIL, SAP HANATEC, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or equivalent are a plus.
•    Excellent communication, presentation, and interpersonal skills.
•    Ability to manage conflicting priorities and multiple tasks incl. reasoning and problem-solving skills (especially in the task force phase).
•    Traditional/waterfall and agile project management skills.
•    Strong analytical and problem-solving abilities, with keen attention to detail.
•    Experience in working with regulatory requirements and industry standards (e.g., SOX, GDPR) SAP systems.
•    Create an atmosphere of trust, leverage diverse views, and encourage improvement and innovation. 
•    Prior success in roles managing in a professional services firm or large enterprise as a consultant, auditor or business process specialist is preferred.
 

Job Schedule

Full time

Job Number

R000132510

Job Segmentation

Experienced Professionals (Job Segmentation)