(Junior) Security Operations (SecOps) Specialist (f/m/d) with SIEM and EVM Specialization
Garching, DE, 85748
SAP
Explore market-leading software and technology from SAP. Become an intelligent, sustainable enterprise with the best in cloud, platform, and sustainability solutions – no matter your industry or size.We help the world run better
At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.
What you`ll do
Summary:
As a (Junior) Security Operations Specialist, you will play a vital role in supporting security monitoring, threat detection, and vulnerability management across our systems. You will work with Splunk and other SIEM tools to identify security events, assist in vulnerability assessments with EVM tools, and use Python to automate tasks. This position offers an excellent opportunity to develop hands-on experience in SIEM, EVM, and security best practices while collaborating closely with senior team members.
The Role:
- Support SIEM Operations with Splunk:
Assist in managing and optimizing our SIEM platform (primarily Splunk) to collect, analyze, and correlate security events. With guidance from senior team members, develop simple queries and learn how to identify patterns and security threats using Splunk.
- Assist with Enterprise Vulnerability Management (EVM):
Use EVM tools, such as Tenable, to support vulnerability assessments, helping to identify, prioritize, and track remediation efforts across our infrastructure. Learn how to interpret scan results and work with other teams to address identified vulnerabilities.
- Develop and Optimize Splunk Queries:
Work with the team to write and refine basic Splunk queries to monitor security events, identify unusual activity, and assist in incident response. Gain experience in developing logic for security-focused queries and alerts.
- Basic Cloud and Container Security:
Support security monitoring and auditing for cloud environments (AWS, Azure, GCP) and containerized platforms like Kubernetes and Docker. Learn to configure security logging and auditing to improve visibility and detection in these environments.
- Automate Security Tasks Using Python:
Use Python to automate routine tasks, such as data extraction and basic reporting, and to support custom security tools, helping the team work more efficiently.
- Collaborate with DevOps and Security Teams:
Partner with developers and DevOps professionals to understand secure coding and deployment practices, helping to integrate security into each stage of the development process.
- Assist in Incident Response and Reporting:
Provide support for security alerts and incidents, learning about forensic analysis and incident documentation with senior team guidance.
What you bring
- First relevant work experience in Development Secure Operations (DevSecOps) tasks.
- Basic understanding of SIEM platforms, particularly Splunk (experience with developing or modifying simple queries is a plus).
- Familiarity with EVM tools like Tenable (prior experience with vulnerability scanning or report interpretation is helpful).
- Foundational knowledge of cloud platforms (AWS, Azure, GCP).
- Experience or interest in containerized environments, such as Kubernetes and Docker.
- Basic scripting ability in Python for task automation and data handling.
- Strong analytical skills and logical problem-solving abilities.
- Strong desire to learn and grow in cybersecurity operations, with a specific interest in SIEM and vulnerability management.
- Good communication skills, with the ability to work collaboratively across teams.
Nice to have skills:
- Familiarity with CI/CD tools (e.g., Jenkins, GitLab CI).
- An understanding of basic security concepts, such as authentication, encryption, and incident management.
Bring out your best
SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.
We win with inclusion
SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.
SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com.
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.
Requisition ID: 409308 | Work Area: Solution and Product Management | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations: #LI-Hybrid
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits Automation AWS Azure CI/CD Cloud DevOps DevSecOps Docker Encryption ERP GCP GitLab Incident response Jenkins Kubernetes Monitoring Python SAP Scripting SecOps SIEM Splunk Threat detection Vulnerabilities Vulnerability management
Perks/benefits: Career development Flex hours Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.