Senior Product Security Engineer

Innovation is and will always be the core of SAP Fioneer, and it is the promise of why we were spun out of SAP: agility, innovation, and delivery.   

SAP Fioneer builds on a heritage of outstanding technology and a deep understanding of corporate and consumer demands. At the heart of it all it is simple: We bring financial services to the next level with innovative software solutions and platforms. We are helping companies in the financial services industry to achieve speed, scalability, and cost-efficiency through digital business innovation, cloud technology, and solutions that cover banking and insurance processes end-to-end. 

A global company, with rapid growth, innovative people, and a lean organization makes SAP Fioneer a place where you accelerate your future!

Role

As a Senior Product Security Engineer, you will play a pivotal role in ensuring the security and integrity of our software products. Your responsibilities will include:

• Building Secure Pipelines: You will design and implement secure CI/CD pipelines while leveraging custom automation solutions alongside known products such as GitHub Actions, GitHub Advanced Security, and JFROG Artifactory, ensuring that security is integrated into every stage of the development process.
• Building Application Security Dashboards: You will create and maintain application security dashboards that provide real-time insights into the security posture of our products, enabling informed decision-making and rapid response to potential threats.
• Conducting Threat Modeling Sessions: You will lead threat modeling sessions to identify potential security threats and vulnerabilities in our products, ensuring proactive mitigation strategies are in place.
• Security Reviews of Software Architectures: You will perform comprehensive security reviews of software architectures, providing expert guidance to ensure robust security measures are embedded in our products from the ground up.
• Writing Secure Coding Instructions: You will develop clear and easily consumable secure coding instructions for our development teams, promoting best practices and ensuring that security is a fundamental aspect of our software development lifecycle.

Requirements

• Minimum of 7 years of work experience in the field, with a strong background in DevSecOps environments.
• Good understanding of the Secure Development Lifecycle (SDLC) and corresponding effective processes.
• Proficiency in building secure CI/CD pipelines.
• Ability to develop automation solutions for product security processes
• Experience in conducting threat modeling sessions and performing security reviews of software architectures.

Benefits

You will have the opportunity to collaborate with some of the brightest minds in the industry on an incredibly ambitious project to shape the ever-evolving financial sector. This is an environment where you can have it all - the agility, enthusiasm and dynamism of a start-up, combined with the established expertise, solid market presence and extensive customer network of a more established organisation.

At SAP Fioneer, you will benefit from a flexible work environment that encourages creativity and encourages you to think outside the box, bring new ideas to the table, and challenge the status quo. You will become part of a diverse and global team that we are proud of and are constantly growing and reinventing.

As an employee, you will have the chance to chart your own career path and take advantage of competitive compensation packages and progression opportunities based on merit. We offer a comprehensive benefits package that includes occupational pension provisions, support for health and wellbeing, various mobility options like bike leasing and transportation allowances, as well as additional perks such as celebration rewards, meal programs, jubilee recognition, and relocation reimbursement.