Product Security Engineer

Innovation is and will always be the core of SAP Fioneer, and it is the promise of why we were spun out of SAP: agility, innovation, and delivery.   

SAP Fioneer builds on a heritage of outstanding technology and a deep understanding of corporate and consumer demands. At the heart of it all it is simple: We bring financial services to the next level with innovative software solutions and platforms. We are helping companies in the financial services industry to achieve speed, scalability, and cost-efficiency through digital business innovation, cloud technology, and solutions that cover banking and insurance processes end-to-end. 

A global company, with rapid growth, innovative people, and a lean organization makes SAP Fioneer a place where you accelerate your future!

Role

As a Product Security Engineer, you will contribute to ensuring the security and integrity of our software products. Your responsibilities will include:

Building Secure Pipelines: You will assist in designing and implementing secure CI/CD pipelines, utilizing existing automation solutions alongside recognized tools such as GitHub Actions and JFROG Artifactory. You'll work towards integrating security practices at various stages of the development process.

Building Application Security Dashboards: You will help create and maintain application security dashboards that provide insights into the security posture of our products. This will support informed decision-making and allow for timely responses to potential threats.

Conducting Threat Modeling Sessions: You will participate in threat modeling sessions to identify potential security threats and vulnerabilities in our products, contributing to proactive mitigation strategies.

Security Reviews of Software Architectures: You will carry out security reviews of software architectures and collaborate with senior colleagues to ensure that robust security measures are integrated into our products from the outset.

Writing Secure Coding Instructions: You will participate in developing clear and accessible secure coding guidelines for our development teams, encouraging best practices and ensuring that security is an essential component of our software development lifecycle.

Requirements

• Minimum of 3 years of work experience in the field, with a strong background in DevSecOps environments.
• Good understanding of the Secure Development Lifecycle (SDLC) and corresponding effective processes.
• Experience in building secure CI/CD pipelines.
• Ability to develop automation solutions for product security processes
• Experience in conducting threat modeling sessions and performing security reviews of software architectures.

Benefits

You will have the opportunity to collaborate with some of the brightest minds in the industry on an incredibly ambitious project to shape the ever-evolving financial sector. This is an environment where you can have it all - the agility, enthusiasm and dynamism of a start-up, combined with the established expertise, solid market presence and extensive customer network of a more established organisation.

At SAP Fioneer, you will benefit from a flexible work environment that encourages creativity and encourages you to think outside the box, bring new ideas to the table, and challenge the status quo. You will become part of a diverse and global team that we are proud of and are constantly growing and reinventing.

As an employee, you will have the chance to chart your own career path and take advantage of competitive compensation packages and progression opportunities based on merit. We offer a comprehensive benefits package that includes occupational pension provisions, support for health and wellbeing, various mobility options like bike leasing and transportation allowances, as well as additional perks such as celebration rewards, meal programs, jubilee recognition, and relocation reimbursement.