Senior DevSecOps Developer

 Requisition ID: 424224
Work Area: Information Technology
Expected Travel: 0 - 10%
Career Status: Professional
Employment Type: Regular Full Time
Career Level: T3
Hiring Manager: Hemanth Kusampudi 
Recruiter Name: Thais Nadim
Additional Locations:

** Please submit your CV in English in order to proceed in the process. Only CVs in English will be considered.**

** This is a hybrid-model opportunity and requires you to work 3 times a week in SAP office in São Leopoldo. **

ABOUT THE ORGANISATION 

Enterprise Cloud Services (ECS) is a business unit in the Product Engineering Board Area.  Enterprise Cloud Services supports customers throughout their cloud transformation and SAP S/4HANA adoption journey. We run the Intelligent Enterprise so they can be an Intelligent Enterprise. Our portfolio of SAP HANA Enterprise Cloud and SAP Cloud Application Services turns SAP products into a solution-as-a-service on customers’ preferred infrastructure, including Hyperscalers, as one SAP.

ABOUT THE ROLE

In your role as Senior DevSecOps Developer, you will be instrumental in evolving our critical backend-for-frontend (BFF) application, built in Golang. This application serves as a crucial layer, providing controlled and secure access to logging data stored across major cloud providers (AWS, GCP, Azure) and enabling essential self-service capabilities for our users. We are seeking a highly motivated and experienced Senior Backend Engineer to join our team.

You will leverage your expertise in cloud technologies, backend development, and DevOps practices to drive the development, and operational excellence of this application. This is a high-impact position where you will have the opportunity to shape technical direction, implement best practices, and contribute significantly to our platform's success. you will be proficient in backend development of a self-service portal that customers (end-users) uses for Data processing and Data analytics platforms.

You will work closely with our CAE Secuirty Office and will support SAP Enterprise Cloud Services and develop appropriate platforms in building a self-service platform for Log-Preprocessing and Data analytics. You will report directly to ECS Chief Security Architect and Security Engineering Lead and you will support the CSO office, responsible for the effective and efficient security strategy, security programs, and services.

SUMMARY

• Lead cloud agnostic backend development for API Wrappers, API Orchestration with Cloud platforms (AWS, Azure, GCP).
• Helping frontend developers with AWS Amplify development and align with the backend development strategies with terraform.
• Perform root cause analysis, recommend, and implement tactical and strategic solutions to our self-service Security portal for Data processing, Data analytics platforms, compliance and security tools.
• Creating documentation to ensure all team members can perform required tasks.
• Ability to analyze data sets, determine the gaps and create reports on the findings.
• Creating and following guides and procedures to adhere to standards and policies.

Day to Day - Responsibilities:

• Design, develop, and maintain the Golang backend application, focusing on secure and efficient access to object storage (S3, GCS, Azure Blob Storage) across multiple cloud providers.
• Implement and enhance self-service features, including managing permissions, updating lifecycle policies, and configuring notification integrations with cloud queue services (SQS, Pub/Sub, Azure Service Bus).
• Integrate and maintain robust authentication and authorization mechanisms using OAuth2 and OIDC protocols, working with our Identity Provider (CyberArk).
• Manage the full application lifecycle on AWS Fargate, including deployment automation, scaling, and monitoring.
• Develop and maintain Infrastructure as Code using Terraform to provision and manage cloud resources.
• Implement and manage secrets within Hashicorp Vault for secure credential management.
• Design, build, and maintain CI/CD pipelines for automated testing, building, and deployment using GitHub Enterprise and other relevant tools.
• Establish and enforce Git branching strategies and workflows to facilitate collaborative development.
• Mentor and guide fellow engineers on best practices in backend development, cloud interactions, and code collaboration.
• Create and maintain technical documentation covering application architecture, development practices, deployment procedures, and user onboarding (including IdP setup).
• Proactively identify and address technical challenges, performance bottlenecks, and security vulnerabilities.
• Collaborate with frontend engineers, product managers, and other stakeholders to define requirements and deliver high-quality solutions.

Required Qualifications:

• Proven experience as a backend engineer with significant experience in Golang.
• Strong understanding of building and consuming RESTful APIs.
• Hands-on experience with at least one major cloud provider (AWS, GCP, or Azure), with a preference for experience across multiple providers.
• Experience working with object storage services (S3, GCS, Azure Blob Storage).
• Solid understanding of authentication and authorization concepts, including OAuth2 and OIDC.
• Experience with deploying and managing applications on container orchestration platforms like AWS Fargate (or Kubernetes).
• Proficiency in Infrastructure as Code tools, specifically Terraform.
• Experience with CI/CD pipeline development and management.
• Familiarity with Git and collaborative development workflows (e.g., Pull Requests).
• Excellent problem-solving skills and the ability to work independently and figure out technical solutions with minimal direction.
• Strong communication skills and the ability to create clear and concise technical documentation.

Bonus Qualifications:

• Experience with Hashicorp Vault.
• Experience with queueing services (SQS, Pub/Sub, Azure Service Bus).
• Familiarity with Identity Providers (IdPs) like CyberArk.
• Experience in a backend-for-frontend (BFF) architecture.
• Experience establishing development practices and contributing to team collaboration improvements.

If you are a self-starter with a passion for building robust, scalable, and secure cloud-native applications and enjoy driving technical direction, we encourage you to apply!

SAP'S DIVERSITY COMMITMENT 
 
To harness the power of innovation, SAP invests in the development of its diverse employees. We aspire to leverage the qualities and appreciate the unique competencies that each person brings to the company.
SAP is committed to the principles of Equal Employment Opportunity and to providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com

Successful candidates might be required to undergo a background verification with an external vendor.
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy.