SAP Vulnerability Management Senior Lead

What are we looking for?

• 8+ years of technical experience in the areas of SAP application security, vulnerability scanning, patch management, code security, and security incident response

• In-depth knowledge of core SAP application security concepts - role-based access control, IT controls, sensitive access and segregation of duties

• Hands-on experience working with SAP cybersecurity, vulnerability management, and code scanning tools (e.g., SAP Enterprise Threat Detection, Onapsis, SecurityBridge).

• Strong communication skills and ability to prepare and present findings and recommendations, both written and verbally

• Experience with SIEM tools and ServiceNow Vulnerability Response module is a plus

• Experience with data protection tools (e.g., SAP UI Masking) is a plus

What will the role's key responsibilities be?

• Work with our security implementation partner to configure and implement Onapsis

• Run vulnerability scans, evaluate results, review / validate results, and prepare and review findings and recommendations with stakeholders (e.g., Basis / Platform Team, Developers).

• Work with InfoSec / SOC teams to enhance SAP application security monitoring through integration with Mars SIEM tools

• Work closely with SAP Security Operations Team Lead to identify process improvement opportunities and drive consistency between Digital Core (transformation) and steady state vulnerability management processes

• Research and stay current with latest SAP vulnerabilities

• Conduct proofs of concept for additional Onapsis functionality

• Lead knowledge transfer sessions to managed service / operations team