Senior DevOps Engineer - DevSecOps

Senior Product Security Engineer (Devanahalli, Bangalore)

We help the world run better
At SAP, we keep it simple: you bring your best to us, and we'll bring out the best in you. We're builders touching over 20 industries and 80% of global commerce, and we need your unique talents to help shape what's next. The work is challenging – but it matters. You'll find a place where you can be yourself, prioritize your wellbeing, and truly belong. What's in it for you? Constant learning, skill growth, great benefits, and a team that wants you to grow and succeed. 

 

 

POSITION OVERVIEW:

SAP Successfactors is looking for a Senior Product and Application Security Engineer with strong DevSecOps engineering background and application security expertise to help with DevOps security initiatives and be capable of validating implementation in the areas of infrastructure, network, secure by default architecture and secure coding. The engineer will be part of the Application Security team under Human Capital Management (HCM) BISO office and work closely with application architects, security compliance team, HCM Engineering and Operation teams. 

What you'll do and the Role:

Be part of a cross organizational team responsible for designing and promoting secure by default architecture and development practices. 

Implement Security-as-Code principles to improve security of the entire product suite. Automate security principles and checkpoints into the CI/CD pipeline and containerization process. Execute security operation control to respond to and mitigate security incidents. Analyze security data collected through various channels and support risk-based decisions. Quick response to new and emerging security threats and vulnerabilities, investigate suspected attacks and help manage security incidents including providing post-mortem analysis, identify causes, develop solutions and preventive measures. Collaborate effectively with each product development team to perform security validation, risk assessment, vulnerability mitigation and implement best DevSecOps practices.  

What you bring :

Must haves – 

• Hands on experience of overall 8+ years regarding security tooling such as automation tools for Threat modeling, Authorization testing using Burp etc. 
• Minimum of 8+ years engineering experience in developing production grade products.  
• Minimum of 8+ years’ Experience in cloud product application-level security.
• Secure software development lifecycle implementation, OWASP top 10 and API Top 10 vulnerability prevention experience
• SAST tools such as GitHUB advanced security / Checkmarx ONE auditing and issue fixing 
• Expertise with cryptographic algorithms, FIPS 140-3, NIST PQC standards 
• Expertise with Container security, SBOM and Cyber Resilience act compliance
• Experts know how about Agentic AI, GenAI security and privacy issues, EU AI Act
• Ability to coordinate and work with global team spread across USA, Shanghai and Germany 
• Hands-on experience with major DevOps tools and technologies, working experience with CI/CD pipeline, containerization and microservices transformation. 
• Strong Linux administration and scripting experience on Groovy / Python / Go etc. 
• Experience in requirements identification, solution analysis/testing, and product selection, excellent communication and presentation skills 
• Ability to attend once a week team meeting happening at 6.30pm or 7.30pm IST for 1 hour.

Nice to haves – 

• Security experience in common data streaming / process frameworks. E.g. Kafka, Apache Flink, Apache Solr
• Solid understanding of SaaS and multi-tenancy application design
• Hands-on experience and practices with multiple public clouds

 

Bring out your best
SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.  

We win with inclusion
SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better world.

SAP is committed to the values of Equal Employment Opportunity and provides accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com.

For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity,  gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability, in compliance with applicable federal, state, and local legal requirements.

Successful candidates might be required to undergo a background verification with an external vendor.

 

AI Usage in the Recruitment Process

For information on the responsible use of AI in our recruitment process, please refer to our Guidelines for Ethical Usage of AI in the Recruiting Process.

Please note that any violation of these guidelines may result in disqualification from the hiring process.

Requisition ID: 438762  | Work Area: Software-Development Operations  | Expected Travel: 0 - 10%  | Career Status: Professional  | Employment Type: Regular Full Time   | Additional Locations:  #LI-Hybrid

Experience Level

Senior Level