ABOUT THE ROLE:
Functionally reporting to the Head of Security and Privacy Engineering as part of the Security Engineering group. Individuals will contribute to security implementations, technical activities, and as embedded support for the security platform areas. This role will help to ensure security requirements and provide guidance on best practices across a diverse technology stack while ensuring security providence throughout the organization.
FUNCTIONAL RESPONSIBILITIES:
- Participate in the design, build, and implementation of security controls across CI/CD pipelines including SAP transport landscapes, ensuring security guardrails and remediation of risk and vulnerabilities in a timely manner.
- Work with platforms to ensure SAP environments including S/4HANA, NetWeaver ECC, and Solution Manager with an emphasis on system hardening, configuration baselines, and continuous validation as part of SSDLC.
- Support with Identity and Access Management governance including role design, segregation, service accounts, and best practices
- Provide guidance and technical understanding on SAP related remediations using tooling like Security bridge including aiding in investigation and risk assessment while validating fixes in collaboration with SAP Security teams.
- Assist in auditing, and continuous improvement of SAP systems.
- Participate actively in the engineer community led by METRO Corporate Information Security to define best practices, align way-of-working, prioritize and execute on the needed activities across SAP platforms, modules, and environments.