Expert- SAP Cybersecurity & Authorization Solution

Job Description

Your Focus will be the area of SAP Security and Authorization. You will be member of Cyber alert response center (CARC) team in the daily operations and continuous improvement of detecting, monitoring and documenting security threats for SAP ABAP and JAVA ERP systems. You will be Using Security Information and Event Management (SIEM) tool you will be responsible for analyzing SAP security authorization alerts and coordinating with the responsible teams to remediate, mitigate or resolve security threats. SIEM monitored SAP production systems must meet and pass the strict audit requirement for KRITIS and NIS2 guidelines. We use SIEM to monitor and identify vulnerability and track the resolution. Although it will be good experience in SIEM, it is not mandatory. You will go trained in SIEM. Therefore, you will need to become familiar with all SAP authorization Listeners and Use cases configured in SIEM Baseline and Template to analyze or assess authorization risk. You will be responsible for monitoring SIEM alerts thru Security and Compliance Monitor and Event Monitor and documenting any findings daily. You will collaborate with global teams a minimum of twice a month to report, perform security assessments, root cause analysis, and review processes etc. You will participate in organizing and facilitating SAP Security Authorization meetings to follow-up, track and discuss the progress or status of reported incidents. You will meet with CARC team daily to report or discuss very high or high security authorization alerts with plans to resolve. In addition, you will participate in meeting/discussion regarding application owners, SAP Security Patching and notes and SAP parameters, SAP Code Vulnerability, and Event monitor (threat detection). Following our continuous improvement concept, you will identify potential improvement areas and design & implement solutions for the handling of security alerts. You will become familiar and utilize the possible solution listed to manage the SIEM Alerts. This will help reduce the overall numbers in HighLevel monthly report. You will be responsible for including comments or providing an explanation for the number of changes related to authorization: Incident Manager and documentation Risk Acceptance (Whitelisting) Risk Acceptance (SAP Role/ SAP Profile) Action & Filters Roadmap SAP Role removal/SAP role modification(Security Team) Work environment: Working in an international, virtual team in close collaboration being able to function as a cross functional backup for other members of the CARC team. Working very closely with SAP authorization team and other cross functional teams Bachelors or Masters degree and minimum 8 years comparable job experience. Experience in SAP Security design, administration, troubleshooting and operational experience is mandatory. Experience with SAP JAVA security and administration. Experienced in Cybersecurity framework for SAP ERP support. Good knowledge of service support processes and SLA Skills: Excellent, fluent communication in English speaking and writing. Strong analytical and conceptional skills Organisational talent and intercultural competence Communicative and Team Player Self-driven and flexible Excellent Microsoft Word, PowerPoint and Excel skills Tools: SAP Security and SAP ERP Excellent Microsoft Word, PowerPoint and Excel Experience with any SIEM tool will be good to have Power BI is a plus