Sovereign Cloud Security Senior Specialist (f/m/d)

About SAP

We are a market leader in enterprise application software, driving innovation across 20 industries and 80% of global commerce. We value diversity, inclusion, and continuous learning, and we are looking for talent to help shape the future.

YOUR FUTURE ROLE

We are looking for a Security Compliance Senior Specialist (f/m/d) within the Security Compliance group in the Technology & Engineering unit of the newly formed Sovereign Cloud Technology & Delivery team. In this role you will become a founding member of the team and build a security and compliance program for Sovereign Cloud, defining processes, conducting assessments, and managing remediation.

This is a compliance role managing compliance requirements with a focus on risk management or engineering.

• Risk Management Focus: Assist the Security & Compliance team in articulating and escalating risks to the Sovereign Cloud Risk Coordinator, manage the risk register, draft risk responses, and mentor peers.
• Engineering Focus: Serve as subject matter expert for technical domains, analyze regional requirements, translate requirements between technical and non‑technical personnel, and mentor peers.

What You Bring

• Thorough understanding of security‑related topics
• Strong technology skills and willingness to learn new topics quickly
• Strong analytical, research, and problem‑solving skills
  • Ability to process large amounts of information and identify key themes
  • Ability to clearly and succinctly describe processes
  • Ability to manage through ambiguity while being innovative and collaborative
• Strong communication skills and cultural awareness
  • Ability to communicate complex technical requirements to diverse stakeholders
• Strong commitment to high quality work
• Willingness to work flexible hours to accommodate time differences with colleagues in other time zones
• Willingness to travel (less than 10%)
• Fluent in English (required)
  Fluent in other languages (second language preferred)

Work Experience

• 4+ years of related professional experience, such as IT audit, risk management, or DevOps (required)
• Specialization in either risk management or engineering (one of the two required)
  • Risk management focus requires experience with quantitative risk management
  • Engineering focus requires hands‑on Security DevOps experience in a cloud environment
• Experience with at least two cybersecurity frameworks such as UK Cyber Essentials, BSI IT Grundschutz, SecNumCloud, ISO 27001, or NIST 800‑53 (preferred)

Equal Employment Opportunity

We are an equal opportunity employer. We are committed to hiring for a diverse, inclusive workforce and to providing reasonable accommodations for applicants with disabilities. If you require accommodation, please contact us at

Contact

Requisition ID: | Work Area: Information Technology | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time or Part‑Time | Additional Locations: