Share this Job

SAP GRC - Risk Management & Process Controls System Operations Specialist Job

Apply now »

Date: Jun 16, 2019

City: Bangalore, KA, IN

Company: SAP

Requisition ID:211557
Work Area: Information Technology
Expected Travel: 0 - 10%
Career Status: Professional
Employment Type: Regular Full Time
Career Level: T2


SAP started in 1972 as a team of five colleagues with a desire to do something new. Together, they changed enterprise software and reinvented how business was done. Today, as a market leader in enterprise application software, we remain true to our roots. That’s why we engineer solutions to fuel innovation, foster equality and spread opportunity for our employees and customers across borders and cultures.

SAP values the entrepreneurial spirit, fostering creativity and building lasting relationships with our employees. We know that a diverse and inclusive workforce keeps us competitive and provides opportunities for all. We believe that together we can transform industries, grow economics, lift up societies and sustain our environment. Because it’s the best-run businesses that make the world run better and improve people’s lives.


Within the Global Finance & Administration board area, SAP Global Security (SGS) has been established under leadership of SAP’s Chief Security Officer. SGS is structured in the units Physical Security, Enterprise Security, Product Security, Cyber Defense & Response Center, Program Management & Communication.

The Enterprise Security team supports secure infrastructure & application operations, as well as secure cloud development, to deliver secure cloud services to our customers. Additionally, it supports our internal infrastructure and operations teams to provide their services in a secure and compliant manner. In addition, we are taking care of security related certifications of our IT infrastructure, end user devices, cloud services as well as development and operational processes. Gaining transparency on the security compliance level across SAP in an automated way is one of our key initiatives.

For this Team, we are searching for a specialist, who operates and maintains the infrastructure and connectivity to the central SAP global risk register of the central SAP security risk, threat and vulnerabilities/issues register (SRTV). This tool will support SAP to achieve transparency and automation on the security risk and control situation across the organization. The register is expected to collect information from multiple sources and ensure up-to-date status information in central availability. In addition, this new team member supports the structural setup and maintenance of a central multi-compliance framework that helps us to easily map new requirements to the central control system as well as helping us to further drive efficiencies into the external certification efforts.

All the efforts mentioned above are intended, to Empower and streamline SGS risk, control and regulation efforts by establishing a one central function “Enterprise Security Risk Control Center (ESRC) “.


·     Experience in GRC Risk Management and Process Controls functional Knowledge.

·     Obtain an understanding of Security business, objectives, strategy, operations, processes, IT systems, Risks and Controls

·     Applying knowledge of IT security trends, systems and processes, evaluate findings for significance and risk, and develop recommendations for improvement based on leading practice

·     Strategically drive the development and monitor of risk assessments and mitigation plans to enhance the business unit’s ability to identify, evaluate, prioritize and mitigate risks

·     Identify and support risk management improvements aligned to the SGS Management vision and strategic priorities

·     Support risk and process Control Owners Framework

·     Monitoring of information security risk assessments to ensure the SGS Organization is meeting its security goals and all regulatory requirements.

·     Identify opportunities to remediate or mitigate risk through additional controls and processes.

·     Report accurate and timely information as it relates to compliance and risk responsibilities

·     Coordinate and support risk owners in maintenance of required compliance documentation as well as internal control practices

·     Identify new tools to guide maintenance of risks and controls

·     Work with across all business unit functions to resolve risk issues as appropriate

·     Good understanding of best practices security measures, concepts processes and tools.


Required skills

·     Knowledge in Governance Risks and Compliance (GRC) domain  

·     knowledge on Security Risks, Process Controls, Threads and Vulnerability domain 

·     Strong skills in Security Information, Technology and Infrastructure (security knowledge on

 On-Premise and Cloud platform)

·     Knowledge and skills in business process analytics and data analysis is an advantage

·     Knowledge in audit compliance processes is an advantage 

·     Intercultural sensitivity and communication

·     Strong Excel Knowledge (for adjusting/streamlining reports)

·     Innovative thinker, with a focus on quality and results

·     Fluent written and spoken English

Preferred skills

·     Masters/Graduate Degree desirable

·     University Degree (e.g. IT/Computer Science, Cyber Security and IT Security Domain)

·     Professional credentials (e.g. CISM, CompTIA, CISSP)

·     Demand for a challenging position and the desire for self-development

·     Working in virtual teams

·     Dedicated team player.

·     Proactive behavior and high willingness to learn

·     Understanding of written and spoken German is an advantage


·     Education to degree level in a related field is desirable

·     4 to 6 years’ experience in infrastructure and application operations


Success is what you make it. At SAP, we help you make it your own. A career at SAP can open many doors for you. If you’re searching for a company that’s dedicated to your ideas and individual growth, recognizes you for your unique contributions, fills you with a strong sense of purpose, and provides a fun, flexible and inclusive work environment – apply now.

To harness the power of innovation, SAP invests in the development of its diverse employees. We aspire to leverage the qualities and appreciate the unique competencies that each person brings to the company.

SAP is committed to the principles of Equal Employment Opportunity and to providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team (Americas: or, APJ:, EMEA:

Successful candidates might be required to undergo a background verification with an external vendor.

Additional Locations

Job Segment: Risk Management, SAP, Operations Manager, Manager, Finance, Technology, Operations, Management