Senior Software Security Engineer-Node.Js, Golang

 We help the world run better

At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.

What you’ll do
We are seeking a passionate and skilled Senior Software Security Engineer with full-stack
experience on backend, front-end and cloud-deployment technologies, to join our Security
Tools team. In this role, you will be pivotal in designing, developing, and maintaining secure,
robust and scalable security tools and solutions for our development community. You will also
be involved in streamlining workflows via automation and scripting, thereby fostering secure
development practices, and ensuring high-quality software delivery.
You will be a part of a high-performing, motivated, and incredibly supportive agile team, where
you’ll take ownership of complex projects, collaborate across geographies, and contribute to
strengthening our organization’s security testing capabilities. If you are an innovative thinker who
thrives in a challenging domain, has a keen eye for detail, and is committed to delivering robust
solutions, this role is for you.
Key Responsibilities

• Develop Security Tooling: Build, maintain, and enhance security tools using Node.js,Golang, Python and Java ensuring they meet the needs of the development community.
• Automate Workflows: Write scripts and automation (on need basis) to streamline security testing and development processes, integrating with the larger ecosystem.
• Enhance Security Practices: Design and integrate solutions for SAST, DAST, and IAST technologies with the larger development platform.
• Ensure Code Quality: Contribute to design and architecture, conduct code reviews, maintain clean and well-documented code, and adhere to secure coding practices.
• Collaborate Globally: Work with cross-functional teams across the globe, Product Owners and Product Management, to align on requirements, dependencies, and deliverables.
• Innovation and Continuous Learning: Stay up-to-date on industry trends in security and development technologies, incorporating new insights into tooling and processes. We value out-of-the-box thinking and Innovation in everything we do!

What You Bring
Technical Expertise:
- 9+ years of experience in Node.js, Golang, Python and Java with a proven track record of
delivering enterprise-ready, secure, robust and scalable solutions.
- Hands-on experience with scripting languages like Shell / Python for automation.
- Knowledge of security testing tools (in SAST, DAST and IAST technologies – like Checkmarx,
Coverity, GHAS, SonarQube, etc.) and practices (DevSecOps framework).
- Experience working with cloud platforms such as AWS, Azure, or GCP.
- Hands-on experience with containerization tools like Docker/Kubernetes, Infrastructure as
Code (Terraform, Ansible, Helm), and CI/CD pipelines setup (Jenkins, ADO, GitHub Actions).
- Strong understanding of Relational database technologies.
- Experience of working in / knowledge of Agile Methodologies (Scrum, Kanban or SAFe)

Soft Skills:
- Ownership mindset with the ability to take full responsibility for deliverables.
- Problem-solving skills, Solution orientation, attention to detail and strong focus on quality.
- Strong collaboration, clear communication and adaptability to work with a global team.

Preferred Qualifications:
- Experience in the application security domain / building tools for the developer ecosystem.
- Certifications in cloud technologies like GCP / AWS are appreciated.
- Contributions to open-source projects or active involvement in developer communities.

Meet your team:
We are the Security Testing and Open-Source Software Security team. We are part of the central
Tools Team, an autonomous team within SAP operating from various locations across the globe
including India, France, Germany, Sofia and so on.
As the name suggests, we develop tools. What kind of tools may you ask? Awesome tools to help
people in SAP to get their job done smarter and faster. Some of our main topics are CI/CD,
Corporate Compliance and Developer Productivity Tools. Within TTT, the Security Testing team
enables SAP development teams to build secure software by providing central services for
automated source code scans complemented by other test methods, such as dynamic checks,
fuzzing, or penetration testing. This automated security analysis of potentially large software
products allows us to detect and eliminate security flaws at an early stage in the development
cycle before the products are shipped to SAP customers!

​Bring out your best

SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best.

We win with inclusion

SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.
SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy. Specific conditions may apply for roles in Vocational Training.

EOE AA M/F/Vet/Disability:

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.
Successful candidates might be required to undergo a background verification with an external vendor.

Requisition ID: 411909  | Work Area: Software-Design and Development  | Expected Travel: 0 - 10%  | Career Status: Professional  | Employment Type: Regular Full Time   | Additional Locations: #LI-Hybrid.