Share this Job

Senior Vulnerability Management Professional - (GFA/Cyber Defense and Response Center) Job

Apply now »

Date: May 18, 2019

City: Bangalore, KA, IN

Company: SAP



Requisition ID: 208032
Work Area: Information Technology
Expected Travel: 0 - 10%
Career Status: Professional
Employment Type: Regular Full Time

SAP started in 1972 as a team of five colleagues with a desire to do something new. Together, they changed enterprise software and reinvented how business was done. Today, as a market leader in enterprise application software, we remain true to our roots. That’s why we engineer solutions to fuel innovation, foster equality and spread opportunity for our employees and customers across borders and cultures.

SAP values the entrepreneurial spirit, fostering creativity and building lasting relationships with our employees. We know that a diverse and inclusive workforce keeps us competitive and provides opportunities for all. We believe that together we can transform industries, grow economics, lift up societies and sustain our environment. Because it’s the best-run businesses that make the world run better and improve people’s lives.


We are looking for a senior professional in vulnerability management within SAP’s Cyber Defense and Response Center. Within our organization, we are running security operations vital to SAP including security incident response, security event management, vulnerability scanning, penetration testing and cyber threat intelligence.
In your role as senior vulnerability management professional it is expected of you to support SAP’s customer business and corporate operations to run securely. Core tasks are evaluation of vulnerability scan reports, performing risk assessments, run security escalations, execute on remediation tracking & reporting as well as security communications. We are looking for an individual with strong communication skills who understands to translate complex security topics into the non-security domain. We are looking for a team player who will help us to extend our collaboration with SAP’s security teams and lines of businesses alike, driving technical integration of vulnerability management and automation of daily tasks.

Required skills

• Deep technical knowledge of security vulnerabilities & exploitation techniques
• Threat modelling & IT risk assessments
• Excellent communication skills and the ability to translate complex security cases into the non-security domain.
• Self-motivator with the ability to work independently in complex situations
• Experience in intercultural work environments
• Good knowledge of operating systems (Windows/Linux)
• Willingness to learn and improve personal skills
• Fluent written and spoken English
• Working conscientiously under pressure
• Good team player

Preferred skills
• Bsc./Msc. (or comparable) degree in computer science or similar
• Knowledge in the area of SAP´s product technology and underlying security concepts is a plus
• Demand for a challenging position and the desire for self-development
• Strong skills in Python, Java & Powershell
• Good knowledge in vulnerability and penetration testing tools (Nexpose, Nessus, Metasploit, Burp, Kali)
• Proactive behavior and high willingness to learn
• Background in security/penetration testing
• Background in development


Manages overall Security topics and issues
• Responsible for maintaining general documents and descriptions
• Defines processes and templates, KPIs in cooperation with Management
• Perform and publish risk assessments
• Drive automation & tool integration
• Drive automation & tool integration
• Draft external communication
• Validate vulnerability scan reports and submit reports along with recommendations for remediation
• Implementation of recommendations, processes, activities, standards in his or her area
• Ensures continuous Improvement, documents lessons learned, takes corrective and preventive action
• Coordinates security topics for internal customers
• Leads and supports Security Projects
• Provides Security reporting
• Ensures appropriate documentation Reports
• Security incident handling and coordination of related activities
• Responsibility for assuring quality and effectiveness of security measures in his or her area
• Support for audits (for example, with KPMG, TüV, SAP GIAS)
• Assurance that security regulations are observed at all times
• Implementation of security standards and strategies in his or her area
• Provision of reports about the implementation of security recommendations and standards
• Analysis and reporting in the event of security incidents and alerts
• Collaboration with other SAP security teams (such as SAP CERT)



5+  years professional experience in IT and/or Cybersecurity, preferably with a focus on cyber defense and vulnerability management.
Proven ability to manage and maintain complex projects and/or situations
Profound ability to work in an intercultural and virtual team environment with consistent success





Success is what you make it. At SAP, we help you make it your own. A career at SAP can open many doors for you. If you’re searching for a company that’s dedicated to your ideas and individual growth, recognizes you for your unique contributions, fills you with a strong sense of purpose, and provides a fun, flexible and inclusive work environment – apply now.

To harness the power of innovation, SAP invests in the development of its diverse employees. We aspire to leverage the qualities and appreciate the unique competencies that each person brings to the company.

SAP is committed to the principles of Equal Employment Opportunity and to providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team (Americas: or, APJ:, EMEA:

Successful candidates might be required to undergo a background verification with an external vendor.

Additional Locations

Job Segment: Manager, ERP, SAP, Computer Science, Linux, Management, Technology