Share this Job

SAP NS2 Cyber Risk Management Analyst-Herndon-20171 Job

Apply now »

Date: Mar 18, 2019

City: Herndon, VA, US, 20171

Company: SAP

Requisition ID: 203968
Work Area: Administration
Expected Travel: 0 - 10%
Career Status: Professional
Employment Type: Regular Full Time



SAP started in 1972 as a team of five colleagues with a desire to do something new. Together, they changed enterprise software and reinvented how business was done. Today, as a market leader in enterprise application software, we remain true to our roots. That’s why we engineer solutions to fuel innovation, foster equality and spread opportunity for our employees and customers across borders and cultures.
SAP values the entrepreneurial spirit, fostering creativity and building lasting relationships with our employees. We know that a diverse and inclusive workforce keeps us competitive and provides opportunities for all. We believe that together we can transform industries, grow economics, lift up societies and sustain our environment. Because it’s the best-run businesses that make the world run better and improve people’s lives.

SAP NS2 Cyber Risk Management Analyst-Herndon-20171



SAP is the global market leader for business software and related services, and SAP National Security Services Inc.® (SAP NS2®) is an independent U.S. subsidiary, offering SAP solutions with specialized levels of security and support to meet the requirements of U.S. national security and critical infrastructure customers.

Must be a U.S. Person; NS2 does not offer Visa sponsorship for this role

All internals must have manager’s approval to transfer



Roles and Responsibilities:

Cyber Risk Management Analyst will work in a collaborative effort with the IT and business units to assure operational and system security, technical controls and risks are properly accounted for and managed within security frameworks. Working for the Cybersecurity department, the Cyber Risk Management Analyst, functions as a highly skilled control and risk consultant responsible for leading internal privacy, security, risk and IT audits and assessments. - In this position, the analyst will be responsible for auditing systems, analyzing findings, and developing security controls and procedures.  The analyst will also complete IT security and compliance assessments and evaluate compliance questionnaires.  Responsibilities include; Perform comprehensive risk assessments and analysis over IT processes sufficient to scope security audits across the organization.  Design and execute walkthroughs and tests of effectiveness over controls in the entity, business units, IT, applications, and infrastructure, in support of various audits (e.g., NIST 800-171, NIST 800-53, internal audits).  Brief management and control owners on results of analysis and reviews and provide recommendations. Follow up on management corrective actions.  Collaborate with departments to improve security compliance, manage risk and bolster effectiveness. Develop best practice recommendations to improve security on all levels

Minimum Qualifications: To be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:

  • Bachelor's degree in a related field or equivalent professional experience required
  • Minimum 5 years IT experience with three or more years of practical experience in a cyber threat analysis or security technology role
  • Advanced knowledge of the following:
  • information systems security concepts and technologies;
  • network architecture and tools;
  • general database concepts;
  • hardware and software troubleshooting;
  • Ability to effectively communicate at all levels, both verbal and written
  • Demonstrated experience with security & risk frameworks, standards and best practices (e.g.: NIST, HIPAA, PCI, SOX, DFARS, ISO/IEC standards, etc.).

Candidates with these desired skills will be given preferential consideration:

  • Certified Information Systems Security Professional (CISSP)
  • Certificate programs in relevant areas



Success is what you make it. At SAP, we help you make it your own.
A career at SAP can open many doors for you. If you’re searching for a company that’s dedicated to your ideas and individual growth, recognizes you for your unique contributions, fills you with a strong sense of purpose, and provides a fun, flexible and inclusive work environment – apply now.

To harness the power of innovation, SAP invests in the development of its diverse employees. We aspire to leverage the qualities and appreciate the unique competencies that each person brings to the company.

SAP is committed to the principles of Equal Employment Opportunity and to providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team. ( or, APJ:, EMEA: Requests for reasonable accommodation will be considered on a case-by-case basis. Successful candidates might be required to undergo a background verification with an external vendor.

EOE AA M/F/Vet/Disability:
Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, gender, sexual orientation, gender identity, protected veteran status or disability.

Successful candidates might be required to undergo a background verification with an external vendor.
Additional Locations:

Nearest Major Market: Washington DC

Job Segment: Risk Management, Manager, SAP, ERP, Information Systems, Finance, Management, Technology