Diese Stelle teilen
Sekretariat / Assistenz

(Senior) Security Risk Specialist (f/m/d)

What we offer

Our company culture is focused on helping our employees enable innovation by building breakthroughs together. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from. Apply now!


  • Understand applicable regulations, guidelines and industry best practices, furthermore, contribute towards the execution of SAP's standards specific set by enterprise governance and SAP Global Security policies and procedures as applicable to security governance, risk and compliance requirements.
  • Act as the subject matter expert within corporate functions for Application (AppSec) and Operational (OppSec) security risk management and related activities and all security matters.
  • Oversee security risks, targeted security risks assessments and other security project reviews as identified across all aspects of SAP Global Security, including cybersecurity, enterprise security architecture, business continuity and disaster recovery, security-related IT functions.
  • Perform ongoing compliance monitoring activities with corporate standards and measure alignment with various frameworks and regulations.
  • Review security exceptions for the specific corporate function and reinforce the identification of security risks.
  • Perform periodic security risk assessments by using mathematical models such as Factor Analysis of Information Risk Model (FAIR) to determine optimum investments that will minimize security risk to SAP and its customers
  • Advise the corporate leadership on risk reduction proposals with cost justification.
  • Monitor and enhance the risk mitigation strategies and plans to help bring open security risks to closure.
  • Work independently, as well as with internal and external business partners for any third-party assessments on security functions 
  • Develop and monitor security risk metrics supported by comprehensive workflow automation and provide periodic updates to the executive management on security risk and compliance efforts
  • Provides leadership, mentoring, and training to security personnel and to other SAP stakeholders to establish a formal information security risk appetite for SAP
  • Demonstrate proven expertise and success managing simultaneous project work streams in system security, cybersecurity controls or information security management environment, specifically on NIST-domains



  • BA/BS in Computer Science, Information Security, Business Administration or related work experience 
  • Security certification, e.g. CISSP, CISA - CRISC preferred
  • Ability to demonstrate analytical expertise, close attention to detail, excellent conflict resolution and negotiation skills, logic, and solution orientation and to learn and adapt quickly, thinking out of the box mindset
  • Experience with information security compliance audit frameworks and requirements, e.g. NIST, COBIT, CMMI, ISO27001, FISMA, FedRAMP, SOC, SOX, PCI-DSS, GDPR and Data Privacy
  • Minimum of five years information security, audit, risk management, compliance or risk consulting related experience preferred
  • Minimum of five years of managing IT initiatives/project management required
  • Experience using Governance, Risk and Compliance (GRC) tools and Factor Analysis of Information Risk Model (FAIR) preferred



The Strategic Operations Team within the SAP Global Security’s Cybersecurity Defense and Design organization manages all strategic objectives, projects and engagements for the cybersecurity organization.





We are SAP

SAP innovations help more than 400,000 customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with 200 million users and more than 100,000 employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, we build breakthroughs, together.


Our inclusion promise

SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.


SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Americas: or, APJ:, EMEA:


EOE AA M/F/Vet/Disability:

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.

Successful candidates might be required to undergo a background verification with an external vendor.

 Requisition ID:297420 | Work Area: Sekretariat / Assistenz | Expected Travel: 0 - 10% | Career Status: Berufserfahren | Employment Type: Vollzeit, unbefristet  | Additional Locations: 

(Senior) Security Risk Specialist (f/m/d)

Einrichtung:  297420
Datum:  08.10.2021
Kategorie:  Sekretariat / Assistenz
Benutzerdefiniertes Feld 3:  Berufserfahren
Schichttyp:  Vollzeit, unbefristet
Reisen:  0 - 10%

Walldorf, DE, 69190