Share this Job

Security Compliance Expert (T4) Job

Apply now »

Date: May 21, 2019

City: Walldorf/St. Leon-Rot, BW, DE, 69190

Company: SAP

Requisition ID: 219341
Work Area: Information Technology
Location: Walldorf/St. Leon-Rot
Expected Travel: 10%-20%
Career Status: Professional
Employment Type: Regular Full Time


SAP started in 1972 as a team of five colleagues with a desire to do something new. Together, they changed enterprise software and reinvented how business was done. Today, as a market leader in enterprise application software, we remain true to our roots. That’s why we engineer solutions to fuel innovation, foster equality and spread opportunity for our employees and customers across borders and cultures.

SAP values the entrepreneurial spirit, fostering creativity and building lasting relationships with our employees. We know that a diverse and inclusive workforce keeps us competitive and provides opportunities for all. We believe that together we can transform industries, grow economics, lift up societies and sustain our environment. Because it’s the best-run businesses that make the world run better and improve people’s lives.

Your career in one of the most exciting environments at SAP! 
Within the SAP Global Security (SGS) organization the department “Security Compliance Office” (SCO) is globally responsible for the Compliance Framework for SAP´s cloud and IT delivery units (incl. SAP S/4HANA cloud, SAP HANA Enterprise Cloud, SAP Cloud Platform, SAP Ariba, or SAP SuccessFactors, to name just a few) as well as for related compliance demand topics. SCO provides strategic cloud compliance direction and advisory services to enable SAP to be the best-run Enterprise Cloud Company. SCO acts as the trusted partner & advisor to SAP’s cloud delivery and IT units for all security compliance matters. SCO further acts as single point of contact for SAP’s external auditor and is owner of the audit engagement. The following function are owned by SCO:
•    Governance, Automation and Support
•    Certification Management
•    Internal & Customer Audit Management
•    Service Continuity Management

The primary objectives of SCO are to advise SAP´s cloud delivery and IT units on obtaining and maintaining local and global compliance and regulatory obligations to generate trust through compliance. 

The Security Compliance Expert will be appointed to the Certification Management function and is responsible to run the core elements of SCO’s audit program. Further, the role supports SCO in improving its Multi-dimensional Compliance Framework, leveraging synergies between SAP cloud and IT delivery units as well as streamlining the external audit management and execution process. The Security Compliance Expert will act as deputy team lead for Certification Management and oversee the regular (internal and external) audit activities for SCO.

The applicant should bring a demand for a challenging position in a thriving environment with the chance to develop your own ideas. Within our team, we practice a trust-based working model. If you need to work flexibly from another location or at another time you can do so given your manager’s agreement.

•    Manage engagement with external auditing bodies
•    Go to person for SCO Certification Management matters and role model for the team
•    Drive harmonization of controls to improve the internal control framework of SAP cloud delivery and IT units
•    Support SAP cloud delivery and IT units reaching Attestations and Certifications (e.g. SOC, ISO)
•    Plan and coordinate internal and external audits for SAP’S cloud and IT units
•    Evaluate and identify opportunities of potential information security and privacy impacts
•    Initiate and spur improvement potentials for SCO Certification Management


•    Expert knowledge of common certification standards for IT Security, Business Continuity & Quality Management (e.g. ISAE 3000/ISAE 3402 (SOC 1/SOC 2), ISO 27001, ISO22301, ISO 9001, C5)
•    Deep knowledge in IT enterprise operation and IT infrastructure technologies
•    Experience in auditing practices and methodology
•    Strong communication and presentation skills in English and German
•    Leadership competences and strategic thinking
•    Very good business acumen and customer focus
•    Excellent analytical capabilities and ability to challenge complexity
•    Proactive behavior, high willingness to learn and the ability to drive challenging projects
•    Result orientation and execution focus

•    Certification in leading practices for IT processes and controls (e.g. ITIL, COBIT)
•    ISO 27001 Lead Auditor or ISACA CISA certification is an advantage
•    Experience in implementing industry specific IT compliance requirements (GxP, HIPAA, PCI-DSS, etc.)

8+ years’ professional experience in Security Compliance (IT Audit, Risk, Compliance, Operations).



Success is what you make it. At SAP, we help you make it your own.

A career at SAP can open many doors for you. If you’re searching for a company that’s dedicated to your ideas and individual growth, recognizes you for your unique contributions, fills you with a strong sense of purpose, and provides a fun, flexible and inclusive work environment – apply now.

To harness the power of innovation, SAP invests in the development of its diverse employees. We aspire to leverage the qualities and appreciate the unique competencies that each person brings to the company.

SAP is committed to the principles of Equal Employment Opportunity and to providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team (Americas: or, APJ:, EMEA:

Successful candidates might be required to undergo a background verification with an external vendor.


Job Segment: Compliance, ERP, Quality Manager, Law, Legal, Security, Technology, Quality