SAP SE
Threat Detection Engineer
SAP SE, Newtown Square, Pennsylvania, United States,
At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.An SAP Threat Detection Engineer is a crucial defender and protector of SAP’s digital enterprise. As a member of SAP’s Global Security and Cloud Compliance organization, our Threat Informed Detection Engineering team is responsible for safeguarding data and assets using industry-leading methods for developing new detection capabilities and managing the detection lifecycle. Leveraging intelligence-driven threat assessments, the team proactively and continuously assesses susceptibility to attacker behaviors, tactics, and techniques to identify risks in SAP's control plane.The Role
The Detect Organization is looking for experienced Threat Detection Engineers to be an integral part of our Detect Organization. This role will focus on executing a multi-year strategy to proactively, automatically, and continuously test and validate SAP’s protection against and ability to detect the most relevant threats to the business.As a part of the Detection Engineering team, you will:Enable streamlined and effective customer collaboration by integrating scalable Detection as Code techniques seamlessly into our service offerings.Focus on adversary emulation and continuous validation.Develop and engineer security use cases to mimic attacker behaviors.Automate recurrence of use case execution across a diverse enterprise landscape.Support a threat intelligence driven approach to identifying the most relevant risks.Leverage offensive capabilities to continuously identify risks in SAP’s control plane.Partner with Lines of Businesses to enable a central Detection service.Adopt a modern closer-to-the-source mentality to find threats in real time.Own key objectives and work with our partners across the company.Role Requirements
We are looking for analytical, critical thinking, solution-oriented problem solvers. You should be quick to learn, adapt, and operate in a large dynamic environment.You will also need to have the following technical skills and experience:5+ years relevant work experience.Demonstrated knowledge of attacker methods and frameworks.Demonstrated experience with adversary emulation and/or offensive security.Comfortable with Agile, Scrum, Program Increment Planning.Experience in either a development and/or DevOps role.Experience with configuration management tools like Terraform, Puppet, Chef.Experience with more than one major cloud platform.Familiarity with multiple modern programming languages and data analysis techniques.Knowledge of Container and orchestration technologies.Able to work in a global environment across multiple time zones.Experience with a 24/7 security operational environment (SOC, Incident Response, NOC, Threat Intelligence, etc.).Familiarity with adversary emulation tools (ex. Atomic Red Team).Attack path mapping using industry frameworks and methodologies.Experience creating and tuning threat detection rules.Familiarity with using and configuring Endpoint Detection & Response (EDR).OSCP, OSCE, SANS or similar certifications.Compensation Range Transparency
SAP believes the value of pay transparency contributes towards an honest and supportive culture and is a significant step toward demonstrating SAP’s commitment to pay equity. SAP provides the annualized compensation range inclusive of base salary and variable incentive target for the career level applicable to the posted role. The targeted combined range for this position is 117300 - 246400 (USD) USD. The actual amount to be offered to the successful candidate will be within that range, dependent upon the key aspects of each case which may include education, skills, experience, scope of the role, location, etc. as determined through the selection process.
#J-18808-Ljbffr
The Detect Organization is looking for experienced Threat Detection Engineers to be an integral part of our Detect Organization. This role will focus on executing a multi-year strategy to proactively, automatically, and continuously test and validate SAP’s protection against and ability to detect the most relevant threats to the business.As a part of the Detection Engineering team, you will:Enable streamlined and effective customer collaboration by integrating scalable Detection as Code techniques seamlessly into our service offerings.Focus on adversary emulation and continuous validation.Develop and engineer security use cases to mimic attacker behaviors.Automate recurrence of use case execution across a diverse enterprise landscape.Support a threat intelligence driven approach to identifying the most relevant risks.Leverage offensive capabilities to continuously identify risks in SAP’s control plane.Partner with Lines of Businesses to enable a central Detection service.Adopt a modern closer-to-the-source mentality to find threats in real time.Own key objectives and work with our partners across the company.Role Requirements
We are looking for analytical, critical thinking, solution-oriented problem solvers. You should be quick to learn, adapt, and operate in a large dynamic environment.You will also need to have the following technical skills and experience:5+ years relevant work experience.Demonstrated knowledge of attacker methods and frameworks.Demonstrated experience with adversary emulation and/or offensive security.Comfortable with Agile, Scrum, Program Increment Planning.Experience in either a development and/or DevOps role.Experience with configuration management tools like Terraform, Puppet, Chef.Experience with more than one major cloud platform.Familiarity with multiple modern programming languages and data analysis techniques.Knowledge of Container and orchestration technologies.Able to work in a global environment across multiple time zones.Experience with a 24/7 security operational environment (SOC, Incident Response, NOC, Threat Intelligence, etc.).Familiarity with adversary emulation tools (ex. Atomic Red Team).Attack path mapping using industry frameworks and methodologies.Experience creating and tuning threat detection rules.Familiarity with using and configuring Endpoint Detection & Response (EDR).OSCP, OSCE, SANS or similar certifications.Compensation Range Transparency
SAP believes the value of pay transparency contributes towards an honest and supportive culture and is a significant step toward demonstrating SAP’s commitment to pay equity. SAP provides the annualized compensation range inclusive of base salary and variable incentive target for the career level applicable to the posted role. The targeted combined range for this position is 117300 - 246400 (USD) USD. The actual amount to be offered to the successful candidate will be within that range, dependent upon the key aspects of each case which may include education, skills, experience, scope of the role, location, etc. as determined through the selection process.
#J-18808-Ljbffr