Finde einen Job 
Finde eine Ausbildung 
Top Arbeitgeber 
Top Universitäten 
Für Unternehmen Auf einen Blick
- Aufgaben: Ensure the security of our multi-tenant cloud product through assessments and automated tools.
- Arbeitgeber: Join msg global solutions, a leader in SAP solutions and managed services.
- Mitarbeitervorteile: Enjoy competitive salaries, a Company Bike, Employee Wellbeing Benefits, and a new office space.
- Warum dieser Job: Be part of a diverse team where your expertise can drive innovation and security culture.
- Gewünschte Qualifikationen: 7+ years in cloud product security with strong skills in assessments and penetration testing.
- Andere Informationen: Fluency in English is required; collaboration with global experts awaits!
Das voraussichtliche Gehalt liegt zwischen 54000 - 84000 € pro Jahr.
msg global solutions
msg global solutions is a systems integrator, software development partner and managed services provider focused on SAP solutions.
As a Senior Security Expert, you will play an essential role in ensuring the security of our multi-tenant cloud product. You will focus on product security, work proactively with DevOps Engineers, Developers, QA Engineers, System Analysts, and Project Managers to integrate robust security measures, and ensure a secure product lifecycle. Your role will involve hands-on security assessments, implementing automated security tools, and representing product security both within the organization and externally.
- Conduct threat modeling and risk assessments to identify and prioritize vulnerabilities in our multi-tenant cloud environment as well as set security requirements from the start of the development lifecycle.
- Lead static (SAST) and dynamic (DAST) application security testing, as well as SAP-initiated validations like penetration tests to ensure vulnerabilities are remediated prior to deployment.
- Oversee the integration and maintenance of security tools (e.g., Mend, Checkmarx) in CI/CD pipelines, manage ticket processing for vulnerabilities and drive continuous automation in security testing.
- Integration of Security in the Development Lifecycle (SDLC):
- Embed security throughout the SDLC, enforce secure coding standards and collaborate with DevSecOps to integrate automated security checks.
- Drive the setup and integration of additional security checks (e.g., Docker binary scans) within development pipelines to ensure comprehensive product security.
- Identity and Access Management (IAM):
- Implement identity and access management (IAM) policies, enforce least privilege principles, and manage role-based access control (RBAC) with DevOps to secure multi-tenant environments.
- Security Policy Development and Enforcement:
- Develop, document, and enforce security policies and standards, while integrating best practices across the product lifecycle.
- Regularly review and adjust policies to align with the latest security threats and industry as well as SAP standards.
- External Representation and Product Security Advocacy:
- Represent product security in interactions with SAP and external stakeholders, while leveraging expertise in cloud security to address challenges and drive innovation, including initiatives like Zero Trust Architecture.
- Develop an in-depth understanding of the product’s architecture and infrastructure to provide comprehensive security insights.
- Conduct regular security training for development and operations teams, promoting secure coding and a security-first culture.
- Keep teams updated on emerging threats, vulnerabilities, and best practices.
What we are looking for
Requirements
- Minimum 7 years of proven experience in cloud product security, ideally with exposure to SAP BTP or similar platforms.
- Strong technical expertise in security assessments, penetration testing, threat modeling, and managing product security response processes.
- Hands-on experience with security scanning tools (e.g Mend, Checkmarx) along with SAST/DAST testing capabilities and familiarity with Docker and binary scanning tools.
- Knowledge of security frameworks (like OWASP).
- Demonstrated ability to lead initiatives and drive continuous security improvements in a collaborative environment.
- Strong communication and collaboration skills to work effectively with DevOps, DevSecOps, compliance as well as engineering teams.
- A proactive, hands-on approach to security with the ability to advocate for security best practices at all levels.
- Fluency in English, written and spoken.
What we offer
- A place where individuals are equally valued and where diversity and cultural differences are cherished.
- A global team of highly respected SAP and industry experts where you can make a difference.
- Competitive salaries and a broad range of benefits (Company Bike, Employee Wellbeing Benefits, New Office Space…)
#J-18808-Ljbffr
Senior Security Expert (m/f/d) Arbeitgeber: msg global solutions
Kontaktperson:
msg global solutions HR Team
StudySmarter Bewerbungstipps 🤫
So bekommst du den Job: Senior Security Expert (m/f/d)
✨Tip Number 1
Familiarize yourself with the specific security tools mentioned in the job description, like Mend and Checkmarx. Having hands-on experience with these tools will not only boost your confidence but also demonstrate your readiness to hit the ground running.
✨Tip Number 2
Brush up on your knowledge of cloud security frameworks, especially OWASP. Being able to discuss these frameworks during your interview will show that you understand the broader context of security in cloud environments.
✨Tip Number 3
Prepare to share examples of how you've successfully integrated security into the development lifecycle in past roles. This will highlight your proactive approach and ability to collaborate effectively with cross-functional teams.
✨Tip Number 4
Stay updated on the latest trends and threats in cloud security. Being knowledgeable about current challenges will allow you to engage in meaningful discussions and showcase your commitment to continuous learning and improvement.
Diese Fähigkeiten machen dich zur top Bewerber*in für die Stelle: Senior Security Expert (m/f/d)
Tipps für deine Bewerbung 🫡
Understand the Role: Make sure you fully understand the responsibilities and requirements of the Senior Security Expert position. Tailor your application to highlight your relevant experience in cloud product security, especially with SAP BTP or similar platforms.
Highlight Relevant Experience: In your CV and cover letter, emphasize your minimum 7 years of experience in cloud product security. Include specific examples of your work with security assessments, penetration testing, and managing product security response processes.
Showcase Technical Skills: Detail your hands-on experience with security scanning tools like Mend and Checkmarx, as well as your familiarity with SAST/DAST testing capabilities. Mention any experience with Docker and binary scanning tools to strengthen your application.
Communicate Effectively: Since strong communication and collaboration skills are essential for this role, ensure that your application reflects your ability to work effectively with diverse teams. Use clear and concise language to convey your ideas and experiences.
Wie du dich auf ein Vorstellungsgespräch bei msg global solutions vorbereitest
✨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with security assessments, penetration testing, and security scanning tools like Mend and Checkmarx. Highlight specific projects where you successfully integrated security measures into the development lifecycle.
✨Demonstrate Collaboration Skills
Since the role involves working closely with DevOps, Developers, and Project Managers, share examples of how you've effectively collaborated in past roles. Emphasize your ability to communicate security needs and advocate for best practices across teams.
✨Discuss Security Frameworks Knowledge
Familiarity with security frameworks like OWASP is crucial. Be ready to explain how you've applied these frameworks in your previous work and how they can enhance product security in a multi-tenant cloud environment.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world security challenges. Think about potential vulnerabilities in cloud environments and how you would address them, including threat modeling and risk assessments.
