Security Monitoring & Incident Response Analyst

We help the world run better. At SAP, we keep it simple: you bring your best to us, and we\'ll bring out the best in you. We operate across multiple industries and global commerce, and we need your talents to help shape what\'s next. The work is challenging but meaningful, with a focus on wellbeing and belonging. The role includes learning opportunities, skill growth, and a supportive team.

Location: This is a hybrid role based in Montreal. Hybrid is 3 days onsite and 2 days remote.

As a Security Monitoring & Incident Response Analyst in the SAP Business Technology Platform (BTP) Security Risk Management team, you will help enable secure and compliant software across DevOps teams. You will work with state-of-the-art technology to achieve high levels of security and compliance by developing, evaluating and implementing detection rules, and by supporting security monitoring and incident response through alert handling, triage and incident response to protect company assets.

Context: SAP BTP is SAP’s multi-cloud PaaS offering and the foundation for SAP cloud products; thousands of customers rely on it for critical business applications.

You should have demonstrated experience in cyber-attack analysis and working in a 24/7/365 environment managing cases with enterprise SIEM or Incident Management systems. Experience supporting cross-functional, cross-organizational teams is highly desirable.

• University degree in IT or related field (e.g., computer science, physics, mathematics or other STEM disciplines) or equivalent qualifications
• Knowledge and experience in security monitoring, incident response and security information and event monitoring (SIEM)
• Understanding of cloud technologies (e.g., Kubernetes, Cloud Foundry) and DevOps/Agile or Lean development practices
• Initial knowledge of information security frameworks and requirements (e.g., NIST, SOC)
• Security certifications such as CISSP, CCSP, CISA, GCFA, GCIH, GCIA, GNFA are an asset
• Proactive mindset, strong ownership and teamwork
• Fluent English (spoken and written)

The Security Risk Management team for SAP BTP covers many security and compliance domains. We take a risk-based approach to security, supporting thousands of colleagues across the BTP organization to find efficient and technically sound solutions.

Votre rôle: SAP Business Technology Platform (BTP) est l’offre PaaS multi-Cloud de SAP et la base technologique des produits SAP cloud. Des milliers de clients utilisent BTP pour exécuter des applications essentielles, et la sécurité des données ainsi que la conformité avec les lois et réglementations est primordiale. Vous travaillerez comme analyste responsable du contrôle de la sécurité et de la réponse aux incidents dans l’équipe Gestion des risques pour la sécurité BTP, en collaboration avec Walldorf et les équipes DevOps, afin de créer et exploiter des logiciels sécurisés et conformes.

Profil recherché:

• Diplôme universitaire en informatique ou domaine lié (physique ou mathématiques dans les disciplines STEM) ou qualifications équivalentes
• Connaissances de base en contrôle de la sécurité, réponse aux incidents et gestion des informations et des événements de sécurité (SIEM)
• Connaissances initiales des technologies cloud (Kubernetes, Cloud Foundry) et des cadres/pratiques DevOps Agile ou Lean
• Connaissances initiales des cadres de sécurité des informations (ex. NIST, SOC)
• Certifications de sécurité (CISSP, CCSP, CISA, GCFA, GCIH, GCIA, GNFA) souhaitables
• Esprit proactif, sens des responsabilités et esprit d’équipe
• Anglais courant

We operate with a focus on inclusion, wellbeing, and flexible work models. SAP is committed to equal employment opportunity and provides accessibility accommodations for applicants with disabilities. For accommodation requests, contact Recruiting Operations Team: Careers@sap.com.

AI Usage and Compliance: For information on the responsible use of AI in our recruitment process, refer to our guidelines. Any violation may result in disqualification.