remote

Information Security Third Party Risk - SAP Global Security and Cloud Compliance

Software Engineer

Lead third‑party risk and cloud compliance initiatives for SAP’s global security program, driving risk assessments, vendor controls, and security standards across the enterprise.

About the role

Key Responsibilities

Conduct comprehensive risk assessments of third‑party vendors and cloud services, identifying security gaps and mitigation strategies.
Develop and maintain risk management frameworks aligned with SAP’s global security and compliance policies.
Collaborate with cross‑functional teams to implement vendor controls, monitor performance, and enforce contractual security requirements.
Lead incident response activities related to third‑party security events and coordinate remediation efforts.
Provide expert guidance on cloud security best practices and emerging threats to stakeholders.

Requirements

5+ years of experience in information security, risk management, or third‑party risk within a large enterprise.
Deep knowledge of SAP security architecture, cloud compliance standards (e.g., ISO 27001, SOC 2, NIST), and regulatory requirements.
Proven ability to assess, document, and mitigate vendor risks using industry‑standard tools and methodologies.
Strong communication skills, capable of translating technical findings into actionable business recommendations.
Experience with risk assessment frameworks such as FAIR or NIST SP 800‑30 is a plus.

Skills

sap

CompanySAP

DepartmentEngineering

LocationSão Leopoldo, Bihar, India

Experience3+ years

Tenurefull-time

LevelMid-Level

Posted June 27, 2026