Breach and Attack Simulation Engineer

At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choosefrom.

We are seeking a Breach and Attack Simulation Engineer to join our global cybersecurity team. In this role, you will leverage your threat detection or incident response experience to simulate real-world cyber attacks, testing and enhancing our organization's security controls. The ideal candidate will have a strong technical background, hands-on experience with various security tools, and a passion for cybersecurity

Responsibilities:

1.Breach and Attack Simulation (BAS):Plan, execute, and manage advanced breach and attack simulations, replicating the tactics, techniques, and procedures (TTPs) of real-world threat actors to identify and address vulnerabilities in our systems, networks, and applications.

2.Red/Purple Teaming:Collaborate with our red team and blue team members to assess and improve our enterprise's defensive posture, emphasizing a purple teaming approach to maximize learning and improvement opportunities.

3.Detection Engineering:Evaluate and enhance existing detection rules, log sources, and monitoring capabilities based on simulation findings and real-world threats.

4.Incident Response:Participate in incident response activities, providing support in threat identification, containment, and eradication.

5.Threat Intelligence:Integrate threat intelligence into simulations and security processes to ensure our organization is protected against emerging threats.

6.Security Awareness:Contribute to security awareness programs by creating and delivering advanced training sessions and workshops, focusing on sophisticated threats and attack trends.

7.Collaboration:Work closely with other security teams, IT departments, and external vendors to ensure aligned and effective security measures.

8.Documentation and Reporting:Maintain detailed records of all testing activities, findings, and remediation steps. Prepare and present comprehensive reports to both technical and non-technical stakeholders

Required Qualifications:

1.Education:Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).

2.Experience:2-4 years of professional experience in detection engineering, incident response, or a similar role within a large, global enterprise.

3.Certifications:Industry-recognized certifications such as OSCP, GPEN, GCIH, GCFA, GMON, GCDA or similar.

4.Technical Skills:
- Proficiency with operating systems (Windows, Unix/Linux) and strong networking concepts.
- Experience with various security tools and frameworks (e.g., Metasploit, Wireshark, Burp Suite, Nmap, Splunk, MITRE ATT&CK, MITRE D3FEND).
- Familiarity with SIEM systems, EDR solutions, and other security monitoring tools.
- Knowledge of programming/scripting languages (e.g., Python, PowerShell) to automate tasks and develop custom tools.

5.Soft Skills:
- Excellent communication and teamwork skills, with the ability to collaborate effectively across diverse teams.
- Strong problem-solving abilities and a tenacious approach to challenging security problems.
- Capability to work independently and manage multiple projects concurrently.

Preferred Qualifications:

1.Global Experience:Prior experience working in a large, multinational enterprise environment.
2.Threat Intelligence:Experience with threat intelligence platforms and integrating threat intelligence into security operations

Bring out your best

SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP,you can bring out your best.

We win with inclusion

SAP’s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone – regardless of background – feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.
SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: Careers@sap.com
For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy . Specific conditions may apply for roles in Vocational Training.

EOE AA M/F/Vet/Disability:

Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.
Successful candidates might be required to undergo a background verification with an external vendor.

Requisition ID: 427150 | Work Area: Information Technology | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations: #LI-Hybrid.

Job Segment: Testing, Cloud, ERP, Computer Science, Cyber Security, Technology, Security