Product Security Engineer Associate Focus on Pe...

@ SAP

About SAP

We help the world run better. At SAP, you bring your best and we bring out the best in you. We operate in over 20 industries and 80% of global commerce with a strong culture of inclusion, personal development, and innovation.

Role Overview

The Product Security Engineer Associate Focus on Pentesting will join the SAP Signavio Security, Compliance and Governance team. In this role, you will work on hacking simulations, evaluate customer and vendor reports, operate the Bug Bounty Program, and consult with engineering teams to mitigate security vulnerabilities.

• Conduct internal pentests and produce reports.
• Perform threat modeling and risk assessments.
• Engage in penetration test retesting and validation.
• Collaborate on security engineering activities.
• Use tools such as Kali Linux and AI pentesting approaches.

What You'll Bring

You should have a bachelor’s degree in Computer Science or a related STEM field with a focus on security. A minimum of 1.5 years' experience in security engineering, particularly pentesting, is required, along with programming skills and a solid background in software development and vulnerability resolution.

• Hands-on experience with pentest tools.
• Strong communication skills in English.
• Experience with SAP Signavio cloud applications is a plus.
• Ability to perform both internal and coordinated external pentests.

Team & Culture

SAP Signavio is the guardian of SAP’s process management and analytics products. You will interact with international experts and work across multiple locations including Berlin, St. Leon Rot, Dresden, and Sofia. Enjoy a collaborative environment that values learning, wellbeing, and growth.

Key Skills/Competency

• Pentesting
• Security Engineering
• Threat Modeling
• Vulnerability Management
• Bug Bounty
• Kali Linux
• AI Pentesting
• Software Development
• Risk Assessment
• Compliance