We help the world run betterAt SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choosefrom.SAP People Protect, Global Physical Security mission is to provide Best-in-Class Physical Security Solutions, meeting Industry Best Practices to Protect SAP Brand, Personnel and Assets. People Protect, Physical Security is the Primary Physical Security Stakeholder in the SAP Organization, managingvarious Physical Security Services to ensure the Physical Safety and Security of SAP, and its Assets (Data, Facilities, Peoples, Products, Processes).Global Physical Security Global Head of Insider ThreatThis position will be accountable for leading the creation of an organization responsible for the standards and procedures specific to the identification, monitoring, testing, evaluation, and governance of insider risk processes and controls for the company. You will leverage your expertise and experience to advance the companys framework and program for identifying and mitigating threats and related insider risks. The leader will work closely with various partners within SAP, including but not limited to Cyber Defense, Cyber IR and Recovery, IT, Global Cloud Services, Security Risk Management & Compliance, Legal, Human Resources, and Government Services, as well as external partners. This role provides an opportunity to work across a large and complex organization that features prominently in both U.S. critical infrastructure and the global financial ecosystem. The Global Head is expected to bring strong leadership to a small, expert team and to guide efforts to leverage technical and non-technical datasets for early detection of and response to insider risks. Lastly, the leader is responsible for leading collaboration and partnership with cross-functional stakeholders and Line of Business leadership across the organization to guide insider risk inquiries, investigations, and incidents.EXPECTATIONS AND TASKS
Coordinate development and execution of the Insider Threat Program across key stakeholders including Cyber Security (Defense and IR), Human Resources, Legal, Security Risk & Compliance
Leverage corporate and industry frameworks to structure Insider the insider risk framework and program
Develop a strategy to govern Insider Threats across the company working closely with the Intelligence, Threat, and Crisis Management, Cyber Threat Intelligence, Corporate Security Investigations, and various domain owners.
Assess processes, controls, technologies, metrics, and reporting used for Insider Risk.
Engage with various security and control teams understand the control environment, both procedural and technical
Partner closely with programs on Insider Risk, Strategic Threats, Workplace Violence, and key stakeholders
Collaborate on the build and implementation of processes and technologies to detect high-risk insider activities that are accidental or malicious in nature
Develops mechanisms to monitor and test the effectiveness of insider risk solutions and associated analytical models
Work to identify and implement opportunities for continuous program improvement.
Liaison with external industry resources (e.g., law enforcement, government, emergency responders, industry peers & associations, etc.)
REQUIRED EDUCATION AND QUALIFICATIONS / SKILLS AND COMPETENCIES
BS/BA Degree preferred
10 years proven experience in program management and development of an Insider Threat/Risk Program
Extensive knowledge of governance and risk management frameworks
Demonstrated technical acumen and extensive experience in and knowledge of cybersecurity architecture, controls, and operations.
Skills Required: Requires seven (7) years of experience in the following: Security Architecture; Financial Services; Security Operations; Security Monitoring; Security Incident Response; Cyber Forensics; Vulnerability Management; Desktop and Server Security; Network Security; Perimeter Security; Data Security; Cloud and Third-Party Security; and working with regulators.
10 years proven experience in risk and security fields - e.g., cyber security, physical security, human threat detection, insider threat, behavior analytics, counterintelligence
Knowledge of compliance, conduct, and operational risk management frameworks and processes; ability to anticipate and identify risks and effective mitigants
ADDITIONAL INFORMATION
This position requires travel globally
This position requires positive partnership skills, effective communications, and positive human relations in business capabilities
This position must be able to perform the full range of strategic business planning objectives, procedure and business analytics capabilities
Strong organizational, project management, and multi-tasking skills with demonstrated ability to manage expectations and deliver results
The selected candidate must maintain all applicable licenses and certifications as required
Bring out your bestSAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves.At SAP,you can bring out your best.We win with inclusionSAPs culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone regardless of background feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world.SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team: [email protected] SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy (https://one.int.sap/me@sap/jobsatsap#17498858-1050-415e-8d82-21f91655666b96fc) . Specific conditions may apply for roles in Vocational Training.EOE AA M/F/Vet/Disability:Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability.Successful candidates might be required to undergo a background verification with an external vendor.Requisition ID: 398642 | Work Area: Administration | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations: #LI-Hybrid.