SAP CyberSecurity Champion

Job Description:

A 1/Job title:  (job posting title) 

DIS - SAP CyberSecurity Champion (m/f)

2/Context: (job description)

A vacancy for the SAP Security Champion has arisen within Airbus Commercial Aircraft in Toulouse. You will join the ERP Platform team (DIS).

The ERP Platform product and service line (PSL) is the trusted partner for IM teams along Airbus business transformation journey.

Our ambition is to enable the future of Airbus SAP ecosystem with sustainable, performant (technically and financially) and well secured SAP platforms.

The ERP footprint at Airbus, and especially Airbus Commercial, is significant. It addresses  heterogeneous processes and has to comply with local restrictions in various business domains: manufacturing, finance, sales, procurement & logistics, human resources… 

With more than 150,000 end users and 60 productive systems integrated with heterogeneous platform versions using different integration patterns, it is key to have the right level of expertise in the definition of the best solutions in terms of robustness, security and quality.

The ERP Platform is a transversal organization acting as a center of competence for any SAP related matter: from infrastructure to user experience activities, with technology and functional architecture/expertise. Our team is organized as an agile-at-scale team, with several squads working in parallel to deliver products in a user centric approach (customer satisfaction). Therefore, we are in contact with every Airbus Business domain using SAP as a digital backbone, from manufacturing to customer services, finance, procurement, etc.

You will integrate, within the ERP Platform Product & Service Line, a SAFe/agile team dedicated to Compliance & Security of Airbus Commercial SAP platforms and will interact with other ERP platforms in charge of the platform operations, with Airbus CyberSecurity central teams, with the SAP application owners and with the SAP infrastructure provider.

This role is part of our Airbus Group efforts to strengthen the Security of our key SAP platforms and associated processes. 

You will be a SAP and CyberSecurity champion in an international and multicultural environment, to define the CyberSecurity guidelines of SAP platforms, support the deployment of these guidelines and the associated remediation plan, contribute to monitor the adherence and support the application teams to implement secure-by-design SAP solutions.

3/ Tasks & accountabilities: (job desc)

As SAP CyberSecurity champion for ERP Platform, you will :

• Support the SAP Cybersecurity initiative focusing on SAP platforms hardening and monitoring

• Adapt Airbus CyberSecurity guidelines and requirements to the Airbus SAP environment and define the SAP best practices

• Deploy solutions to increase the security compliance of the SAP platforms/applications

• Deploy solutions to monitor the security compliance of the SAP platforms/applications 

• Analyze the critical vulnerabilities and define the mitigation action plans

• Develop specific risk analysis, defining proposals to manage and reduce risks

• Provide reports for IM and IM Cyber Security Management on a regular basis

• Participates to the technology watch within the SAP Security Community of Practice 

• Ensures applicability of the SAP Security Community of Practice guidance to the product context

• Ensures implementation of the SAP Security Community of Practice guidelines and knowledge upskilling across the teams

• Raises product specificities and needs to SAP Security Community of Practice lead

• Support the arbitration between CyberSecurity requirements, Airbus SAP roadmaps, application and business impacts

• Supports the definition and contribute to the implementation of action plans for identified Security gaps

4/Required skills / experience : (job desc)

You will have the following skills and experience :

• Bachelor&39;s or Master&39;s Degree in Information Technology 

• Solid experience in Information Management

• Great communication, collaborative culture across multiple regions

• Negotiation Level of English

On a SAP and cybersecurity level, the following experience and knowledge are required:

• 7&43; years of experience with SAP products/solutions

• Solid technical expertise and working experience in SAP Solutions, SAP technology and products especially at infrastructure and operations level

• Strong security related background in SAP Solutions and SAP technology and products 

• Knowledge of security hardening of OS, software applications, network, cloud and web

• Knowledge of network and application security architecture and operating systems

• Experience in Cybersecurity consulting and systems integration

• Solid network, communications & authentication protocols knowledge 

• Knowledge of systems and application security architecture integration and development

• Understanding of application and software development

• Familiarity with “Security-by-Design” concepts and security remediation approaches

• Knowledge of the key players in the CyberSecurity market would be appreciated

• Understanding of vulnerability management: identification, impact and resolution.

• Good understanding of Authorizations Concepts, understanding of different authentication technologies, threat handling and SIEM (Security Information Event Management)

• Working Experience with Log Collectors, SIEM and in threat monitoring for Applications

• Ability to have a “Hacker mindset”: Curiosity, willingness to understand how things work, how to break and fix them

• Highly innovative mindset and permanently challenging the status quo

• Passionate about SAP, Security and Technology

• Ability to coordinate a set of complex activities within the product

On a behavioral level, the following qualities are required:

• Team spirit

• Excellent analytical and problem solving skills; proven experience in identifying solutions for complex problems

• Result orientation and execution focus

• Proactive behavior, quick Learner, passionate, motivated and self-managed

• Sense of keeping commitments and customer satisfaction.

• Autonomy, initiative, rigor, sense of responsibility.

• Strong capacity for adaptation, dialogue and negotiation

• Pedagogue

• Innovative

• Proactive

• Curious

• Strong personality to interact with different types of communities and to impulse change

• Well versed communication skills with adaptability to the audience

• Ethics & Compliance: This job requires from the post holder constant awareness of the compliance risks we face in day-to-day responsibilities. The post holder is required to demonstrate continuous commitment to act with integrity with colleagues, communities, business partners and suppliers as a foundation for the Company’s success and sustainable growth. The commitment to integrity is supported by the post holder’s adherence to all internal policies and procedures that govern business activities. Compliance with these policies will also protect Airbus reputation and brand, some of our most strategic and important assets

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

Company:

Employment Type:

-------

Experience Level:

Job Family:

By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to emsom&64;airbus.com.

At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.