Job Description

Requisition ID: 270861
Work Area: Administration
Expected Travel: 0 - 10%
Career Status: Professional
Employment Type: Regular Full Time
Career Level: T3
Hiring Manager: Richard Gustafson

Recruiter Name: Kathy Thompson

SAP NS2 IT Risk, Compliance, Audit Management Specialist Single Tenant Cloud-Herndon-20171

NS2 COMPANY DESCRIPTION

SAP is the global market leader for business software and related services. SAP National Security Services Inc. (SAP NS2) is an independent U.S. subsidiary of SAP. At SAP NS2, we leverage best-in-breed technologies engineered by SAP to protect the lives, assets and information of Americans. We offer SAP solutions with specialized levels of security and support to meet the requirements of U.S. national security and critical infrastructure customers.

Must be a U.S. Citizen; NS2 does not offer Visa sponsorships for this role.

All internals must have managers approval to transfer

This position works with internal and external stakeholders across NS2s Cloud organization to improve processes, mitigate risks, and remediate vulnerabilities related to internal controls, information technology security, and compliance. This position acts as a liaison between operational teams and external auditors. This position also identifies gaps in compliance with established security procedures, develops, and assists with implementation and oversight of appropriate remediation plans with operational teams. Specific duties include:

Security and Compliance:

* Objectively review and provide recommendations on business processes and security policies, standards, and procedures
* Assist operational teams in managing, monitoring, and educating the organization to ensure compliance with internal policies and internal control requirements
* Provide objective evaluations of security controls, mechanisms and goals in comparison to best practices.
* Provide accurate and timely information to customer security points of contact
* Assess customer needs against security concerns and articulates issues/risks to management.

Internal Control Monitoring:

* Determine internal control self-assessment procedures for risk management, compliance with applicable security standards, security requirements
* Perform control assessments leveraging a combination of automated tools, manual procedures, and review of automated script outputs
* Ensure compliance with control assessment requirements under applicable frameworks or policies, including internal policy, COSO, NIST 800-137, or contractual obligations
* Documenting deficiencies and conduct follow-up to monitor operational teams interventions

Audit Liaison:

* Attending audit related meetings
* Assisting management to review and respond to audit findings and recommendations
* Serving as a point of contact regarding the overall audit process including the drafting and routing of managements responses.
* Monitoring the implementation status of audit recommendations.
* Communicating with management regarding implementation status

Skills, Knowledge and Experience:

* A minimum of 5 years experience in audit, information security, risk management
* Proven IT security compliance and IT audit experience, preferably with cloud services
* Experience working with a variety of internal control frameworks (e.g. COSO, COBIT, NIST, ISO)
* Sound independent judgement and ability to work independently with minimal supervision
* Project and program management skills preferred with strong written and verbal communication skills

Education/Requirements

* BS/BA degree required in information technology, accounting, or a related field (or equivalent experience)
* Additional Certifications are desirable (i.e. CISA, CISSP, CPA, CIA, PMP, etc.)

WHAT YOU GET FROM US
Success is what you make it. At SAP, we help you make it your own.
A career at SAP can open many doors for you. If youre searching for a company thats dedicated to your ideas and individual growth, recognizes you for your unique contributions, fills you with a strong sense of purpose, and provides a fun, flexible and inclusive work environment apply now.

SAP'S DIVERSITY COMMITMENT
To harness the power of innovation, SAP invests in the development of its diverse employees. We aspire to leverage the qualities and appreciate the unique competencies that each person brings to the company.

SAP is committed to the principles of Equal Employment Opportunity and to providing reasonable accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for employment with SAP and are in need of accommodation or special assistance to navigate our website or to complete your application, please send an e-mail with your request to Recruiting Operations Team. (Americas:Careers.NorthAmerica@sap.com or Careers.LatinAmerica@sap.com, APJ: Careers.APJ@sap.com, EMEA: Careers@sap.com). Requests for reasonable accommodation will be considered on a case-by-case basis. Successful candidates might be required to undergo a background verification with an external vendor.

EOE AA M/F/Vet/Disability:
Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, gender, sexual orientation, gender identity, protected veteran status or disability.

Successful candidates might be required to undergo a background verification with an external vendor.
Additional Locations: