Job Description

Core Services Engineering builds and manages the critical products and services that Microsoft runs on. We boldly pursue big ideas that power transformational advances at Microsoft and for our customers, while helping Microsoft teams work smarter, faster and more securely every day. Core Services Engineering employees have deep technical and business expertise, customer insights, and a clear point of view that comes from first-hand, large-scale experience with Microsoft and industry solutions. We are engineers, technology leaders and experts, digital transformation change agents, and customer advocates.

We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more!

Core Services Engineering builds and manages the critical products and services that Microsoft runs on. We boldly pursue big ideas that power transformational advances at Microsoft and for our customers, while helping Microsoft teams work smarter, faster and more securely every day. Core Services Engineering employees have deep technical and business expertise, customer insights, and a clear point of view that comes from first-hand, large-scale experience with Microsoft and industry solutions. We are engineers, technology leaders and experts, digital transformation change agents, and customer advocates.

We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more!

Microsoft's Core Services Engineering (CSE) is for those IT professionals and business technology professionals who want to be strategic partners to the business and be the first place to create innovative solutions using all of Microsoft's products and services. CSE provides career growth opportunities, a rewarding and flexible work environment so you can better integrate professional and personal life. Unlike other IT organizations, CSE employees make global impact on thousands of customers and employees who use Microsoft software and services.

We are looking for individuals that want to change the IT landscape at Microsoft. Come work for Core Platform Engineering Business Platform & Supply Chain (BPSC) team and help shape the future of ERP at Microsoft. BPSC is accountable for Microsoft's ERP utilizing SAP. BPSC is seeking a Software Engineer to develop solutions focusing on security and compliance within Microsoft's ERP environment including SAP.

The SAP Security Engineer is accountable for supporting the BPSC ERP strategy via their contributions within a project team and is accountable for the delivery of high-quality enterprise level solutions in support of the BPSC Mission. This position will represent the Security Development discipline during a project and will have oversight of the project's Security resources in support of ERP solution development. In addition, this role will be accountable for following (and enforcing) Microsoft policies and procedures, including: Information Technology Life Cycle (ITLC), SOX, Privacy and Access Control.

The SAP Security Engineer is a critical part of the ERP delivery function and will need to have a very solid understanding of SAP solutions and technology.

Primary Responsibilities:

* Actively drive Security design and architecture in SAP to ensure data is protected from unauthorized access
* Develop, monitor and enforce security design in accordance with Microsoft policies and standards
* Develop authorizations in alignment with best practices and Microsoft policies and standards
* Stay current on industry best practices and the latest technologies relevant to Microsoft's environment and roadmap
* Continuously update the teams and partners on security requirements and provide security recommendations on security integration points in SAP
* Proactively monitoring for new and changing SAP security threats and implement remediation plans when necessary
* Drive and ensure project development teams incorporate and document security and compliance requirements consistent with Microsoft's methodology including ITLC
* Documenting SAP Security design and administration procedures with an understanding of Microsoft's Regulatory requirements and maintain guidelines/documentation for completeness and consistency
* Successfully drive and oversee project team in the completion of development phases and projects in conformance to project goals, requirements, and schedule in collaboration with other partner teams
* Accurately estimate work/time required to complete SAP security related tasks Create project plans for security phases/deliverables
* Manage the annual security and privacy program by creation of new security guidelines and procedures for SAP and its integrated systems
* Manage the SAP GRC Access Control tools
* Responsible for resolving escalated security issues
* Provide thought leadership to team members and management
* Proactively monitoring for new and changing SAP security threats and implement remediation plans when necessary
* Drive and ensure project development teams incorporate and document security and compliance requirements consistent with Microsoft's methodology including ITLC
* Documenting SAP Security design and administration procedures with an understanding of Microsoft's Regulatory requirements and maintain guidelines/documentation for completeness and consistency
* Successfully drive and oversee project team in the completion of development phases and projects in conformance to project goals, requirements, and schedule in collaboration with other partner teams
* Accurately estimate work/time required to complete SAP security related tasks Create project plans for security phases/deliverables
* Manage the annual security and privacy program by creation of new security guidelines and procedures for SAP and its integrated systems
* Manage the SAP GRC Access Control tools
* Responsible for resolving escalated security issues
* Provide thought leadership to team members and management

Minimum Requirements:

* 10+ years of experience in SAP Security including S4/HANA, ECC, MDG, BIS, BPC 11.0, HR, BW, GTS and APO with a deep understanding of the SAP's authorization concepts
* 5+ years of experience in managing security based on regulatory requirements such as SOX, GDPR, PCI, international access security restrictions and requirements
* BS/MS in Computer Science or Engineering, or a related field, or equivalent alternative skills and/or practical experience is required.
* The successful candidate must be a U.S. Citizen
* Citizenship Verification: This position requires verification of US Citizenship to meet federal government security requirements

* Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

* Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Requirements:

* Strong leadership and team coordination skills, with ability to lead security projects from end to end
* Strong verbal and written communication skills
* Sound risk-based problem solving, problem resolution, judgment, negotiating, and decision-making skills
* Strong cross group collaboration abilities
* Strong ability to succeed in ambiguous environment
* Adept at prioritizing and working in a fast-paced organization
* Attention to detail
* A strong understanding of software development lifecycle methodology, and information systems development and support
* Understanding of one or more business process in the FI, Commerce, HR or SCM areas is a plus
* Understanding of local/international security/privacy laws and its impacts on security architecture
* Experience leading teams within a global delivery model
* 5+ years of experience in SAP GRC 10.1 or higher or experience in implementing ARA and ARQ
* 5+ years of experience in managing role Segregation of Duties (SOD) with an understanding of business processes and applicable mitigating controls.
* 5+ Years of experience in designing ARA or equivalent rule set's
* 5+ Experience with BRF+ and MSMP
* ARIBA, IBP, Concur and SuccessFactors experience is a plus
* Basic understanding of SAP's ABAP language
* Experience in audit related projects and working as a liaison between the business operations and auditors
* Experience with a variety of SDLC methodologies such as: Waterfall and Agile methodologies
* Enterprise IT experience, preferably with ERP
* Understanding of servers, networking, security, monitoring (Solution Manager, etc.).
* One or more of the following certifications- SAP Security, GRC, CISSP or CISA
* Microsoft Azure Security
* Proficient in Microsoft Access and Power BI

BPUSC CPE CSEO

If you have the skills and capabilities necessary to be successful in this role, please consider this opportunity

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.