Infrastructure & Data Security Engineer

Innovation is and will always be the core of SAP Fioneer, and it is the promise of why we were spun out of SAP: agility, innovation, and delivery.  

SAP Fioneer builds on a heritage of outstanding technology and a deep understanding of corporate and consumer demands. At the heart of it all it is simple: We bring financial services to the next level with innovative software solutions and platforms. We are helping companies in the financial services industry to achieve speed, scalability, and cost-efficiency through digital business innovation, cloud technology, and solutions that cover banking and insurance processes end-to-end.

A global company, with rapid growth, innovative people, and a lean organization makes SAP Fioneer a place where you accelerate your future!

About the role

We are looking for a hands-on Infrastructure & Data Security Engineer to join our fully cloud-native company, operating with a hybrid endpoint environment. This role is ideal for someone passionate about security, automation, and building scalable, resilient infrastructure in a fast-paced, agile environment. As part of a remote-first, global team, you'll be responsible for securing cloud platforms, endpoints, and data pipelines, while enabling rapid product development and deployment. You’ll work cross-functionally with all security functions, engineering, compliance, It and others to ensure security is embedded into every layer of our systems and workflows.

• Minimum of 5 years of experience in security engineering or operations in an enterprise environment.
• Strong hands-on experience with securing cloud-native environments.
• Proven track record managing endpoint security in a hybrid environment.
• Experience with infrastructure-as-code and securing CI/CD pipelines.
• Experience implementing data security controls.
• A sense of humor and love for people.

Advantage

• Background implementing and managing security frameworks (e.g., SOC 2, ISO 27001, NIST).
• Knowledge of data protection strategies including discovery, encryption, tokenization, DRM, exfiltration protection, amongst others.
• Exposure to automating security controls and policy enforcement using scripting or orchestration tools.