WE HELP THE WORLD RUN BETTER

At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from.

WORK EXPERIENCE

• 6+ years project management and/or program management
• 4+ years of professional compliance, certifications, and software consulting experience
• 2+ year of professional PCI-DSS compliance knowledge
• Working experience in international and virtual projects

Summary:
The main objective of the Senior Project Manager – Compliance & Certification is to accompany the security compliance governance of cloud products within the scope of our Information Security and Business Continouty Management Systems having a holistic approach end-to-end. You’ll collaborate with cross-functional teams, including IT, Legal, and Finance, to address technology and security compliance needs.
The Role:
Taking over responsibilities in prioritising security compliance issues together with the respective operations or development teams will be part of your main activities. As in cloud computing technical security, security controls, and technical and organisational measures are converging, a broad and holistic view on all aspects of compliance and governance is necessary.
Your role will contribut to manage compliance initiatives, including gap assessments and consult of implementation and governance of controls to address regulatory requirements. You will consult and coordinat cross-functional especially in the area of legal, contractual and reglutroy compliance and obligations. You are the main contact to translate these into controls and transfer those into governance activities, i.e for SOC, C5, and PCI-DSS.
Advising on framework and governance activities while providing a holistic overview of the strategic positioning of compliance and information security to the business units will be your day-to-day responsibility.