SAP Cybersecurity Engineer- Onapsis

Southern California Edison (SCE)

$100K — $140K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Seven or more years of experience in IT, cybersecurity, or information security.
  • US Citizenship Required.
  • Bachelor's degree in Cybersecurity, Information Security, or related field preferred.
  • Experience with SAP security, architecture, and operations.
  • Two years of experience in vulnerability management and with the Onapsis Platform.
  • Possession of a CISSP or GSEC Certification preferred.
  • Familiarity with NIST Cybersecurity Framework and Unix/Linux OS.

Responsibilities

  • Manage cybersecurity project delivery and ensure success criteria are met.
  • Deliver project reporting, analyze status, risks, and improve processes.
  • Maintain security systems through patches, upgrades, and operational management.
  • Contribute to governance strategy, standards, and operational procedures.
  • Identify, quantify, and communicate technology risks and recommend resolutions.
  • Prepare and track remediation plans for identified security weaknesses.
  • Oversee evidence production for audits and conduct cybersecurity assessments.

Benefits

  • Hybrid work mode with set in-office and remote days.
  • Focus on reducing carbon emissions and promoting cleaner air.
  • Involvement in critical cybersecurity initiatives for essential business functions.
  • Opportunities for professional training and certifications.
  • Flexible work arrangements based on business needs.
Full Job Description
Become an SAP Cybersecurity Engineer at Southern California Edison (SCE) and build a better tomorrow. In this role, you will be responsible for designing, implementing, and managing solutions within the Cybersecurity Vulnerability Management Program to protect mission critical applications that support core business functions such as Finance, Human Resources, Procurement, and Customer Service.

Additionally, you will:
  • Serve as a technical lead within our SAP security vulnerability management program.
  • Deploy a 2defense-in-depth2 security model through the establishment of policies, practices, and strategic initiatives to protect the SAP environment.
  • Demonstrate the ability to design, implement, and manage security solutions for SAP applications and IT Assets.
  • Use the Onapsis Platform's suite of tools to perform the identification, prioritization, and remediation of system flaws across SAP applications, RISE/BTP, SAP HANA, and ABAP custom code.
  • Assist in the administration and management of the Onapsis Platform and supporting infrastructure.
  • Manage Kubernetes clusters running Linux nodes, and tuning orchestration processes to achieve greater efficiency.
  • Apply vulnerability management practices to complex SAP systems with interconnected modules, databases, and interfaces across both on-premises and cloud-hosted environments.
  • Display expertise in analyzing and providing SAP remediation recommendations for proposed technical solutions.
  • Deliver or enhance continuous monitoring solutions for early threat detection to reduce response time and risk.
  • Collaborate with stakeholder teams across the organization and work closely with key business partners to address security requirements, establish governance, and implement processes to minimize risk.
  • Communicate and deliver executive-level presentations (internal and across all OUs) to highlight SAP program recommendations, new processes, guidelines, or risk mitigation initiatives.


As an SAP Cybersecurity Engineer, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

Responsibilities

  • Manages cybersecurity project delivery by ensuring the cybersecurity team meets success criteria.
  • Delivers project reporting for assigned projects, conducts critical analysis of project status, potential risks, and continual process improvement.
  • Coordinates and performs appropriate maintenance to ensure reliable and secure performance of the security systems, including applying security patches, implementing version upgrades, modifying and improving services, and performing ongoing operational management tasks.
  • Contributes to an overall cybersecurity governance strategy, standards, and operational procedures.
  • Ensures technology risks impacting the business are effectively identified, quantified, communicated, and managed, including recommendations for resolution and identifying root causes/key themes.
  • Prepares and updates Plan of Actions & Milestones (POA&M) that identify security weaknesses, establish milestones, and implements compensating controls for remediating these weaknesses, while tracking the progress and effectiveness of the remediation.
  • Oversees the production of evidence to support internal and external audits.
  • Provides cybersecurity and risk assessments for new networks, services, and devices as needed.
  • Drives periodic monitoring of audit logs in accordance with requirements, and reports findings and concerns for further analysis and action, including breach notification and initiation of incident response, in accordance with protocols and procedures.
  • Delivers programs and processes to reduce information security risk and strengthen SCE's security posture.
  • A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.


Minimum Qualifications

  • Seven or more years of experience in information technology, information security and/or cybersecurity.
  • US Citizenship Required.


Preferred Qualifications
  • Bachelor's degree or higher in Cybersecurity, Information Security, or related Information Technology field.
  • Experience with SAP security, SAP architecture, and SAP administration/operations.
  • Two (2) or more years of experience in vulnerability management.
  • Two (2) or more years of experience with the Onapsis Platform (Assess, Defend, and Control for Code/Transport modules).
  • Possess a CISSP or GSEC Certification.
  • Knowledge or experience working within a NIST Cybersecurity Framework.
  • Experience with Unix and Linux Operating systems.


Additional Information
  • This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.
  • Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!
  • Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
  • The primary work location for this position is Rosemead, CA. However, the successful candidate may also be asked to work for an extended amount of time at an alternate work location.
  • Position will require up to 10% traveling and being out in the field throughout the SCE service territory.
  • This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.
  • Relocation may apply to this position.


Similar Jobs

More Jobs at Southern California Edison (SCE)

More Information Technology Jobs

Find similar SAP Cybersecurity Engineer- Onapsis jobs: