Massachusetts Jobs

MassHire JobQuest Logo

Job Information

Microsoft Corporation Senior Software Engineer in Boston, Massachusetts

As part of Microsoft’s Cloud + AI Group, we are responsible for building, managing, and securing the platform, products, processes, and services that powers Microsoft. We build, maintain, and implement a cloud-first approach to our technology and experiences, from custom-built business solutions developing our campus of the future and our productivity and collaboration experiences like Teams and SharePoint, to horizontal 3rd party solutions like SAP and Adobe. As a steward of Microsoft and our customer’s data, a core function of Microsoft Digital is ensuring the security of every aspect of the business. Microsoft Digital is responsible for company-wide information security and compliance, with a strategic focus on information protection, assessment, awareness, governance, and enterprise business continuity. Microsoft Digital’s charter is also to influence and work alongside engineers across the company and with strategic partners to build and grow their cloud products and services. As customer zero, we deploy these services inside Microsoft and then share best practices with enterprise customers at scale across the globe.

Microsoft’s Digital Platform Engineering (PE) builds and manages the critical products and services that Microsoft runs on. We boldly pursue big ideas that power transformational advances at Microsoft and for our customers, while helping Microsoft teams work smarter, faster and more securely every day. Platform Engineering employees have deep technical and business expertise, customer insights, and a clear point of view that comes from first-hand, large-scale experience with Microsoft and industry solutions. We are engineers, technology leaders and experts, digital transformation change agents, and customer advocates.

We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more!

PE is for those IT professionals and business technology professionals who want to be strategic partners to the business and be the first place to create innovative solutions using all of Microsoft’s products and services. PE provides career growth opportunities, a rewarding and flexible work environment so you can better integrate professional and personal life. Unlike other IT organizations, PE employees make global impact on thousands of customers and employees who use Microsoft software and services.

We are looking for individuals that want to change the IT landscape at Microsoft. Come work for Microsoft’s Digital Platform Engineering team and help shape the future of ERP at Microsoft. PE is accountable for Microsoft’s ERP utilizing SAP. PE is seeking a Software Engineer to develop solutions focusing on security and compliance within Microsoft’s ERP environment including SAP.

The SAP Security Engineer is accountable for supporting the PE ERP strategy via their contributions within a project team and is accountable for the delivery of high-quality enterprise level solutions in support of the PE Mission. This position will represent the Security Development discipline during a project and will have oversight of the project’s Security resources in support of ERP solution development. In addition, this role will be accountable for following (and enforcing) Microsoft policies and procedures, including: Information Technology Life Cycle (ITLC), SOX, Privacy and Access Control.

The SAP Security Engineer is a critical part of the ERP delivery function and will need to have a very solid understanding of SAP solutions and technology.

Responsibilities

As a Senior Software Engineer will be responsible for the following:

  • Actively drive Security design and architecture in SAP to ensure data is protected from unauthorized access

  • Develop, monitor and enforce security design in accordance with Microsoft policies and standards

  • Develop authorizations in alignment with best practices and Microsoft policies and standards

  • Stay current on industry best practices and the latest technologies relevant to Microsoft’s environment and roadmap

  • Continuously update the teams and partners on security requirements and provide security recommendations on security integration points in SAP

  • Proactively monitoring for new and changing SAP security threats and implement remediation plans when necessary

  • Drive and ensure project development teams incorporate and document security and compliance requirements consistent with Microsoft’s methodology including ITLC

  • Documenting SAP Security design and administration procedures with an understanding of Microsoft’s Regulatory requirements and maintain guidelines/documentation for completeness and consistency

  • Successfully drive and oversee project team in the completion of development phases and projects in conformance to project goals, requirements, and schedule in collaboration with other partner teams

  • Accurately estimate work/time required to complete SAP security related tasks Create project plans for security phases/deliverables

  • Manage the annual security and privacy program by creation of new security guidelines and procedures for SAP and its integrated systems

  • Manage the SAP GRC Access Control tools

  • Responsible for resolving escalated security issues

  • Provide thought leadership to team members and management

  • Proactively monitoring for new and changing SAP security threats and implement remediation plans when necessary

  • Drive and ensure project development teams incorporate and document security and compliance requirements consistent with Microsoft’s methodology including ITLC

  • Documenting SAP Security design and administration procedures with an understanding of Microsoft’s Regulatory requirements and maintain guidelines/documentation for completeness and consistency

  • Successfully drive and oversee project team in the completion of development phases and projects in conformance to project goals, requirements, and schedule in collaboration with other partner teams

  • Accurately estimate work/time required to complete SAP security related tasks Create project plans for security phases/deliverables

  • Manage the annual security and privacy program by creation of new security guidelines and procedures for SAP and its integrated systems

  • Manage the SAP GRC Access Control tools

  • Responsible for resolving escalated security issues

  • Provide thought leadership to team members and management

Qualifications

  • 10+ years of experience in SAP Security including S/4HANA, ECC, MDG, BIS, BPC 11.0, HR, BW, GTS and APO with a deep understanding of the SAP’s authorization concepts

  • 5+ years of experience in managing security based on regulatory requirements such as SOX, GDPR, PCI, international access security restrictions and requirements

  • Strong verbal and written communication skills

  • Sound risk-based problem solving, problem resolution, judgment, negotiating, and decision-making skills

  • A B.A. or B.S. degree in Business, Computer Science, Management Information Systems or equivalent experience

Preferred, not required:

  • Strong leadership and team coordination skills, with ability to lead security projects from end to end

  • Strong cross group collaboration abilities

  • Strong ability to succeed in ambiguous environment

  • Adept at prioritizing and working in a fast-paced organization

  • Attention to detail

  • A strong understanding of software development lifecycle methodology, and information systems development and support

  • Understanding of one or more business process in the FI, Commerce, HR or SCM areas is a plus

  • Understanding of local/international security/privacy laws and its impacts on security architecture

  • Experience leading teams within a global delivery model

  • 5+ years of experience in SAP GRC 10.1 or higher or experience in implementing ARA and ARQ

  • 5+ years of experience in managing role Segregation of Duties (SOD) with an understanding of business processes and applicable mitigating controls.

  • 5+ Years of experience in designing ARA or equivalent rule set’s

  • 5+ Experience with BRF+ and MSMP

  • ARIBA, IBP, Concur and SuccessFactors experience is a plus

  • Basic understanding of SAP’s ABAP language

  • Experience in audit related projects and working as a liaison between the business operations and auditors

  • Experience with a variety of SDLC methodologies such as: Waterfall and Agile methodologies

  • Enterprise IT experience, preferably with ERP

  • Understanding of servers, networking, security, monitoring (Solution Manager, etc.).

  • One or more of the following certifications- SAP Security, GRC, CISSP or CISA

  • Microsoft Azure Security

  • Proficient in Microsoft Access and Power BI

Describe the ideal candidate

We are looking for a Software Engineer who is ready to be part of an agile Security team, has deep knowledge of security best practices, proven ability to deliver, customer obsessed and demonstrates strong communication and collaboration skills. The ideal candidate should have experience in SAP ECC, S/4HANA, SAP SaaS and GRC 12. Cloud Security experience is a plus.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form (https://careers.microsoft.com/us/en/accommodationrequest) .

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

DirectEmployers