SAP Cyber Intelligence Research Operations analyst 

Germany, Baden-Württemberg 

487834622

In this role you will conduct in-depth research, collaborate with industry specialists and peer analysts, develop and maintain short- and long-term research projects, and present findings through briefings and external engagements. The role will also be expected to actively generate intelligence requirements from stakeholders and manage collection supporting those requirements. Lastly, this role requires a consummate team player willing to go above and beyond in delivering a world class cyber threat intelligence capability in support of SAP and its global business.

Key Responsibilities:

• Conduct cyber threat intelligence analysis using cyber intelligence frameworks to identify emerging threats, vulnerabilities, and trends in cloud environments.
• Serve as subject matter expert (SME) on cloud-based threats and enterprise resource planning (ERP) systems.
• Design and deliver high quality, finished intelligence products from executive to operational audiences.
• Manage reports portfolio consisting of multiple products and delivery timelines and standards.
• Understand use and application of Structured Analytic Techniques (SATs) as part of intelligence analysis process.
• Translate business information needs to priority intelligence requirements (PIRs).
• Attain expert knowledge of SAP’s growing cloud and AI investments in the context of cyber threats to those businesses and related customer base.
• Research and analyze cyber-threat actors, groups, and events to report on emerging tactics, techniques, and procedures (TTPs), behaviors, motivations, sponsorship, and influencing factors specific to cloud environments.

Required Skills and Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, Intelligence Studies, Political Science, Foreign Area Studies, or related fields.
• Proven experience (5+ years) as a Cyber Threat Intelligence Analyst with a focus on cloud-conscious threat actors and related TTPs.
• Working knowledge of security offerings and controls provided by major cloud providers(AWS, Azure, Google Cloud, etc).
• Understanding different cloud service models (IaaS, PaaS, SaaS) and their respective security implications.
• Working knowledge and proficiency in cloud-native security solutions.
• Strong proficiency in open-source intelligence (OSINT) methodologies and tools for gathering, analyzing, and interpreting threat data including Recorded Future.
• Excellent report writing skills with the ability to create clear, concise, and impactful intelligence reports incorporating graphics and visualizations.
• Exceptional communication skills, both written and verbal, to effectively convey technical information to non-technical stakeholders.
• Operational experience leveraging the intelligence lifecycle and associated analytic methodologies (Cyber Kill Chain, Diamond Model, ATT&CK, etc.)

Preferred Qualifications:

• Certifications such as Certified Threat Intelligence Analyst (CTIA), , , Azure/AWS/GCP security certs, and Certified Cloud Security Professional (CCSP) or equivalent.
• Operational experience in cleared government and/or security vendor verticals is desired.
• Experience with threat intelligence platforms, SIEM platforms, and various security vendor portals/platforms.
• Familiarity with regulatory requirements and industry standards related to cybersecurity and data protection specific to cloud environments
• Knowledge of programming or scripting languages (e.g., Python, PowerShell) for automation and data analysis.

We win with inclusion

Due to the nature of the role, which involves global interactions with SAP entities, as well as with employees and stakeholders in Canada, functional proficiency in English is required for positions based in the Quebec.

Job Segment:ERP, CRM, Cloud, Operations Manager, Supply Chain Manager, Technology, Operations