Job Description
SAP Vulnerability Management Senior Lead – Hyderabad
About Mars
Mars is a global, family-owned business with over $50 billion in sales, operating in 80+ countries. Mars produces iconic brands such as M&M’s®, SNICKERS®, TWIX®, PEDIGREE®, and ROYAL CANIN®. The company is guided by its Five Principles: Quality, Responsibility, Mutuality, Efficiency, and Freedom, and employs over 150,000 Associates worldwide.
Job Description Summary
Reporting to the SAP Security Senior Manager, the
SAP Vulnerability Management Senior Lead
is responsible for securing SAP systems within the Enterprise Digital Core program, including Shared Template, Corporate, and Petcare S/4HANA systems on RISE and the SAP BTP environment.
Mars leverages the Onapsis security platform as a core part of its SAP security and vulnerability management strategy.
Key Focus Areas:
Gathering SAP vulnerability management requirements.
Technical configuration of Onapsis and SAP, and integration with Mars tools for monitoring, alerting, and reporting.
Running SAP application layer vulnerability scans to identify configuration/access vulnerabilities, missing patches/notes, and code vulnerabilities.
Working with stakeholders and system owners to remediate vulnerabilities before systems go live.
Expanding vulnerability management capabilities as more systems come into scope.
Transitioning vulnerability management to the managed service team post go-live, ensuring steady-state operations.
What are we looking for?
Experience:
8+ years in SAP application security, vulnerability scanning, patch management, code security, and security incident response.
Technical Skills:
Deep knowledge of SAP application security (RBAC, IT controls, sensitive access, segregation of duties).
Hands-on with SAP cybersecurity, vulnerability management, and code scanning tools (e.g., SAP Enterprise Threat Detection, Onapsis, SecurityBridge).
Experience with SIEM tools and ServiceNow Vulnerability Response module (a plus).
Experience with data protection tools (e.g., SAP UI Masking) (a plus).
Communication:
Strong written and verbal communication skills for preparing and presenting findings and recommendations.
Key Responsibilities
Configure and implement Onapsis with the security implementation partner.
Run vulnerability scans, evaluate and validate results, and prepare findings and recommendations for stakeholders (Basis/Platform Team, Developers).
Integrate SAP application security monitoring with Mars SIEM tools, collaborating with InfoSec/SOC teams.
Identify process improvement opportunities and drive consistency between transformation and steady-state vulnerability management processes.
Stay current with the latest SAP vulnerabilities and conduct proofs of concept for new Onapsis functionalities.
Lead knowledge transfer sessions to the managed service/operations team.
What can you expect from Mars?
Work with diverse and talented Associates, all guided by the Five Principles.
Join a purpose-driven company, where we’re striving to build the world we want tomorrow, today.
Best-in-class learning and development support from day one, including access to our in-house Mars University.
An industry-competitive salary and benefits package, including a company bonus.
Mars is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. The company is pleased to provide such assistance, and no applicant will be penalized as a result of such a request.
