Lieu : MOUGINS · Contrat : Stage · Rémunération : depending on the length of the internship and your diploma. €
Founded in 1972, SAP has grown to become the world's leading provider of business software solutions. SAP is market leader in enterprise application software. The company is also the fastest-growing major database company. Globally, more than 77% of all business transactions worldwide touch an SAP software system. With more than 347.000 customers in more than 180 countries, SAP includes subsidiaries in all major countries. SAP is the world's largest inter-enterprise software company and the world's third-largest independent software supplier, overall. SAP solutions help enterprises of all sizes around the world to improve customer relationships, enhance partner collaboration and create efficiencies across their supply chains and business operations. SAP employs more than 98.600 people.
Security Testing at SAP Labs France
The Security Testing team enables SAP development teams to build secure software by providing a service for automated source code scans complemented by other test methods, such as dynamic checks, fuzzing, and penetration testing. This automated security analysis of potentially large software products allows to detect and eliminate security flaws at an early stage in the development cycle before the products are shipped to SAP customers. The team also provides central education and consulting to develop security awareness in SAP and help development teams make effective use of these tools.
PURPOSE AND OBJECTIVES
Cyber-attacks can disrupt and cause considerable financial and reputational damage to even the most resilient organizations. If an organization suffers a cyber-attack, it stands to lose assets, reputation and business, and potentially face regulatory fines and litigation. Most cyber-attacks are automated, indiscriminate and evolve at an alarming rate.
Cybersecurity is the body of technologies, processes and practices designed to protect networks, computers, programs and data from damage or unauthorized access from cyber-attacks. Ensuring cybersecurity requires coordinated efforts throughout the development lifecycle of products. An important element in this lifecycle is Security Testing. Security Testing reveals flaws in the security mechanisms of products during development and helps prevent attacks such as SQL injection, XSS, DoS.
Within SAP Global Security (SGS), the Security Testing team enables SAP development teams to build secure software by providing a service for automated source code scans complemented by other test methods, such as dynamic checks, fuzzing, and penetration testing. This automated security analysis of potentially large software products allows to detect and eliminate security flaws at an early stage in the development cycle before the products are shipped to SAP customers. The team also provides central education and consulting to develop security awareness in SAP and help development teams make effective use of these tools.
Our strengths rely on an international and multicultural team. The team is made up of highly skilled and passionate individuals who together bring many years of experience from various areas of application security. We are looking for a passionate and collaborative intern with a hands-on mindset.
Within our team, we operate many servers in order to enable SAP developers run static and dynamic analysis on their code with Security Testing tools. These servers have endless growing databases that become performance bottlenecks. On the other hand, deleting data from these servers is not an option as scan history needs to be kept for 10 years for audit and legal reasons. The successful intern will design, implement, test and deploy productively an efficient archiving solution for our multiple production systems. The archiving solution shouldn’t affect the performance or accessibility of the production systems. The archived data, limited to the strict necessary, should remain searchable and reportable. Archived data should be restored on production systems on demand and data archived for more than 10 years should be automatically deleted. Managing high availability is also very important to maintaining high uptime and strong operational performance of our databases. The candidate will compare different approaches to configure high availability of our databases and based on this will implement the best solution on our production servers.
In addition to a strong scientific and technical background, the position requires strong problem-solving capabilities with the ability to communicate effectively. The ideal candidate will have/be:
• Good technical/development skills
• Willingness and proven ability to quickly acquire development proficiency in new technologies
• Fluent in English (working language)
CONTACTS AND PROCEDURE
Please candidate by clicking on this link:
UPLOAD (all documents must be in English):
• Your CV
• Cover letter
• Any relevant documents