Portfolio Careers

Discover opportunities to work at a NightDragon portfolio company

Principal Software Engineer - Control



Software Engineering
Heidelberg, Germany
Posted on Tuesday, July 2, 2024

About the job

Onapsis is on a mission to safeguard the most critical business applications that businesses depend on daily. Over 20% of the Fortune 100 rely on Onapsis to secure their business-critical applications and ensure they are compliant and available. We are seeking a self-motivated and enthusiastic Principal Software Engineer to join our team and make a significant impact in the cybersecurity space. Our platform is dedicated to advancing and enhancing secure application development and testing, particularly within SAP environments.

About the Product

Our product is designed to shift left and accelerate digital transformation projects with market-leading secure application development and testing. We ensure the security of your ERP software development lifecycle from development to production. Our automated solutions clean your code prior to SAP S/4HANA migration and integrate security into your development process, including work on the SAP Business Technology Platform (BTP). We have been recognized for three consecutive years in the Gartner® Magic Quadrant™ for Application Security Testing.

What you will be doing, your legacy:

As a Principal Software Engineer, you will play a crucial role in the ongoing development of our platform's features in application security testing for SAP applications. Your responsibilities will include architecting, advancing, and providing solutions that enhance our platform's capabilities. You will work on reviewing third-party custom code and transports, performing static code analysis, and implementing automatic remediation for common code errors. Your contributions will help secure our clients' development processes and drive forward our mission in the cybersecurity domain.


  • Bachelor’s degree in Computer Science, Information Technology, or a related field. Master’s degree preferred.
  • Minimum of 10+ years of experience and holding such roles as Principle Developer, Lead Developer, or Architect focused on SAP technologies.
  • Intermediate written and oral English skills
  • Security:
    • Foundation in designing security for SAP on-premise and cloud environments.
    • Proficiency with GRC Access Control, IDM applications, SAML, and X.509 certificates.
    • Knowledge of secure coding practices and security testing.
    • Knowledge in application security, threat modeling, and secure software development lifecycle (SDLC) practices.

Desired skills or interests in:

  • Programming & SAP Modules:
    • Experience with programming with ABAP and other SAP modules.
    • Knowledge in S/4HANA, Fiori, Ui5, Cloud, and JavaScript.
    • Knowledge in integration languages such as Java and Python.
  • SAP-Specific Expertise:
    • Knowledge of SAP Enterprise Architecture Framework and Toolset.
    • Expertise in SAP Integration Advisory Methodology and SAP Extensibility Advisory Methodology.
    • Experience or Familiarity with SAP Clean Core principles and tools like SAP LeanIX and Signavio for documenting Enterprise Architectures & Business Processes.
    • Experience or Familiarity with SAP BTP, SAP CPI, SAP PI, and SAP APIM.
    • Experience or Familiarity with of SAP GRC suite, SAP NetWeaver Identity Management, Fiori Artifacts, HANA, and S/4HANA Security.
  • Cloud & Middleware:
    • Experience or Familiarity with middleware platforms such as SAP BTP and API gateways like SAP APIM.
    • Experience or Familiarity with DevOps practices, containerization (Docker, Kubernetes), and cloud services (Azure, AWS, GCP).
    • Experience or Familiarity with operating cloud-scale services in production environments.
  • Data Integration & Analytics:
    • Experience or Familiarity in data integration technologies involving SAP and non-SAP data, including data lakes.
    • Experience or Familiarity with emerging Lakehouse architectures and data warehousing, particularly SAP BW/4.
  • Experience with specific static code analysis tools (e.g., SonarQube, Fortify) and SAP-specific tools (CVA)
  • Knowledge of test-driven development (TDD), CI / CD tooling, and Agile methodologies
  • Experience taking a leading role in building complex software systems that have been successfully delivered to customers
  • Knowledge of professional software engineering practices & best practices for the full software development life cycle, including coding standards, code reviews, source control management, build processes, testing, and operations
  • Experience in communicating with users, other technical teams, and senior management to collect requirements and describe software product features, technical designs, and product strategy.
  • Experience mentoring junior software engineers to improve their skills and make them more effective product software engineers
  • Experience influencing software engineers' best practices within your team

What we offer:

  • A role in shaping the future of protecting the most critical applications that run the world's business and a career that grows as the company grows.
  • A unique culture of high achievement and teamwork.
  • Supportive and humble colleagues are the space's top problem solvers and innovators.
  • Highly competitive compensation and benefits


Onapsis Development Center in Heidelberg, Baden-Württemberg, Germany. This is a hybrid role, so candidates must be commutable to Heidelberg.

About our Company:

Onapsis is a proven market leader that protects your business's most critical applications. Only Onapsis delivers the actionable intelligence, automated governance, continuous monitoring, and secure change capabilities required by cross-functional teams to optimize workflows and automate manual tasks so they can embrace and accelerate SAP and Oracle E-Business Suite (EBS) modernization, cloud, IoT, and mobility initiatives while keeping the most vital systems and data protected and compliant. Headquartered in Boston with regional offices in Heidelberg, Germany, Buenos Aires, Argentina, Texas USA, and now in Bucharest, Romania, Onapsis proudly serves more than 300 leading brands and organizations, including many of the Global 2000.

For more information, connect with Onapsis on LinkedIn or visit https://www.onapsis.com.