SAP Security Custom Code Reviewer
a cybersecurity consulting firm
Contract
$100-150/hr project-based rate
Remote
Security
Job Overview
Get a feel for the essentials—role specifics, compensation, and what the day-to-day might look like.
Job Title
SAP Security Custom Code Reviewer
Job Type
Contract
Category
Security
Offered Salary
$100-150/hr project-based rate
Experience
5+ years of hands-on ABAP code security review
Degree
Not Specified
Location
Remote
Job Description
Here is what the team is counting on you to own and how you will make an impact.
We're a cybersecurity consulting firm looking for an SAP security specialist to conduct a hands-on code security review for a major entertainment company client. You'll review custom ABAP, UI5, and JavaScript code across a procure-to-pay system running on SAP BTP with an ECC backend. The codebase spans 100+ applications and thousands of objects handling financial transactions and PII (supplier info, invoices, purchase orders, budgets). Your focus: finding injection vulnerabilities, authentication bypasses, data exposure risks, and hard-coded credentials that automated scanners miss. You'll also assess HANA migration readiness and evaluate secure development practices. The deliverable is a prioritized risk assessment with remediation guidance that translates technical findings into business impact. A platform security expert is already handling the broader environment assessment. You're focused entirely on the custom code.
Professional Skills
These are the strengths that usually help people thrive in the role. Bring what you have—there’s always room to grow.
ABAP code security review
SAP BTP security architecture
SAP SAST tools
Code Vulnerability Analyzer
ABAP Test Cockpit
Manual vulnerability review
Communication of technical risk
UI5 code security
JavaScript code security
Related Tags
A quick way to see how this role connects with your interests.
- ContractSecurityRemote
Share the Job
Get in Touch
Have a quick question? Drop us a note and we will get back to you shortly.
Related Jobs
5 months ago
Security
Web Application Security Engineer
We are seeking a skilled and motivated Web Application Security Engineer to join our fully remote team. You will be the cornerstone of our application security efforts, responsible for proactively identifying vulnerabilities, championing secure coding practices, and working directly with development teams to fortify our products from the ground up. Key Responsibilities: * Conduct regular security assessments, including penetration testing and code reviews, on our web applications and services. * Collaborate with software engineering teams to integrate security tools and practices into the CI/CD pipeline (Shift-Left security). * Triage and validate vulnerabilities from various sources, including bug bounty programs and automated scanners. * Develop and deliver secure coding guidelines and training to raise the security IQ of the entire engineering organization. * Research the latest security threats, vulnerabilities, and countermeasures to keep our defenses ahead of the curve. * Assist in incident response and forensic analysis in the event of a security breach.
Remote (United States)
100,000 per year
Full-Time
- Web Application SecurityPenetration TestingCode ReviewOWASP Top 10Injection Attacks
5 months ago
Security
Web Application Security Engineer
We are seeking a skilled and motivated Web Application Security Engineer to join our fully remote team. You will be the cornerstone of our application security efforts, responsible for proactively identifying vulnerabilities, championing secure coding practices, and working directly with development teams to fortify our products from the ground up. This is a high-impact role where your work will directly influence the security posture of our entire organization. Key Responsibilities: * Conduct regular security assessments, including penetration testing and code reviews, on our web applications and services. * Collaborate with software engineering teams to integrate security tools and practices into the CI/CD pipeline (Shift-Left security). * Triage and validate vulnerabilities from various sources, including bug bounty programs and automated scanners. * Develop and deliver secure coding guidelines and training to raise the security IQ of the entire engineering organization. * Research the latest security threats, vulnerabilities, and countermeasures to keep our defenses ahead of the curve. * Assist in incident response and forensic analysis in the event of a security breach.
Remote (United States)
100,000 per year
Full-Time
- Web Application SecurityPenetration TestingCode ReviewOWASP Top 10SQLi
Leading Am Law 50 Firm
5 months ago
Security
Cloud Governance Manager
Our client, a prestigious Am Law 50 law firm, is seeking a Cloud Governance Manager to strengthen its data governance and cloud security practices. In this pivotal role, you will design and implement governance frameworks, policies, and standards that ensure secure, compliant, and efficient data use across the firm’s enterprise systems. You’ll play a critical part in safeguarding sensitive information, driving regulatory compliance, and enabling seamless data sharing.
Remote – Only open to candidates based in Atlanta, Boston, Los Angeles, Chicago, Dallas, Houston, NYC, Orange County, Palo Alto, San Diego, San Francisco, or Washington DC.
125,000 – $150,000
- Data governance frameworksCloud securityMicrosoft PurviewCSFNIST