• Design and maintain SAP authorization architecture • Design and maintain SAP Fiori security architecture • Ensure proper authorization design for SAP Fiori and related services • Establish security standards across SAP modules • Ensure SAP security architecture supports MP Materials’ SAP S/4HANA Private Cloud environment • Provide security guidance for SAP integrations, enhancements, and custom development • Define and maintain the long-term SAP security strategy and roadmap • Own and maintain the SAP Segregation of Duties (SoD) framework • Identify and remediate access risks and control gaps • Support internal and external audit activities • Administer and continuously improve SAP GRC Access Control • Establish scalable processes for access requests and approvals • Manage privileged access governance and SAP GRC Emergency Access Management processes • Improve automation and governance of SAP access lifecycle management processes • Partner with infrastructure and cybersecurity teams to ensure SAP security aligns with enterprise security standards • Serve as the SAP security subject matter expert within the SAP Center of Excellence.

• Develop, test, and maintain secure web applications. • Write clean, scalable, and security-focused code. • Build and maintain APIs, backend services, and frontend features. • Identify and resolve security vulnerabilities in applications. • Apply secure coding standards and best practices. • Support secure API development, authentication, and authorization. • Work with WebSockets and real-time application features. • Collaborate with development, product, and security teams. • Participate in code reviews, security reviews, and technical discussions. • Support deployment, configuration, and system hardening. • Prepare technical and security-related documentation when needed

• Design, build, review, and ship features powering Operant's products alongside the rest of the engineering team. • Own significant systems or components end-to-end — architecture, implementation, testing, deployment, operation. • Raise the technical bar through code review and contribute to architectural decisions on shared core systems. • Provide live debugging and engineering depth for strategic APAC customers during their business hours. • Participate in the engineering on-call rotation, with primary responsibility for customer-facing issues during APAC hours. • Ship contained fixes and small features independently; coordinate with US engineering on anything architectural or cross-cutting. • Make the call on what gets escalated to the US team overnight vs. waits for morning, and produce comprehensive async handoffs when escalating. • Partner with the APAC Customer Success Team as their L2/L3 escalation path and technical partner. • Join key deployment milestones, architecture reviews, and QBRs/EBRs when product depth is required. • Translate field observations into product improvements; validate feasibility of regional feature requests and present synthesized feedback in the monthly product review. • Operate with autonomy across a 12–14 hour gap from the US team, with disciplined async communication. • Available during overlapping hours with Pacific Standard Time (PST) for global engineering meetings and synchronous work with US-based leadership.

Role Description ESO’s teams are growing, and our software is in demand globally by firefighters, paramedics, hospitals, and governments. To meet this demand, we are building an industry-leading cyber security team in Belfast to protect our customers and data from a variety of fast moving and constantly evolving threats. We are looking for a Security Engineering Team Leader to join our UK team, working alongside teams in Belfast, Denmark, Czechia, and the United States. Work alongside our fire, hospital, and EMS Engineering teams to secure our mission-critical applications. These applications are used to help our customers go about their daily job of protecting their communities and saving lives. You’ll lead our team of Security Engineers, supporting and directing our Product & Technology team to ensure our products and systems are designed and implemented with a priority on security. You’ll collaborate closely with our Product & Technology teams, contributing to application architecture and steering system implementation. Your team's work will draw on principles like defence in depth and leverage practices such as threat modelling and zero trust across a multi-cloud environment - with focus on best practice, security by design and implementation of standards and frameworks across our portfolio. Our Security Engineers have a high degree of autonomy and are part of a high functioning, motivated and forward-thinking team. You have the chance to join a diverse, growing and passionate team, working on critical products, whilst being supported with training opportunities and mentoring. Qualifications - At least 5 years’ experience in securing software or infrastructure in cloud platforms (e.g. Microsoft Azure, AWS, GCP) - Your experience should include: - Securing systems in line with ‘Well Architected Frameworks’ e.g. Azure Well Architected Framework - Network experience – whether designing and building, managing or troubleshooting - Applying security to networks, hosts, web applications and cloud native deployments - Working with toolsets from one or more of: asset management, vulnerability management, firewalls, SIEM, PAM, IDS/IPS, EDR/XDR, DLP, SWG, WAF, CSPM, CNAPP - A solid understanding and ideally experience in the design, implementation or run of one or more of: SAST / DAST / IAST / RASP - Having knowledge of Continuous Integration / Continuous Deployment best practices, and securing pipelines - Understand current attack tactics, techniques and procedures along with the use of MITRE Attack framework and associated MITRE security research - Be inquisitive, have a passion for what you do and understanding how your work impacts and contributes to ESO’s success Requirements - Exposure to Infrastructure as Code and Azure native technologies - Experience with threat modelling, NIST and CIS frameworks - Knowledge of application security standards such as OWASP Top 10, SANS / CWE 25 Benefits - Life insurance (4 x base salary) - Income protection insurance - A generous pension contribution - Private medical insurance including optical and dental - A health cash plan - Modern City Centre office in Belfast - Northern Ireland, and a flexible hybrid working policy (this role is Remote within UK) - AwardCo Recognition Program - Enhanced paternity leave and pay, enhanced adoptive pay, enhanced maternity pay - 12 weeks full pay after 6 months' service - Enhanced short and long-term sick pay - 25 days holiday which increases year on year until you reach 5 years of service + 14 additional days Company Description ESO is a fast-paced, growing data, technology and research company passionate about improving community health and safety through the power of data. We pioneer innovative, user-friendly software to meet the changing needs of today’s EMS agencies, fire departments, and hospitals. We serve thousands of customers out of our offices across the US, Canada and Northern Ireland. ESO is committed to creating a diverse and inclusive work environment and is proud to be an equal opportunity employer. We invite you to consider opportunities at ESO regardless of your gender; gender identity; gender reassignment; age; religious or similar philosophical belief; race; national origin; political opinion; sexual orientation; disability; marital or civil partnership status or other non-merit factor.