Job Title: Cloud Security Engineer–OCI & SaaS Security
Location: Phoenix, AZ
Duration: Long term contract
Job Description:
- The Cloud Security Engineer performs security reviews of Oracle Cloud Infrastructure (OCI) services, Oracle SaaS platforms, and third-party
- SaaS solutions to ensure alignment with enterprise security standards, regulatory requirements, and risk management practices.
- This role evaluates cloud and SaaS solutions across infrastructure, platform, application, and data layers, providing actionable security guidance
- to support secure-by-design adoption, governance, certification, and onboarding processes.
- The position also provides engineering support for OCI security capabilities and SaaS security governance programs, helping to establish security
- guardrails, automate controls, and improve consistency and scalability across cloud and SaaS environments.
Key Responsibilities:
Cloud & SaaS Security Assessment
• Conduct security reviews of OCI services, SaaS applications, architectures, integrations, and configurations.
• Identify security risks, control gaps, and remediation opportunities.
• Evaluate solutions against enterprise security standards, policies, and regulatory requirements.
• Provide security guidance for secure deployment and adoption of cloud and SaaS services.
Security Domains Reviewed
• Identity & Access Management (IAM)
• Network Security
• Data Protection & Encryption
• Logging & Monitoring
• Compute & Container Security
• API Security
• SaaS Security Posture Management (SSPM)
• AI / GenAI Security
• Third-Party & Vendor Risk
Security Standards & Governance
• Map OCI and SaaS implementations to enterprise controls and industry frameworks (NIST, ISO 27001, CSA CCM, CIS).
• Validate compliance with secure configuration baselines and reference architectures.
• Support development and maintenance of OCI and SaaS security standards, guardrails, and onboarding requirements.
• Assess new cloud and SaaS capabilities and provide security recommendations.
Cloud & SaaS Security Engineering
• Support implementation of OCI-native security controls and governance capabilities.
• Assist with security automation through Infrastructure-as-Code (Terraform) and policy-as-code frameworks.
• Support deployment and integration of security monitoring, posture management, and compliance capabilities.
• Partner with platform engineering teams to embed security into deployment and operational processes.
SaaS Security Governance
• Perform SaaS onboarding assessments and certification reviews.
• Evaluate SaaS architectures, integrations, data flows, and security controls.
• Conduct SaaS posture reviews and assess configuration drift, identity governance, and data protection controls.
• Support SaaS inventory management, Shadow IT discovery, and vendor security assessments.
Collaboration & Stakeholder Engagement
• Partner with cloud engineering, architecture, DevOps, security operations, compliance, procurement, and risk teams.
• Document findings, recommendations, and evidence to support governance and certification decisions.
• Provide security expertise during design reviews, onboarding activities, exception management, and remediation efforts.
Required Experience & Skills:
• Experience performing cloud security assessments within OCI or comparable cloud platforms.
• Strong understanding of:
o Identity & Access Management
o Network Security
o Data Protection
o Cloud Logging & Monitoring
o Container & Platform Security
• Experience conducting SaaS security reviews and certifications.
• Familiarity with:
o OCI security services
o SSPM platforms
o CASB technologies
o Cloud governance frameworks
• Experience reviewing Infrastructure-as-Code (Terraform) and cloud architecture designs.
• Knowledge of cloud shared responsibility models and secure-by-design principles.
• Strong written and verbal communication skills.
Preferred Experience
• Oracle Cloud Infrastructure certifications.
• Experience with:
o OCI Cloud Guard
o Security Zones
o Oracle SaaS platforms
o SaaS Security Posture Management (SSPM)
o Policy-as-Code and automated compliance tooling
• Experience supporting AI/GenAI security assessments.
• Experience working with GitHub, CI/CD pipelines, and cloud security automation
Thanks & Regards
Saravanan
DMinds Solutions Inc.