SaaS security Analyst

  • Boston, MA
  • Posted 21 hours ago | Updated 21 hours ago

Overview

Hybrid
$70 - $75
Contract - W2
Contract - 6 Month(s)
No Travel Required

Skills

CISM
Auditing
Cloud Security
Cyber Security
SaaS
Risk Assessment
Regulatory Compliance
Information Security
Data Security

Job Details

Job Title: SaaS Security Analyst

Duration: Up to 6 Months

Location: Boston/Springfield, MA Hybrid

Not able to work with 3rd party agencies. Local candidates only, no relocation.

Key Responsibilities

  • Develop and maintain SaaS governance framework, policies, standards, and control objectives.
  • Oversee implementation and tuning of SaaS Security tools.
  • Drive automation of SaaS onboarding, offboarding, and continuous monitoring workflows.
  • Maintain centralized inventory of SaaS applications (shadow IT + sanctioned).
  • Lead periodic SaaS risk assessments and security reviews.
  • Ensure SaaS vendor compliance with contractual obligations (e.g., DPAs, SLAs).
  • Work with procurement and legal to vet new SaaS apps and renewals.
  • Define metrics and dashboards to track governance posture and exceptions.
  • Enable federated governance model via policy-as-code or delegation models.
  • Advocate for secure SaaS adoption with business stakeholders.
  • Coordinate audits and collaborate with compliance teams on data protection requirements.
  • Provide security education and guidance to application owners and end-users.
  • Support and respond to incident response efforts related to SaaS data breaches or misconfigurations.

Required Skills:

  • 5 - 8 years of experience in cybersecurity with 2+ years focused on SaaS or cloud security.
  • Strong understanding of SaaS risk, regulatory, and compliance issues.
  • Ability to collaborate across IT, legal, security, and procurement functions.
  • Experience with SaaS inventory/discovery tools (e.g., Netskope, Wing, BetterCloud).
  • Familiarity with SaaS governance frameworks (e.g., NIST, CSA, CIS).
  • Excellent policy writing, communication, and stakeholder engagement skills.

Preferred Certifications:

  • Certified Information Security Manager (CISM)
  • Certified Information Privacy Professional (CIPP/US or CIPP/E)
  • Certified in Governance of Enterprise IT (CGEIT)
  • CCSP or CCSK (Cloud Security Alliance)
  • SaaS Governance Professional (vendor-specific, if available)

EEO: Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.