Notes:
The most urgent need is for candidates with experience in:
SaaS Security Posture Management (SSPM)
Security posture management broadly
SaaS security tooling
Cloud security integrations
Role requires advisory skills, not just identifying problems.
Preferred tools/experience:
Palo Alto SSPM
Obsidian
Similar SaaS security posture management platforms
Due to limited candidate availability, the team is expanding beyond strict SSPM experience to candidates with general security posture management backgrounds who can learn the SaaS-specific component.
________________________________________
Role Responsibilities
Approximately 75% of Role:
SSPM Tool Integration
Responsibilities include:
Supporting onboarding of new SaaS vendors
Integrating vendor environments with SSPM tooling
Configuring monitoring capabilities
Establishing security visibility into SaaS applications
Example workflow:
1. AMEX application team wants to onboard a SaaS vendor.
2. Vendor completes required processes/contracts.
3. Security team receives request.
4. SSPM engineer integrates vendor into SSPM platform.
5. Monitoring begins.
________________________________________
Approximately 25% of Role:
Security Findings & Remediation
Responsibilities include:
Reviewing SSPM findings
Communicating security issues to application teams
Driving remediation efforts
Example:
SSPM identifies insecure configuration (e.g., lack of TLS encryption).
Security team works with application owners to explain:
o What the issue is
o Why it matters
o How to remediate
Role requires advisory skills, not just identifying problems.