Responsibilities:
Deploy, configure, and operate SSPM platforms to continuously monitor SaaS security posture.
Assess SaaS applications for configuration drift, identity risks, excessive permissions, data exposure, and third-party application risks.
Establish and maintain SaaS security baselines and remediation workflows.
Support SaaS onboarding, certification, and governance processes.
Build automation workflows and integrations between SSPM platforms, IAM, SIEM, ticketing, and governance systems.
Develop dashboards, reporting, and metrics to provide visibility into SaaS security posture and compliance.
Leverage APIs, scripting, and Infrastructure-as-Code to improve operational efficiency and security automation.
Assess identity federation, API connectivity, data protection, logging, and monitoring controls across SaaS and cloud environments.
Partner with cloud security teams to ensure consistent control implementation and risk management.
Document findings, remediation recommendations, and residual risks.
Contribute to SaaS security standards, control frameworks, and secure-by-design guidance.
Support risk assessments, exception reviews, and security certification activities.
*Experience:**
5+ years of experience in Security Engineering, Cloud Security, or SaaS Security.
Hands-on experience with one or more SSPM platforms such as AppOmni, Obsidian, Palo Alto, Adaptive Shield, Wing Security, Valence, or similar technologies.
Experience with AWS, Google Cloud Platform, Azure, and/or OCI security concepts and controls.
Experience integrating security tooling and building automated workflows.
*Skills:**
Strong understanding of SaaS security, IAM, Data Protection, API Security, and Security Monitoring.
Proficiency in Python, PowerShell, APIs, Terraform, GitHub, and automation frameworks.
*Certification:**
Relevant certifications such as CISSP, CCSP, AWS Security Specialty, Google Professional Cloud Security Engineer, Azure Security Engineer, or OCI Security Professional.