SaaS Security Posture Management
Indexed description
Job Title: SaaS Security Posture Management (SSPM) Engineer
Location: Phoenix, AZ (Onsite)
Visa: GC & US Citizens Preferred
Experience: 8+ Years
The SaaS Security Posture Management (SSPM) Engineer is responsible for designing, implementing, and operating SaaS security controls and posture management capabilities across the enterprise SaaS ecosystem.
This role combines SaaS security engineering, cloud security, automation, and governance to continuously identify, assess, and remediate security risks within SaaS platforms while supporting the secure adoption of cloud and AI-enabled services.
Key Responsibilities
SaaS Security Engineering
- Deploy, configure, and operate SSPM platforms to continuously monitor SaaS security posture.
- Assess SaaS applications for configuration drift, identity risks, excessive permissions, data exposure, and third-party application risks.
- Establish and maintain SaaS security baselines and remediation workflows.
- Support SaaS onboarding, certification, and governance processes.
Automation & Integration
- Build automation workflows and integrations between SSPM platforms, IAM, SIEM, ticketing, and governance systems.
- Develop dashboards, reporting, and metrics to provide visibility into SaaS security posture and compliance.
- Leverage APIs, scripting, and Infrastructure-as-Code (IaC) to improve operational efficiency and security automation.
Cloud & SaaS Security
- Possess knowledge of SaaS integrations with AWS, Google Cloud Platform (GCP), Microsoft Azure, and Oracle Cloud Infrastructure (OCI).
- Assess identity federation, API connectivity, data protection, logging, and monitoring controls across SaaS and cloud environments.
- Partner with cloud security teams to ensure consistent control implementation and risk management.
Governance & Risk Management
- Document findings, remediation recommendations, and residual risks.
- Contribute to SaaS security standards, control frameworks, and secure-by-design guidance.
- Support risk assessments, exception reviews, and security certification activities.
Required Experience & Skills
- 5+ years of experience in Security Engineering, Cloud Security, or SaaS Security.
- Hands-on experience with one or more SSPM platforms such as:
- AppOmni
- Obsidian
- Palo Alto
- Adaptive Shield
- Wing Security
- Valence
- Similar SSPM technologies
- Strong understanding of:
- SaaS Security
- Identity and Access Management (IAM)
- Data Protection
- API Security
- Security Monitoring
- Experience with AWS, GCP, Azure, and/or OCI security concepts and controls.
- Proficiency in:
- Python
- PowerShell
- APIs
- Terraform
- GitHub
- Automation frameworks
- Experience integrating security tools and building automated workflows.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search