SaaS Security Posture Management (SSPM) Engineer
About The Role
As a SaaS Security Posture Management (SSPM) Engineer, you will make an impact by strengthening the security, governance, and resilience of enterprise SaaS platforms through continuous monitoring, risk assessment, and automation. You will be a valued member of the Cybersecurity team and work collaboratively with cloud security, identity management, governance, and engineering teams to help secure the organization's expanding SaaS and cloud ecosystem while enabling business innovation.
Responsibilities
Design, deploy, and manage SaaS Security Posture Management (SSPM) capabilities to identify and remediate security risks across enterprise SaaS platforms.
Assess SaaS environments for configuration weaknesses, identity and access risks, excessive permissions, data exposure, and third-party application vulnerabilities.
Develop integrations and automation workflows between SSPM solutions, IAM platforms, SIEM tools, governance systems, and service management platforms.
Partner with cloud security and infrastructure teams to implement consistent security controls across AWS, Google Cloud Platform (GCP), Microsoft Azure, Oracle Cloud Infrastructure (OCI), and SaaS environments.
Contribute to SaaS governance, risk management, compliance initiatives, security standards, and secure-by-design practices while providing actionable recommendations to stakeholders.
Requirements
5+ years of experience in Security Engineering, Cloud Security, SaaS Security, or related cybersecurity disciplines.
Hands-on experience with SaaS Security Posture Management (SSPM) platforms such as AppOmni, Obsidian, Palo Alto SSPM, Adaptive Shield, Wing Security, Valence, or similar technologies.
Strong understanding of SaaS security, Identity and Access Management (IAM), API security, data protection, and security monitoring principles.
Experience securing cloud environments, including AWS, Google Cloud Platform (GCP), Microsoft Azure, and/or Oracle Cloud Infrastructure (OCI).
Proficiency in automation and scripting technologies such as Python, PowerShell, APIs, Terraform, GitHub, and related security automation frameworks.
Experience integrating security tools and building automated workflows to improve visibility, risk management, and operational efficiency.
Understanding of security controls, governance frameworks, risk assessment methodologies, and compliance requirements.
Strong analytical, communication, stakeholder management, and problem-solving skills.
Qualifications
Experience with Cloud Access Security Broker (CASB) solutions and enterprise SaaS governance programs.
Familiarity with AI and Generative AI security risks associated with SaaS platforms and emerging technologies.
Experience developing security dashboards, metrics, reporting frameworks, and executive-level risk summaries.
Knowledge of identity federation, cloud-native security architectures, logging, monitoring, and data protection technologies.
Experience supporting enterprise security certification, audit, exception management, and risk review processes.
Relevant certifications such as CISSP, CCSP, AWS Security Specialty, Google Professional Cloud Security Engineer, Azure Security Engineer Associate, or OCI Security Professional.
Skills
Security Engineering
Cloud Security
SaaS Security
Identity and Access Management (IAM)
API Security
Data Protection
Security Monitoring
CASB Solutions
AI and Generative AI Security Risks
Security Dashboards
Metrics and Reporting Frameworks
Enterprise SaaS Governance Programs
Identity Federation
Cloud-Native Security Architectures
Logging and Monitoring
Data Protection Technologies
Security Certification, Audit, Exception Management, and Risk Review Processes
Certifications (CISSP, CCSP, AWS Security Specialty, Google Professional Cloud Security Engineer, Azure Security Engineer Associate, OCI Security Professional)
Benefits
We believe hybrid work is the way forward as we strive to provide flexibility wherever possible. Based on this role's business requirements, this is a hybrid position requiring 3 days per week in a Cognizant or client office in Phoenix, AZ. Regardless of your working arrangement, we are here to support a healthy work-life balance through our various wellbeing programs.
Pay
TBD
Schedule
Hybrid - 3 days per week in a Cognizant or client office in Phoenix, AZ