Jobs · Engineering · Arizona

SaaS Security Posture Management (SSPM) Engineer

VMC Soft Technologies, Inc · Phoenix, AZ · 4 days ago
On-siteEngineeringContract

Salesforce Security Engineering

Deploy, configure, and operate SSPM platforms to continuously monitor SaaS security posture. Assess SaaS applications for configuration drift, identity risks, excessive permissions, data exposure, and third-party application risks. Establish and maintain SaaS security baselines and remediation workflows. Support SaaS onboarding, certification, and governance processes.

  • Build automation workflows and integrations between SSPM platforms, IAM, SIEM, ticketing, and governance systems.
  • Develop dashboards, reporting, and metrics to provide visibility into SaaS security posture and compliance.
  • Leverage APIs, scripting, and Infrastructure-as-Code (IaC) to improve operational efficiency and security automation.

Possess knowledge of SaaS integrations with AWS, Google Cloud Platform (GCP), Microsoft Azure, and Oracle Cloud Infrastructure (OCI). Assess identity federation, API connectivity, data protection, logging, and monitoring controls across SaaS and cloud environments. Partner with cloud security teams to ensure consistent control implementation and risk management.

  • Document findings, remediation recommendations, and residual risks.
  • Contribute to SaaS security standards, control frameworks, and secure-by-design guidance.
  • Support risk assessments, exception reviews, and security certification activities.

Required Experience & Skills

  • 5+ years of experience in Security Engineering, Cloud Security, or SaaS Security.
  • Hands-on experience with one or more SSPM platforms such as: AppOmni, Obsidian, Palo Alto, Adaptive Shield, Wing Security, Valence, similar SSPM technologies.
  • Strong understanding of: SaaS Security, Identity and Access Management (IAM), Data Protection, API Security, Security Monitoring.
  • Experience with AWS, GCP, Azure, and/or OCI security concepts and controls.
  • Proficiency in: Python, PowerShell, APIs, Terraform, GitHub, Automation frameworks.
  • Experience integrating security tools and building automated workflows.

Preferred Qualifications

  • Experience with CASB (Cloud Access Security Broker) technologies and SaaS governance programs.
  • Familiarity with AI/GenAI-enabled SaaS security risks.
  • Relevant certifications such as: CISSP (Certified Information Systems Security Professional), CCSP (Certified Cloud Security Professional), AWS Security Specialty, Google Professional Cloud Security Engineer, Azure Security Engineer, OCI Security Professional.

Similar jobs