SaaS Security Posture Management (SSPM)

SN Cloud Solutions LLC
Phoenix, United States of America
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
$ 110K

Job location

Phoenix, United States of America

Tech stack

Microsoft Windows
Amazon Web Services (AWS)
Apple Mac Systems
Azure
Border Gateway Protocol
Unix
CentOS
Cisco PIX
Software as a Service
Cloud Computing
Cloud Computing Security
Control Objectives for Information and Related Technology (COBIT)
Computer Security
Computer Networks
Dynamic Host Configuration Protocol
Debian Linux
DNS
Cryptographic Protocols
Federal Information Processing Standards (FIPS)
Information Security Management
Internet Protocol Security (IP SEC)
Intrusion Detection Systems
Virtual Private Networks (VPN)
Python
Network Security
Lightweight Directory Access Protocols (LDAP)
Linux Distribution
Log Analysis
Windows Server
Routing
Network Protocols
Open Shortest Path First
Open Source Technology
PCI Data Security Standards
Public Key Infrastructure
Role-Based Access Control
Security Information and Event Management
TCP/IP
vSphere
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Google Cloud Platform
Load Balancing
System Availability
Cyber Threat Analysis
Firewalls (Computer Science)
Selinux
Information Technology
SolarWinds (Software)
Network Support
Splunk
New Relic (SaaS)
Vulnerability Analysis

Job description

We are seeking a highly skilled and proactive SaaS Security Posture Management (SSPM) Specialist to join our cybersecurity team. In this role, you will be responsible for overseeing and enhancing the security posture of our cloud-based SaaS environments through comprehensive security assessments, risk analysis, and implementation of best practices aligned with industry standards such as ISO 27001, NIST, and FedRAMP. The ideal candidate will possess a deep understanding of computer networking, system security, and cloud infrastructure, enabling us to proactively identify vulnerabilities and ensure compliance across our SaaS platforms.

Key responsibilities include conducting vulnerability assessments, managing security event monitoring, implementing security controls, and supporting incident response efforts. You will collaborate closely with cross-functional teams to develop security strategies that safeguard sensitive data and maintain regulatory compliance. This position offers an exciting opportunity to influence our organization's cybersecurity resilience in a dynamic cloud environment., * Perform continuous security posture assessments for SaaS applications utilizing tools such as SIEM solutions like Splunk or SolarWinds to analyze security events and detect anomalies.

  • Conduct vulnerability management activities including vulnerability research, vulnerability assessments, and risk analysis aligned with NIST standards.
  • Develop and maintain system security plans (SSPs) for cloud infrastructure environments such as AWS, Azure, or Google Cloud Platform.
  • Implement and manage identity & access management protocols using LDAP, SSO solutions, and RBAC models to ensure secure user authentication and authorization.
  • Collaborate with network engineering teams to design secure network architectures incorporating VPNs, IPsec tunnels, load balancing, firewalls (Cisco ASA), IDS/IPS systems, and network protocols.
  • Support incident response processes by investigating security breaches or threats related to cloud computing or on-premises systems.
  • Conduct system hardening procedures on operating systems including Debian, CentOS, openSUSE, Windows, macOS, and UNIX variants to mitigate vulnerabilities.
  • Assist in the deployment of security tools such as Endpoint Detection and Response (EDR), FIPS-compliant encryption modules, and system security hardening frameworks.
  • Participate in threat detection & response activities by analyzing logs through log analysis tools like Splunk or New Relic.
  • Contribute to the development of disaster recovery plans and high availability configurations for critical IT infrastructure components.

Requirements

  • Proven experience in cybersecurity roles focusing on SaaS environments with expertise in cloud security engineering.
  • Strong knowledge of computer networking concepts including LAN/WAN architecture, routing protocols (OSPF, BGP), TCP/IP stack, DHCP, DNS, and network support.
  • Hands-on experience with SIEM implementation (Splunk or similar), threat intelligence platforms, vulnerability assessment tools, and incident management procedures.
  • Familiarity with IT infrastructure components such as SAN storage systems, VMware vSphere virtualization platform, load balancers, and system administration across multiple operating systems including Linux distributions (Debian, CentOS) and Windows Server.
  • Knowledge of industry standards such as ISO 27001/27000 series, FISMA/FedRAMP compliance frameworks, COBIT governance models, PCI DSS requirements.
  • Proficiency in scripting languages like Python or Bash for automation tasks related to system security hardening or vulnerability research.
  • Strong understanding of encryption protocols (SSL/TLS), PKI implementations, network security best practices including GPO management and open-source tools like SELinux.
  • Excellent analytical skills with the ability to perform detailed security risk assessments investigations while maintaining attention to detail.
  • Effective communication skills capable of translating technical findings into clear reports for diverse audiences.

Apply for this position