SaaS Security Posture Management (SSPM)
Role details
Job location
Tech stack
Job description
We are seeking a highly skilled and proactive SaaS Security Posture Management (SSPM) Specialist to join our cybersecurity team. In this role, you will be responsible for overseeing and enhancing the security posture of our cloud-based SaaS environments through comprehensive security assessments, risk analysis, and implementation of best practices aligned with industry standards such as ISO 27001, NIST, and FedRAMP. The ideal candidate will possess a deep understanding of computer networking, system security, and cloud infrastructure, enabling us to proactively identify vulnerabilities and ensure compliance across our SaaS platforms.
Key responsibilities include conducting vulnerability assessments, managing security event monitoring, implementing security controls, and supporting incident response efforts. You will collaborate closely with cross-functional teams to develop security strategies that safeguard sensitive data and maintain regulatory compliance. This position offers an exciting opportunity to influence our organization's cybersecurity resilience in a dynamic cloud environment., * Perform continuous security posture assessments for SaaS applications utilizing tools such as SIEM solutions like Splunk or SolarWinds to analyze security events and detect anomalies.
- Conduct vulnerability management activities including vulnerability research, vulnerability assessments, and risk analysis aligned with NIST standards.
- Develop and maintain system security plans (SSPs) for cloud infrastructure environments such as AWS, Azure, or Google Cloud Platform.
- Implement and manage identity & access management protocols using LDAP, SSO solutions, and RBAC models to ensure secure user authentication and authorization.
- Collaborate with network engineering teams to design secure network architectures incorporating VPNs, IPsec tunnels, load balancing, firewalls (Cisco ASA), IDS/IPS systems, and network protocols.
- Support incident response processes by investigating security breaches or threats related to cloud computing or on-premises systems.
- Conduct system hardening procedures on operating systems including Debian, CentOS, openSUSE, Windows, macOS, and UNIX variants to mitigate vulnerabilities.
- Assist in the deployment of security tools such as Endpoint Detection and Response (EDR), FIPS-compliant encryption modules, and system security hardening frameworks.
- Participate in threat detection & response activities by analyzing logs through log analysis tools like Splunk or New Relic.
- Contribute to the development of disaster recovery plans and high availability configurations for critical IT infrastructure components.
Requirements
- Proven experience in cybersecurity roles focusing on SaaS environments with expertise in cloud security engineering.
- Strong knowledge of computer networking concepts including LAN/WAN architecture, routing protocols (OSPF, BGP), TCP/IP stack, DHCP, DNS, and network support.
- Hands-on experience with SIEM implementation (Splunk or similar), threat intelligence platforms, vulnerability assessment tools, and incident management procedures.
- Familiarity with IT infrastructure components such as SAN storage systems, VMware vSphere virtualization platform, load balancers, and system administration across multiple operating systems including Linux distributions (Debian, CentOS) and Windows Server.
- Knowledge of industry standards such as ISO 27001/27000 series, FISMA/FedRAMP compliance frameworks, COBIT governance models, PCI DSS requirements.
- Proficiency in scripting languages like Python or Bash for automation tasks related to system security hardening or vulnerability research.
- Strong understanding of encryption protocols (SSL/TLS), PKI implementations, network security best practices including GPO management and open-source tools like SELinux.
- Excellent analytical skills with the ability to perform detailed security risk assessments investigations while maintaining attention to detail.
- Effective communication skills capable of translating technical findings into clear reports for diverse audiences.