Sr Information Security Engineer, SAAS Security

Team:

• Implement and maintain advanced security measures for endpoints and networks, ensuring robust protection against unauthorized access and cyber threats.
• Develop, enforce, and monitor network access control policies to regulate who and what devices can access the organizations network.
• Conduct continuous and detailed inspection of network traffic to identify and mitigate potential security threats, anomalies, and vulnerabilities.
• Design and enforce security protocols, conduct regular security audits, and ensure compliance with industry standards and regulatory requirements.
• Implement and manage security solutions to enhance the organization s overall security posture, ensuring secure and efficient remote access and internet security.
• Monitor user activities and enforce security policies to prevent data leakage and ensure compliance with organizational security standards

To be successful in this role you have:

• Master s degree in computer science; engineering, or information technology or equivalent industry experience
• Strong practical exposure to SaaS Security controls across CASB, SSPM, DSPM, and API-based DLP solutions.
• Ability to evaluate SaaS application security posture misconfigurations, risky permissions, external sharing, and unmanaged third-party integrations.
• Experience in identifying and controlling Shadow IT discovery, risk scoring, business justification workflows, and application rationalization.
• Familiarity with authentication and access standards such as SAML, OAuth, SCIM, MFA, and SSO in SaaS environments.
• Skilled in interpreting complex SaaS, network, and identity logs to detect insider activity, DLP violations, and data exfiltration attempts.
• Hands-on understanding of Zero Trust principles applied to SaaS and identity-centric security enforcement.
• Knowledge of data classification and governance controls in collaboration and storage platforms like M365, Google Workspace, Box, Salesforce, etc..
• Experience integrating SaaS platforms with IAM, SIEM/SOAR, EDR/MDM, and Email Security tools for automated enforcement and response.
• Strong collaboration with Network Security, Endpoint Security, and IT Operations teams to drive remediation outcomes.
• Ability to create documentation, SOPs, runbooks, and playbooks to enhance operational maturity.
• Continuous learning mindset with awareness of emerging SaaS threats, AI-driven risks, and cloud application trends.