SaaS Security Engineer

About the RoleAre you a specialist in SaaS Security Posture Management ready to define the next generation of application security? Join BluOcean’s elite SaaS Cybersecurity practice as a trusted advisor, where you will architect and implement cutting-edge SaaS security programs to protect our clients' most critical SaaS ecosystems. In this role, you will be the subject matter expert, translating deep SSPM knowledge into actionable strategies that measurably reduce risk and exposure across sprawling SaaS estates.What You’ll DoServe as the lead technical expert and consultant for client SaaS Security Posture Management (SSPM) implementations, from assessment and tool selection to deployment, configuration, and operationalization.Design and implement comprehensive SaaS security architectures with a core focus on SSPM as the central control plane for visibility, compliance, and threat detection.Conduct in-depth SaaS security assessments using SSPM tools to identify misconfigurations, excessive permissions, anomalous user activity, and non-compliant settings across platforms like Microsoft 365, Salesforce, Workday, ServiceNow, and GitHub.Develop and mature enterprise SaaS security strategy, governance frameworks, and reference architectures anchored in SSPM capabilities and SaaS-native security best practices.Integrate SSPM platforms with existing security ecosystems (SIEM, SOAR, ITSM) to automate alerting, remediation workflows, and reporting.Lead continuous compliance initiatives (e.g., NIST, ISO, SOC 2, CSA CCM) by leveraging SSPM for evidence collection, control monitoring, and audit readiness.Advise clients on SaaS data protection, identity-centric security (SSO, IAM), and secure SaaS-to-SaaS integration patterns, using SSPM to enforce and monitor policies.Perform threat modeling and vulnerability management specific to SaaS applications, utilizing SSPM insights to prioritize and contextualize risks.Develop custom scripts and automations to extend SSPM tool functionality and bridge security gaps.What You’ll Bring (Required)Bachelor's degree in Computer Science, Cybersecurity, Information Security, or related field, or equivalent practical experience.3-5 years of direct, hands-on experience in SaaS security roles, with a minimum of 1 year focused specifically on SSPM (SaaS Security Posture Management).Demonstrated, in-depth experience implementing, configuring, and managing at least one major SSPM platform (e.g., AppOmni, Falcon Shield, Obsidian Security, Reco, DoControl, Normalyze).Strong grasp of industry security frameworks (ISO 27001, NIST CSF/800-53, CSA CCM) and their application to SaaS environments.Deep, hands-on security knowledge of major SaaS platforms (e.g., Microsoft 365, Salesforce, Google Workspace, ServiceNow, Workday).Expertise in cloud identity (IAM), Single Sign-On (SSO), and identity federation (SAML, OIDC) for SaaS applications.Excellent communication, consulting, and stakeholder engagement skills with the ability to articulate complex SSPM findings and risks to both technical and executive audiences.High emotional intelligence (EQ), with the ability to build trust, drive collaboration, and guide clients through security transformation.What Sets You Apart (Preferred)Proven track record of leading multiple end-to-end SSPM implementations for enterprise clients.Experience with API security and deep understanding of integration risks in SaaS-to-SaaS and custom application workflows.Proficiency in scripting (Python, PowerShell) for automation and API interactions with SSPM and SaaS platforms.Familiarity with infrastructure-as-code (Terraform, CloudFormation) and CI/CD security tools.Advanced certifications such as CSSP (Certified SaaS Security Professional), CCSK, CCSP, or relevant cloud/platform-specific credentials.Experience building custom queries, dashboards, and reports within SSPM tools to meet unique client requirements.Join BluOcean and be at the forefront of the SaaS security revolution. Here, you're not just consulting; you're leading the mission to transform how the world secures its SaaS landscape. If you are passionate about building resilient, posture-managed SaaS environments and have the deep SSPM expertise to back it up, we need you on our team.Ready to lead from the front? Apply now.

Apply Now