BluOcean Cyber · 2 days ago
SaaS Security Engineer
United States
Full-time
Remote
Mid Level
3+ years expBluOcean Cyber is looking for a SaaS Security Engineer to join their elite SaaS Cybersecurity practice. This role involves architecting and implementing advanced SaaS security programs to protect clients' ecosystems, serving as a technical expert in SaaS Security Posture Management.
Computer & Network Security
Responsibilities
Serve as the lead technical expert and consultant for client SaaS Security Posture Management (SSPM) implementations, from assessment and tool selection to deployment, configuration, and operationalization
Design and implement comprehensive SaaS security architectures with a core focus on SSPM as the central control plane for visibility, compliance, and threat detection
Conduct in-depth SaaS security assessments using SSPM tools to identify misconfigurations, excessive permissions, anomalous user activity, and non-compliant settings across platforms like Microsoft 365, Salesforce, Workday, ServiceNow, and GitHub
Develop and mature enterprise SaaS security strategy, governance frameworks, and reference architectures anchored in SSPM capabilities and SaaS-native security best practices
Integrate SSPM platforms with existing security ecosystems (SIEM, SOAR, ITSM) to automate alerting, remediation workflows, and reporting
Lead continuous compliance initiatives (e.g., NIST, ISO, SOC 2, CSA CCM) by leveraging SSPM for evidence collection, control monitoring, and audit readiness
Advise clients on SaaS data protection, identity-centric security (SSO, IAM), and secure SaaS-to-SaaS integration patterns, using SSPM to enforce and monitor policies
Perform threat modeling and vulnerability management specific to SaaS applications, utilizing SSPM insights to prioritize and contextualize risks
Develop custom scripts and automations to extend SSPM tool functionality and bridge security gaps
Qualification
Required
Bachelor's degree in Computer Science, Cybersecurity, Information Security, or related field, or equivalent practical experience
3-5 years of direct, hands-on experience in SaaS security roles, with a minimum of 1 year focused specifically on SSPM (SaaS Security Posture Management)
Demonstrated, in-depth experience implementing, configuring, and managing at least one major SSPM platform (e.g., AppOmni, Falcon Shield, Obsidian Security, Reco, DoControl, Normalyze)
Strong grasp of industry security frameworks (ISO 27001, NIST CSF/800-53, CSA CCM) and their application to SaaS environments
Deep, hands-on security knowledge of major SaaS platforms (e.g., Microsoft 365, Salesforce, Google Workspace, ServiceNow, Workday)
Expertise in cloud identity (IAM), Single Sign-On (SSO), and identity federation (SAML, OIDC) for SaaS applications
Excellent communication, consulting, and stakeholder engagement skills with the ability to articulate complex SSPM findings and risks to both technical and executive audiences
High emotional intelligence (EQ), with the ability to build trust, drive collaboration, and guide clients through security transformation
Preferred
Proven track record of leading multiple end-to-end SSPM implementations for enterprise clients
Experience with API security and deep understanding of integration risks in SaaS-to-SaaS and custom application workflows
Proficiency in scripting (Python, PowerShell) for automation and API interactions with SSPM and SaaS platforms
Familiarity with infrastructure-as-code (Terraform, CloudFormation) and CI/CD security tools
Advanced certifications such as CSSP (Certified SaaS Security Professional), CCSK, CCSP, or relevant cloud/platform-specific credentials
Experience building custom queries, dashboards, and reports within SSPM tools to meet unique client requirements
Company
BluOcean Cyber
BluOcean Digital is a cybersecurity & privacy firm that’s building a future where trust is at the heart of technology by elevating security to the strategy table—one client at a time.
11-50 employees
Funding
Current Stage
Early StageCompany data provided by crunchbase