SaaS Engineer – GRC Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

JPS Tech Solutions · 14 hours ago

SaaS Engineer – GRC Analyst

positionUnited States
timeContract
remoteRemote
senioritySenior Level, Lead/Staff
date12+ years exp

JPS Tech Solutions is seeking a highly experienced SaaS Engineer / GRC Analyst with deep expertise in IAM and cloud security. This role focuses on leading security assessments of SaaS platforms and third-party vendors to ensure strong governance, risk management, and compliance across the organization.

Information TechnologyIT InfrastructureSoftware Engineering
badNo H1Bnote

Responsibilities

Lead security and risk assessments for SaaS applications and third-party vendors
Evaluate vendor security controls, policies, and compliance documentation including SOC 2, ISO 27001, GDPR, NIST, and related frameworks
Analyze shared responsibility models across cloud and SaaS providers to identify gaps and residual risks
Review and assess controls related to IAM, network security, data protection, and access governance
Apply Information Security and GRC principles to identify risks and recommend effective mitigation strategies
Partner with internal teams (Security, Legal, Procurement, IT) throughout the SaaS procurement and onboarding lifecycle
Prepare and present risk findings and remediation recommendations to technical and non-technical stakeholders
Support continuous improvement of vendor risk management and compliance processes

Qualification

SaaS security assessmentsGRCVendor risk managementCloud securityIAMSecurity frameworksRegulatory standardsNetwork securityData protectionGRC tools experienceCloud providers exposureSaaS procurement knowledgeSecurity certificationsCommunication skills

Required

12+ years of experience in SaaS security assessments, GRC, vendor risk management, or cloud security
Strong understanding of shared responsibility models across SaaS and cloud environments
In-depth knowledge of security frameworks and regulatory standards such as ISO 27001, SOC 2, NIST, GDPR, and similar
Hands-on expertise in Identity and Access Management (IAM), network security controls, and data protection mechanisms
Solid grasp of InfoSec principles including secure architecture, access governance, and risk assessment methodologies
Proven ability to clearly communicate security risks and compliance findings to diverse audiences

Preferred

CCSK, CCSP, CISA, CISSP, ISO 27001 LA/LI, or equivalent security certifications
Experience working with GRC tools and platforms
Exposure to major cloud providers such as AWS, Azure, or GCP
Familiarity with the SaaS procurement and vendor onboarding lifecycle

Company

JPS Tech Solutions

twittertwittertwitter
company-logo
JPS Tech Solutions offers software engineering, cloud, mobile development, and IT infrastructure solutions.
location
Morrisville, North Carolina, USA
people-size201-500 employees
web-link
https://jpstechsolutions.com

Funding

Current Stage
Growth Stage
Company data provided by crunchbase