SAAS Security Engineer

Job Description

Point72 is seeking a highly skilled SAAS Security Engineer to protect the organization's sensitive data within cloud-based applications. The SAAS Security Engineer will be a key contributor in defining and enforcing security controls across the company's SAAS ecosystem, ensuring compliance and mitigating risk. This role requires ensuring the platform’s security infrastructure aligns with business objectives and meets industry standards. The SAAS Security Engineer will be responsible for:

• Architecting, implementing, and managing security policies and procedures for SaaS applications such as Workday, Salesforce, Box, Databricks, Slack, Zoom, and other critical platforms.
• Defining granular access controls, implementing multi-factor authentication (MFA), and configuring robust security settings within each application.
• Conducting comprehensive security assessments of SaaS platforms, including penetration testing and vulnerability scanning, to identify weaknesses.
• Developing and implementing detailed remediation plans for identified vulnerabilities.
• Designing and managing a secure identity and access management (IAM) framework for SaaS applications.
• Evaluating, implementing, and managing encryption solutions within SaaS platforms to ensure confidentiality and integrity of sensitive data.
• Developing and deploying advanced data loss prevention (DLP) strategies within SaaS environments to detect and prevent sensitive data exfiltration.
• Utilizing SIEM solutions, security analytics platforms, and threat intelligence feeds to monitor, detect, investigate, and respond to suspicious activities.
• Collaborating with IT, security, and business teams to ensure alignment with overall business objectives, compliance requirements, and regulatory frameworks.

Requirements:

• 7-10 years of experience in cybersecurity, with a focus on SaaS security.
• Hands-on expertise in securing SaaS solutions such as Workday, Salesforce, Box, or Databricks, with a deep understanding of their security features, configurations, and best practices.
• In-depth technical knowledge of access control models, identity federation protocols (SAML, OAuth), encryption algorithms, and DLP techniques within SaaS environments.
• Ability to conduct thorough security assessments and penetration testing of SaaS platforms, utilizing industry-standard tools and methodologies.
• Strong understanding of security frameworks and best practices, including NIST Cybersecurity Framework, ISO 27001, CIS benchmarks, and Cloud Security Alliance (CSA) best practices.
• Experience with scripting and automation tools for security operations and incident response.
• Strong analytical and problem-solving skills with the ability to identify and mitigate security risks in complex cloud environments.
• Excellent communication and collaboration skills to work effectively across technical and non-technical teams.
• A proactive and passionate approach to security implementing innovative solutions and staying ahead of the threat landscape.
• Commitment to the highest ethical standards.

What Point72 offers:

• Fully-paid health care benefits
• Generous parental and family leave policies
• Volunteer opportunities
• Support for employee-led affinity groups
• Mental and physical wellness programs
• Tuition assistance
• A 401(k) savings program with an employer match