SaaS Security Data yst
SaaS Security Data yst
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
For over 15 years Trilyon has been at the forefront of providing comprehensive global workforce solutions and staffing services. Leveraging our extensive expertise across multiple domains such as Cloud technology Salesforce AI Machine Learning and Technical Writing we consistently exceed expectations in catering to a wide range of requirements.
Currently we are seeking a SaaS Security Data Analyst for one of our clients that is a leading multination corporation.
Role : SaaS Security Data Analyst
Location: : 100% Remote
Type : Contract
Job Description:
- Develop custom connections to SaaS platforms using Python
- Work with REST APIs GraphQL and OAuth authentication
- Collaborate with the security team to understand requirements and implement solutions
- Ensure code quality and maintainability through continuous integration and deployment practices
Tech Specs:
- Gathering data from our SaaS applications via API
- Work with security architecture to determine the proper operating protocols for SaaS applications
- Analyze the data available to monitor for the proper implementation of security controls in the SaaS applications
- Leverage all the above to meet expected standards and protect company data resident in SaaS applications
- Objective to enhance the security posture of SaaS applications by implementing robust data gathering analysis and monitoring processes. This tech spec outlines the responsibilities and technical expectations for the SaaS Security Data Analyst role.
API Integration and Data Gathering:
- Use the Obsidian SDK to interface with SaaS APIs for data extraction.
- Ensure the API connections are secure efficient and robust.
- Implement automated data collection processes from various SaaS platforms.
- Deliverable: Data is extracted regularly from the target SaaS systems and stored in system of record (i.e. Obsidian Security)
- Data Analysis and Compliance Requirements:
- Analyze the gathered data to identify security vulnerabilities due to misconfiguration.
- Work closely with the security architecture team to define secure operating parameters for various SaaS applications.
- Use the data to gather information about integrations with other systems.
- Where frameworks such as a CIS benchmark exists use the data to identify compliance issues with the expected operating profile.
- Deliverable: A documented mapping of configuration data from SaaS systems to configuration state and security requirements with parameters for passing and failing clearly defined.
Visualization and Reporting:
- Utilize statistical methods and machine learning techniques where applicable to enhance analysis accuracy.
- Ensure that the implemented protocols are aligned with industry best practices and compliance requirements.
- Using the data from the platforms create notifications for system owners when there is a gap in compliance.
- Deliverable: Dashboards and reports that provide actionable insights into the security posture of SaaS applications.
Monitoring and Alerts:
- Where possible leverage the Obsidian Security platform to monitor for adherence to security policies within SaaS environments.
- Work with the SaaS Security Analyst and system owners to set up alerting mechanisms to notify relevant stakeholders of any detected anomalies or breaches in real time.
- Integrate these processes with existing ticketing workflows via Jira and ServiceNow.
Education:
- Not a hard requirement but expectation is for candidates to have a BS degree as they will need to be good at programmatic data analysis.
Requirements:
- Proficient in Python preferred 5 years of experience but willing to consider 3 if candidate is a rockstar and performs well during interview.
- Experience with API development and integration
- Solid understanding of cybersecurity principles and best practices
- Understanding of GraphQL
- Experience with OAuth authentication
- Familiarity with continuous integration and deployment (CI/CD) processes
- Knowledge of hosting and deployment strategies including Kubernetes Docker etc.
Desirable Skills:
- Experience with SaaS platforms such as Salesforce ServiceNow GitHub and Docusign
- Working knowledge of security practices and understanding of threat actors
- Ability to identify valuable security insights within a SaaS platform
Sam Arora
Contact No.
Equal Employment Opportunity
Trilyon is an Equal Opportunity Employer committed to fairness and respect for all individuals. We value diversity in age disability ethnicity gender gender identity religion and sexual orientation believing it drives innovation and better service. Employment decisions are made impartially without regard to any protected characteristic under federal state or local law. Our diverse team drives innovation competitiveness and creativity enhancing our ability to effectively serve our clients and communities. This commitment to diversity makes us stronger and more adaptable.
Employment Type
Full Time
