At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
JD : SaaS Security Posture Management engineer – Exp –3-4 years
Responsibilities:
Conduct regular risk assessments and vulnerability scans on SaaS applications.
Identify and prioritize security risks, and work with relevant teams to implement mitigations.
Track and manage security incidents and work on their resolution and prevention.
Collaborate with IT, DevOps, and application development teams to integrate security controls into the software development lifecycle.
Implement tools and frameworks for continuous monitoring and improvement of the security posture.
Working Experience on tools Wiz, Prisma for security posture management
Monitor the security configurations of SaaS applications to ensure they align with best practices and industry standards.
identify potential security vulnerabilities within SaaS applications and prioritize remediation efforts based on risk severity.
Ensure that SaaS applications comply with relevant regulations and standards (e.g., GDPR, HIPAA, SOC 2).
Required:
Minimum of 3 years of IT experience
At least 2+ years of specialization in cloud and Saas Security.
Experience using or fixing vulnerabilities various SaaS security tools.
Cloud Security certification for AWS/Azure/GCP
Good Understanding of regulations and standards (e.g., GDPR, HIPAA, SOC 2).
Experience in vulnerability and access management.
Preferred:
Strong knowledge of relevant Security Standards (OWASP) and how to apply them to the software development lifecycle in a large agile environment.
Conduct regular reviews and updates of security policies, procedures, and controls to adapt to new threats and changes in the environment.
Experience in SSPM tools integration with other security solutions, such as SIEM (Security Information and Event Management)
Good understanding of SaaS security baselines.
Knowledge of CSPM tool Adaptive shield
EY | Building a better working world
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.