Senior Security Engineer - SaaS Security Posture Manager
United States (Remote)
Full Time Senior-level / Expert USD 105K - 197K
Join us in bringing joy to customer experience. Five9 is a leading provider of cloud contact center software, bringing the power of cloud innovation to customers worldwide.
Living our values everyday results in our team-first culture and enables us to innovate, grow, and thrive while enjoying the journey together. We celebrate diversity and foster an inclusive environment, empowering our employees to be their authentic selves.
We are looking for a dynamic Senior Security Engineer - SaaS Security Posture Manager to join our team. In this role, you will collaborate closely with our IT, InfoSec, and various business units to ensure the security and integrity of our SaaS products. You will audit configurations, integrate security considerations into the purchasing process, and proactively safeguard our SaaS applications. Your expertise will be essential in maintaining compliance with security standards and protecting our digital assets. This position is open to qualified applicants nationwide. Candidates residing within 50 miles of our San Ramon, CA or San Francisco, CA offices are required to be in the office three days a week (Mondays, Wednesdays, Thursdays).
Key Responsibilities:- SaaS Configuration Auditing: Conduct thorough audits of SaaS application configurations to identify security vulnerabilities, misconfigurations, and compliance gaps.
- Security Integration in Purchase Cycle: Collaborate with procurement and IT teams to integrate security considerations into the purchase cycle of SaaS applications. Review security aspects of potential SaaS solutions before purchase and provide recommendations to mitigate risks.
- Risk Assessment: Assess the security risks associated with SaaS applications, considering factors such as data sensitivity, access controls, and compliance requirements.
- Security Configuration Guidance: Provide guidance and best practices for configuring SaaS applications securely, including user access controls, data encryption, and integration with identity management systems.
- Policy Development: Develop and enforce policies related to SaaS security configurations, ensuring alignment with industry standards and regulatory requirements.
- Vendor Management: Manage relationships with SaaS vendors regarding security-related issues, including conducting security assessments, negotiating security provisions in contracts, and ensuring vendor compliance with security standards.
- Training and Awareness: Develop and deliver training programs to educate internal stakeholders on secure SaaS configuration practices and the importance of security in the SaaS purchase process.
- Continuous Improvement: Stay updated on emerging threats and security best practices related to SaaS environments. Continuously improve auditing processes and integration practices to enhance the security posture of our SaaS offerings.
- 5+ years general experience in information security - operations, engineering, incident response, SOC analyst, etc.
- 3+ years experience auditing SaaS application configurations.
- Experience running projects – either informal PM/TPM experience, or formal.
- Formal education in Computer Sciences/Cybersecurity or related industry certifications (e.g., CISSP, CISM, CCSP, CISA). Bachelor’s degree in Computer Science, Information Security, or a related field is a plus, but not required.
- Proven experience in auditing SaaS application configurations for security vulnerabilities and compliance gaps.
- Familiarity with security frameworks and standards relevant to SaaS environments, such as SOC 2, GDPR, and HIPAA.
- Experience in vendor management and contract review, particularly in relation to security provisions.
- Excellent communication and presentation skills, with the ability to effectively and succinctly convey complex security concepts to non-technical stakeholders.
- Strong analytical and problem-solving abilities, with a meticulous attention to detail.
- Ability to work independently and collaboratively in a fast-paced environment.
- Must learn quickly and adapt to a changing environment and be eager to accept new responsibilities.
#LI-Remote
#LI-RN1
As part of our continued commitment to diversity, equity, and inclusion, Five9 supports pay transparency during the entire recruitment process. Actual compensation packages are based on several factors that are unique to each candidate including, but not limited to: skill set, depth of experience, certifications, and specific work location. The range displayed reflects the minimum and maximum target for new hire salaries for the job across the United States. Your recruiter can share more about the specific compensation package during your hiring process.
Additionally, the total compensation package for this position may also include an annual performance bonus, stock, and/or other applicable incentive compensation plans.
Our total reward package also includes:
- Health, dental, and vision coverage, beginning on the first day of employment. Five9 covers 100% of the employee portion of the health, dental and vision coverage and shares a high portion of the dependent cost. We also offer Short & Long-Term Disability, Basic Life Insurance, and a 401k saving plan with employer matching.
- Access to an innovative mental health support platform that offers personalized care and resources in areas such as: therapy, coaching and self-guided mindfulness exercises for all covered employees and their covered dependents.
- Generous employee stock purchase plan.
- Paid Time Off, Company paid holidays, paid volunteer hours and 12 weeks paid parental leave.
All compensation and benefits are subject to the requirements and restrictions set forth in the applicable plan documents and any written agreements between the parties.
The US base salary range for this role is below. $105,500—$197,400 USDFive9 embraces diversity and is committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better we are. Five9 is an equal opportunity employer.
Our headquarters are located in the San Francisco Bay Area with global hubs in the United Kingdom, Germany, Philippines, Portugal, and Australia.
View our privacy policy, including our privacy notice to California residents here: https://www.five9.com/pt-pt/legal.
Note: Five9 will never request that an applicant send money as a prerequisite for commencing employment with Five9.
Tags: Audits CCSP CISA CISM CISSP Cloud Compliance Computer Science Encryption GDPR HIPAA Incident response Privacy Risk assessment SaaS Security assessment SOC SOC 2 Vendor management Vulnerabilities
Perks/benefits: 401(k) matching Equity / stock options Flex vacation Health care Insurance Parental leave Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs