Job ID: JOB_ID_8272
Job Summary:
We are seeking an experienced Info Security Analyst to work within a multi-tenant SaaS environment. The role involves evaluating third-party SaaS providers, assessing risks, and ensuring compliance with industry standards and regulations. You will be responsible for performing risk assessments, evaluating evidence, interviewing technical teams, and assessing control design and operational effectiveness. This position requires a strong understanding of cloud shared responsibility models, IaaS/PaaS/SaaS differences, containerization (Docker, Kubernetes), and identity federation (SAML, OIDC).
Key Responsibilities:
- Perform risk assessments against Third-Party SaaS providers.
- Evaluate evidence, interview technical teams, and assess control design vs. operating effectiveness.
- Provide detailed analysis of user traffic accessing third-party sites and services to determine and report on enterprise risk.
- Monitor and anticipate trends, investigate organizational objectives and needs.
- Create and maintain operational documentation and reports to support monthly trend analysis and project components.
- Evaluate various SaaS technologies and tools for technical, functional, and financial feasibility.
- Partner with and support various technology and business teams to drive and execute results in a timely manner.
- Provide security expertise to the Cloud Program, including Software as a Service (SaaS), and Cloud Application Architecture subprograms.
- Ensure adherence to financial industry standards and regulations such as FedRamp, NIST, CSA, PCI.
Technical Requirements:
- Strong core Java fundamentals.
- 6-9 years of experience building large-scale applications using Java, Spring framework, Data Structure, Algorithm, Git, Mockito.
- Good to have gRPC/Netty knowledge.
- Experience working on Cloud (public or private) is strongly preferred.
- Strong knowledge and experience on software development methods and performs due diligence in all lifecycle stages of analysis, build, and testing.
- Ability to write good JUnits and extend code coverage.
- Ability to troubleshoot problems in test and production.
- Strong communication skills and a team player.
Environment & Tools:
- Multi-tenant SaaS environments
- Cloud shared responsibility model
- IaaS / PaaS / SaaS differences
- Containerization (Docker, Kubernetes)
- Identity federation (SAML, OIDC)
Qualifications:
- Knowledge of data classification solutions.
- Strong understanding of Multi-tenant SaaS environments.
- Familiarity with Cloud shared responsibility model.
- Understanding of IaaS / PaaS / SaaS differences.
- Experience with Containerization (Docker, Kubernetes).
- Knowledge of Identity federation (SAML, OIDC).
- Familiarity with Financial industry standards and regulations such as FedRamp, NIST, CSA, PCI.
Special Requirements
Onsite, Financial industry standards and regulations such as FedRamp, NIST, CSA, PCI
Compensation & Location
Salary: $70,000 – $120,000 per year (Estimated)
Location: Phoenix, AZ
Recruiter / Company – Contact Information
Recruiter / Employer: Savi Tech
Email: lik@savi-tech.com
Recruiter Notice:
To remove this job posting, please send an email from
lik@savi-tech.com with the subject:
DELETE_JOB_ID_8272