Senior SaaS Security Engineer

About The Position

Requirements

• 5–8+ years of experience in cybersecurity, with hands-on work in areas such as detection engineering, threat research, security analytics, or cloud/SaaS security.
• Strong understanding of SaaS security concepts, including identity and access management, OAuth integrations, third-party app risks, and misconfiguration-driven exposure.
• Experience working with security telemetry and logs, including querying and analyzing large datasets (e.g., SQL, Python, or similar tools).
• Experience developing or tuning detection logic, rules, or analytics in a SIEM, XDR, or similar system.
• Familiarity with SaaS application APIs and security-relevant data sources.
• Understanding of attacker techniques in SaaS environments, including identity-based attacks, privilege escalation, and persistence mechanisms.
• Ability to translate complex technical findings into clear, actionable security insights.
• Experience balancing detection fidelity, coverage, and performance in production systems.
• Experience partnering with Product and Engineering to deliver customer-facing security capabilities.
• Strong analytical thinking and problem-solving skills, with attention to detail.
• Strong written and verbal communication skills.
• Experience partnering closely with Product and Engineering to deliver customer-facing capabilities.
• Strong written and verbal communication skills.

Responsibilities

• Design and develop detection logic and security rules to identify threats, suspicious behaviors, and misconfigurations across SaaS applications.
• Research SaaS platforms (e.g., Google Workspace, Microsoft 365, Salesforce, Slack, etc.) to understand security models, APIs, and potential attack surfaces.
• Translate real-world attack techniques and SaaS security risks into scalable product capabilities, including detections, posture checks, and risk signals.
• Contribute to both threat detection and posture management content, ensuring broad coverage across identity, access, integrations, and data exposure risks.
• Analyze large-scale SaaS telemetry to identify patterns, anomalies, and opportunities for new detections or improvements.
• Continuously improve detection quality by reducing false positives and ensuring signals are actionable for customers.
• Collaborate with Engineering to productionize detection logic and ensure reliable execution at scale.
• Partner with Product to shape how security insights are surfaced, prioritized, and explained to users.
• Stay current on emerging SaaS attack techniques, identity threats, OAuth risks, and AI-related security considerations.
• Contribute to internal knowledge sharing and help elevate SaaS security expertise across the organization.

Benefits

• Generous PTO, company and floating holidays, parental and family leave, health insurance (medical, dental, vision with HSA option), EAP, company-provided life insurance, AD&D, STD/LTD, supplemental life insurance options, 401(k) with Roth, and a monthly wellness benefit reimbursement.