Senior SaaS Security Engineer
Role: Security EngineerCompany: Charles Schwab
Job description
Position Type: Regular Your opportunity Join Schwab's elite Cloud & Data Security Engineering (CDSE) group, where we design and develop cutting-edge cloud security solutions in the areas of cybersecurity. As a Senior SaaS Security Engineer, you will play a pivotal role in safeguarding our most valuable asset—client information—while driving the adoption of secure SaaS applications across the enterprise. In this role, you will collaborate with a talented team to enhance our SaaS security posture and tackle complex security challenges. You will utilize your expertise in Security Posture Management (SSPM) and Cloud Access Security Broker (CASB) platforms to build and implement robust security measures for our growing portfolio of SaaS applications. What you're good at • Building collaborative relationships across various business functions including consumer, technology, risk, and audit. • Effectively identifying and communicating intricate business and technical issues related to information risk. • Swiftly pinpointing bottlenecks and creating innovative solutions that transcend traditional processes. • Producing professional documentation on cybersecurity and SaaS applications, encompassing designs, processes, SLAs, and diagrams. • Applying industry standards such as NIST, CIS, CSA, PCI, and ISO 27001 to cloud platforms and services. • Monitoring and responding to potential threats, anomalies, and compliance requirements related to SaaS. • Ensuring adherence to regulatory standards and best practices (NIST, COBIT, etc.). • Leading development pipelines using RESTful methodologies and CI/CD tooling, while remaining proficient with Git. • Working with and integrating web service APIs effectively. • Translating security requirements into actionable controls and policies. • Prioritizing workstreams for efficient delivery within an Agile framework. • Mentoring and developing colleagues to enhance team performance. What you have • A minimum of 5 years of technical experience in a large enterprise environment, with a focus on systems administration. • 5+ years of experience with cloud technologies, particularly as-a-service platforms. • At least 3 years of operational experience with security technologies. • Demonstrated proficiency in deploying, configuring, and managing cloud security platforms (CASB, SSPM, etc.). • In-depth knowledge of the current SaaS threat landscape and effective mitigation strategies. • Excellent communication skills, both written and verbal. • Familiarity with programming/scripting languages such as Go, PowerShell, Python, Bash, SQL, or BASIC. • Experience with technology lifecycles and best practices. • Understanding of regulatory and industry standards in cloud security. • Comprehensive knowledge of CASB, SSPM, and DLP technologies within large distributed systems. • A broad grasp of interconnected security domains and concepts. • Development and scripting experience with cloud service providers and their APIs. • Ability to analyze and derive metrics from large datasets. • Motivation as a self-starter, excelling both individually and as part of a team. • A passion for technology and a strong commitment to continuous improvement. • General knowledge of networking technologies and protocols within enterprise environments. • Hands-on experience with SIEM, SOAR, Kafka, and other logging tools. • Expertise in source control and agile methodologies. • Preferred security certifications from ISC 2, CSA, or SANS, focusing on cloud security. • A Bachelor of Science in Information Technology, Security Assurance, Computer Science, or a related field is preferred. Platforms • Cloud Access Security Broker (CASB) - Zscaler/Netskope • SaaS Security Posture Management (SSPM) - Adaptive Shield/AppOmni/Obsidian • Cloud Security Posture Management (CSPM) - Palo Alto Prisma • Cloud Service Provider(s): AWS, Azure, GCP Continuous Integration/Continuous Deployment & Orchestration • Plan, Track & Support: JIRA, Confluence, Remedy • Code, Build & Ship: GitHub, Azure DevOps, BitBucket, Bamboo • Infrastructure as Code: Terraform, SaltStack, Ansible, CloudFormation What's in it for you At Schwab, we empower our employees to achieve personal and professional success through a supportive and purpose-driven culture. Our hybrid work approach balances flexibility with the value of in-person collaboration, and we offer a comprehensive benefits package that supports your overall well-being: • 401(k) with company match and employee stock purchase plan • Generous paid time off for vacation, volunteering, and a 28-day sabbatical after five years of service (for eligible positions) • Paid parental leave and family building benefits • Tuition reimbursement • Comprehensive health, dental, and vision insurance
Requirements
• Building collaborative relationships across various business functions including consumer, technology, risk, and audit
• Effectively identifying and communicating intricate business and technical issues related to information risk
• Swiftly pinpointing bottlenecks and creating innovative solutions that transcend traditional processes
• Ensuring adherence to regulatory standards and best practices (NIST, COBIT, etc.)
• Leading development pipelines using RESTful methodologies and CI/CD tooling, while remaining proficient with Git
• Working with and integrating web service APIs effectively
• Translating security requirements into actionable controls and policies
• Prioritizing workstreams for efficient delivery within an Agile framework
• Mentoring and developing colleagues to enhance team performance
• A minimum of 5 years of technical experience in a large enterprise environment, with a focus on systems administration
• 5+ years of experience with cloud technologies, particularly as-a-service platforms
• At least 3 years of operational experience with security technologies
• Demonstrated proficiency in deploying, configuring, and managing cloud security platforms (CASB, SSPM, etc.)
• In-depth knowledge of the current SaaS threat landscape and effective mitigation strategies
• Excellent communication skills, both written and verbal
• Familiarity with programming/scripting languages such as Go, PowerShell, Python, Bash, SQL, or BASIC
• Experience with technology lifecycles and best practices
• Understanding of regulatory and industry standards in cloud security
• Comprehensive knowledge of CASB, SSPM, and DLP technologies within large distributed systems
• A broad grasp of interconnected security domains and concepts
• Development and scripting experience with cloud service providers and their APIs
• Ability to analyze and derive metrics from large datasets
• Motivation as a self-starter, excelling both individually and as part of a team
• A passion for technology and a strong commitment to continuous improvement
• General knowledge of networking technologies and protocols within enterprise environments
• Hands-on experience with SIEM, SOAR, Kafka, and other logging tools
• Expertise in source control and agile methodologies
• Cloud Security Posture Management (CSPM) - Palo Alto Prisma
• Code, Build & Ship: GitHub, Azure DevOps, BitBucket, Bamboo
• Infrastructure as Code: Terraform, SaltStack, Ansible, CloudFormation
SHARE THIS OPENING
Similar jobs
Job Type
Fulltime role
Skills required
CI/CD, Git, Agile, Go, Python, GitHub, Azure
Location
Phoenix, Arizona
Salary
No salary information was found.
Date Posted
May 2, 2025
Similar jobs
Charles Schwab
Join Charles Schwab as a Senior SaaS Security Engineer, where you will enhance cloud security solutions and protect client information. Collaborate with a talented team to tackle complex security challenges in a dynamic environment.
