SaaS Security Posture Management (SSPM) Engineer
About the role
As a SaaS Security Posture Management (SSPM) Engineer, you will make an impact by strengthening the security, governance, and resilience of enterprise SaaS platforms through continuous monitoring, risk assessment, and automation. You will be a valued member of the Cybersecurity team and work collaboratively with cloud security, identity management, governance, and engineering teams to help secure the organization's expanding SaaS and cloud ecosystem while enabling business innovation.
In this role, you will:
- Design, deploy, and manage SaaS Security Posture Management (SSPM) capabilities to identify and remediate security risks across enterprise SaaS platforms.
- Assess SaaS environments for configuration weaknesses, identity and access risks, excessive permissions, data exposure, and third-party application vulnerabilities.
- Develop integrations and automation workflows between SSPM solutions, IAM platforms, SIEM tools, governance systems, and service management platforms.
- Partner with cloud security and infrastructure teams to implement consistent security controls across AWS, Google Cloud Platform (GCP), Microsoft Azure, Oracle Cloud Infrastructure (OCI), and SaaS environments.
- Contribute to SaaS governance, risk management, compliance initiatives, security standards, and secure-by-design practices while providing actionable recommendations to stakeholders.
Work model
We believe hybrid work is the way forward as we strive to provide flexibility wherever possible. Based on this role's business requirements, this is a hybrid position requiring 3 days per week in a Cognizant or client office in Phoenix, AZ. Regardless of your working arrangement, we are here to support a healthy work-life balance through our various wellbeing programs.
The working arrangements for this role are accurate as of the date of posting. This may change based on the project you're engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.
What you need to have to be considered
- 5+ years of experience in Security Engineering, Cloud Security, SaaS Security, or related cybersecurity disciplines.
- Hands-on experience with SaaS Security Posture Management (SSPM) platforms such as AppOmni, Obsidian, Palo Alto SSPM, Adaptive Shield, Wing Security, Valence, or similar technologies.
- Strong understanding of SaaS security, Identity and Access Management (IAM), API security, data protection, and security monitoring principles.
- Experience securing cloud environments, including AWS, Google Cloud Platform (GCP), Microsoft Azure, and/or Oracle Cloud Infrastructure (OCI).
- Proficiency in automation and scripting technologies such as Python, PowerShell, APIs, Terraform, GitHub, and related security automation frameworks.
- Experience integrating security tools and building automated workflows to improve visibility, risk management, and operational efficiency.
- Understanding of security controls, governance frameworks, risk assessment methodologies, and compliance requirements.
- Strong analytical, communication, stakeholder management, and problem-solving skills.
These will help you stand out
- Experience with Cloud Access Security Broker (CASB) solutions and enterprise SaaS governance programs.
- Familiarity with AI and Generative AI security risks associated with SaaS platforms and emerging technologies.
- Experience developing security dashboards, metrics, reporting frameworks, and executive-level risk summaries.
- Knowledge of identity federation, cloud-native security architectures, logging, monitoring, and data protection technologies.
- Experience supporting enterprise security certification, audit, exception management, and risk review processes.
- Relevant certifications such as CISSP, CCSP, AWS Security Specialty, Google Professional Cloud Security Engineer, Azure Security Engineer Associate, or OCI Security Professional.
We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.
About Cognizant:
Cognizant (Nasdaq: CTSH) is an AI Builder and technology services provider, bridging the gap between AI investment and enterprise value by building full-stack AI solutions for our clients. Our deep industry, process and engineering expertise enables us to build an organization’s unique context into technology systems that amplify human potential, drive tangible outcomes and keep global enterprises ahead in a fast-changing world. See how at cognizant.ai or @cognizant.
Additional employment information
Compensation information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.
Language requirements vary depending on roles, but we ask that all candidates have basic English proficiency for company-wide communications purposes. For roles based in Quebec, professional English proficiency is required, as you’ll deliver services to and collaborate with stakeholders outside the province who may not speak French.
Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, provincial or local laws.
If you have a disability that requires reasonable accommodation to search for a job opening or submit an application, please email [email protected] with your request and contact information.











