Security Engineer II - SaaS Applications

SUMMARY

We’re seeking a Security Engineer II with a focus on SaaS applications to help design, build, and operate security capabilities for our SaaS application ecosystem. This is a hands-on engineering role focused on automation, security telemetry, and scalable security controls across SaaS platforms.

This role is expected to be a strong technical contributor who can independently drive work-streams, collaborate closely with other engineers and analysts, and provide technical insight and mentorship to the team.

The ideal candidate combines deep SaaS security experience with strong Python development skills and a practical mindset for building durable automation that enables detection, response, and configuration management at scale.

WHAT YOU’LL DO

• Design, build, and maintain automation and integrations that collect security-relevant telemetry from SaaS applications, identity providers, and internal systems.
• Partner with security analysts to enable SaaS detection and response through high-quality log ingestion, normalized data, and reliable integrations.
•  Assist in building SaaS-specific detection rules and integrations that improve alert attribution and context.
• Develop Python-based tooling and services to manage SaaS configurations, permissions, access controls, and third-party connections, including detection and response to configuration drift.
• Contribute to our custom automation platform by building integrations, playbooks, and workflows related to SaaS security, identity events, and access lifecycle changes.
• Integrate with SaaS application APIs and event streams to support monitoring, alerting, and automated remediation.
• Implement and support strong authentication and authorization controls across SaaS and internal systems, including SSO, RBAC, and identity lifecycle automation.
• Collaborate with security engineers to design reusable frameworks, contribute to shared libraries and infrastructure, participate in code reviews, and drive improvements that elevate the quality and reliability of security automation across the platform.
• Support SaaS onboarding and lifecycle processes by enabling automated security controls rather than manual review.

WHAT YOU’LL BRING

• 5+ years of experience in security engineering or adjacent engineering roles, with a strong focus on SaaS, identity, and cloud-based environments.
• Strong hands-on experience building automation and integrations using Python, including working with REST APIs, webhooks, and event-driven systems.
• Experience integrating with and securing SaaS platforms using identity standards such as SAML, OAuth, OIDC, SCIM, and role-based access control.
• Experience enabling detection and response by designing log collection pipelines, normalizing data, and supporting security analytics.
• Background in managing or automating SaaS configuration, permissions, and access, including identifying and addressing configuration drift.
• Experience contributing to security automation or SOAR platforms, whether commercial or custom-built.
• Working knowledge of security controls, risk management, and compliance concepts, with an emphasis on technical enablement rather than manual assessment.
• Ability to operate as a senior individual contributor on a small team, balancing independent execution with close collaboration.
• Experience working with globally distributed teams and partnering effectively with analysts, engineers, and business stakeholders.

PREFERRED QUALIFICATIONS

• Bachelor’s degree in computer science or a related field and / or candidates with equivalent job experience in lieu of a degree
• Strong Python development skills with an emphasis on building reliable, maintainable services and automation.
• Proven experience in SaaS application integration and secure configuration management 
• Familiarity with infrastructure-as-code, configuration management, or policy-as-code approaches applied to SaaS or identity systems.
• Experience working in organizations that develop and operate Software as a Service 
• Experience with workflow orchestration platforms (e.g., Temporal, Airflow, Step Functions) for building reliable, long-running automation with retry logic and state management.
• Information Security and Cloud-Relevant certifications are preferred