What are the responsibilities and job description for the SaaS Security Data Analyst position at Trilyon, Inc.?
For over 15 years, Trilyon has been at the forefront of providing comprehensive global workforce solutions and staffing services. Leveraging our extensive expertise across multiple domains such as Cloud technology, Salesforce, AI, Machine Learning, and Technical Writing, we consistently exceed expectations in catering to a wide range of requirements.
Currently we are seeking a “SaaS Security Data Analyst” for one of our clients that is a leading multination corporation.
Role : SaaS Security Data Analyst
Location: : 100% Remote
Type : Contract
Job Description
Contact No. 408-834-7453
Email id- sam@trilyonservices.com
Equal Employment Opportunity
Trilyon is an Equal Opportunity Employer, committed to fairness and respect for all individuals. We value diversity in age, disability, ethnicity, gender, gender identity, religion, and sexual orientation, believing it drives innovation and better service. Employment decisions are made impartially, without regard to any protected characteristic under federal, state, or local law. Our diverse team drives innovation, competitiveness, and creativity, enhancing our ability to effectively serve our clients and communities. This commitment to diversity makes us stronger and more adaptable.
Currently we are seeking a “SaaS Security Data Analyst” for one of our clients that is a leading multination corporation.
Role : SaaS Security Data Analyst
Location: : 100% Remote
Type : Contract
Job Description
- Develop custom connections to SaaS platforms using Python
- Work with REST APIs, GraphQL, and OAuth authentication
- Collaborate with the security team to understand requirements and implement solutions
- Ensure code quality and maintainability through continuous integration and deployment practices
- Gathering data from our SaaS applications via API
- Work with security architecture to determine the proper operating protocols for SaaS applications
- Analyze the data available to monitor for the proper implementation of security controls in the SaaS applications
- Leverage all the above to meet expected standards and protect company data resident in SaaS applications
- Objective - to enhance the security posture of SaaS applications by implementing robust data gathering, analysis, and monitoring processes. This tech spec outlines the responsibilities and technical expectations for the SaaS Security Data Analyst role.
- Use the Obsidian SDK to interface with SaaS APIs for data extraction.
- Ensure the API connections are secure, efficient, and robust.
- Implement automated data collection processes from various SaaS platforms.
- Deliverable: Data is extracted regularly from the target SaaS systems and stored in system of record (i.e. Obsidian Security)
- Data Analysis and Compliance Requirements:
- Analyze the gathered data to identify security vulnerabilities due to misconfiguration.
- Work closely with the security architecture team to define secure operating parameters for various SaaS applications.
- Use the data to gather information about integrations with other systems.
- Where frameworks such as a CIS benchmark exists, use the data to identify compliance issues with the expected operating profile.
- Deliverable: A documented mapping of configuration data from SaaS systems to configuration state and security requirements, with parameters for passing and failing clearly defined.
- Utilize statistical methods and machine learning techniques where applicable to enhance analysis accuracy.
- Ensure that the implemented protocols are aligned with industry best practices and compliance requirements.
- Using the data from the platforms, create notifications for system owners when there is a gap in compliance.
- Deliverable: Dashboards and reports that provide actionable insights into the security posture of SaaS applications.
- Where possible, leverage the Obsidian Security platform to monitor for adherence to security policies within SaaS environments.
- Work with the SaaS Security Analyst and system owners to set up alerting mechanisms to notify relevant stakeholders of any detected anomalies or breaches in real time.
- Integrate these processes with existing ticketing workflows via Jira and ServiceNow.
- Not a hard requirement, but expectation is for candidates to have a BS degree, as they will need to be good at programmatic data analysis.
- Proficient in Python – preferred 5 years of experience but willing to consider 3 if candidate is a rockstar and performs well during interview.
- Experience with API development and integration
- Solid understanding of cybersecurity principles and best practices
- Understanding of GraphQL
- Experience with OAuth authentication
- Familiarity with continuous integration and deployment (CI/CD) processes
- Knowledge of hosting and deployment strategies, including Kubernetes, Docker, etc.
- Experience with SaaS platforms such as Salesforce, ServiceNow, GitHub, and Docusign
- Working knowledge of security practices and understanding of threat actors
- Ability to identify valuable security insights within a SaaS platform
Contact No. 408-834-7453
Email id- sam@trilyonservices.com
Equal Employment Opportunity
Trilyon is an Equal Opportunity Employer, committed to fairness and respect for all individuals. We value diversity in age, disability, ethnicity, gender, gender identity, religion, and sexual orientation, believing it drives innovation and better service. Employment decisions are made impartially, without regard to any protected characteristic under federal, state, or local law. Our diverse team drives innovation, competitiveness, and creativity, enhancing our ability to effectively serve our clients and communities. This commitment to diversity makes us stronger and more adaptable.
