Lead, SaaS Security Posture Management
Wash, 213 Washington St., Newark, NJ
Full Time Senior-level / Expert USD 125K - 186K
Prudential Financial
Helping individuals and institutions improve their financial wellness through life & health insurance, retirement services, annuities and investment products.Job Classification:
Technology - Information SecurityAre you interested in building capabilities that enable the organization with innovation, speed, agility, scalability and efficiency?
Your Team & Role
As a Lead of Software as a Service (SaaS) Security Posture Management on the Vulnerability and Compliance Management Team, you will partner with other security professionals across the Information Security Office, the Chief Technology Office, and other groups in Prudential to drive Prudential’s Cloud security efforts across the global enterprise.
You will oversee the security and compliance posture of our SaaS platforms. You will partner with our Corporate Technology teams, DevOps and ASM (Attack Surface Management) partners for opportunities to enhance baseline capabilities, partner with stakeholder organizations to establish preventive controls, and identify and mitigate potential security risks and maintain a secure SaaS environment.
In addition, you will help leaders evolve and grow the strategic direction of the program and contribute to SaaS and Cloud Security Posture Management (CSPM) security standards, drive enablement of new capabilities and identification of attack surface reduction opportunities. You will work on significant and unique issues where analysis of context-based risk, unique business environments or vulnerability exploitability requires an evaluation of variables to drive time-sensitive risk reduction efforts. In your efforts, you will continuously look at opportunities to automate and strengthen controls. An agile and continuous improvement/learning mindset is a must for our team.
Here is What You Can Expect on a Typical Day:
- Lead the SaaS and CSPM vulnerability and compliance security strategy, including the design and implementation of attack surface reduction and security configurations across all SaaS Platforms.
- Perform regular vulnerability and configuration assessments on SaaS applications to assess the effectiveness and support hardening efforts .
- Track, prioritize, and remediate vulnerability and compliance issues identified in the platform, ensuring timely remediation.
- Implement automated policies for continuous monitoring and preventive controls.
- Manage and oversee the SSPM vulnerability management program and partnering with other ISO organizations as the subject matter expert, including prioritization of systems and controls needed to address attack surface reduction.
- Automate and define workflows for lifecycle management of SSPM findings, working in partnership with the ASM orchestration team. Instrument risk indicators and reporting.
- Collaborate with the Attack Surface Management team, SaaS Security team and Third Party Governance to identify and address security risks associated with SaaS platforms and ensure that they are properly mitigated.
- Develop and maintain SaaS security policies, procedures, and best practices in alignment with industry standards and regulatory requirements and compliance.
- Support and assist security incident response efforts related to SaaS environments, working closely with the Incident Response team to support any investigations.
- Conduct regular risk assessments and support evaluation of the effectiveness of security controls and identify areas for improvement.
- Ensure SaaS platforms adhere to security compliance standards such as SOC 2, ISO 27001, GDPR, HIPAA, and others as required.
- Conduct regular compliance audits and assessments, working with auditors and internal teams to resolve gaps.
- Maintain documentation and artifacts for compliance reporting and certifications.
- Stay up-to-date with the latest security trends, threats, and technologies, and recommend innovative solutions to enhance the security posture of the organization. Advocate for and implement security best practices throughout the SaaS development lifecycle
- Collaborate with external partners, vendors, and auditors to ensure compliance with security standards and regulations.
- Responsible for continuous monitoring of attack surface and ensuring remediation governance via escalation to business and risk advisors.
- Partner with support organizations to establish security standards, design requirements and build the roadmap to implement SaaS security controls to ensure the secure deployment of resources.
- Work to Operationalize new processes for SSPM continuous monitoring.
- · Provide mentorship, training, and guidance for team members, working with and guiding more junior team members.
- Support managers and Prudential leadership on new initiatives and opportunities to grow our security practices.
- Ensures proper communication of the program’s results, opportunities, and deficiencies, as needed, to Prudential upper management.
- Leverage Security Operations and tool/process specific knowledge to resolve complex technical/process/people problems the team faces.
- Responsible for review and approval of remediation deferment requests, escalation where appropriate
The Skills & Expertise You Bring
- Bachelor of Computer Science or Software Engineering or experience in related fields
- Experience with agile development methodologies and Test-Driven Development (TDD).
- Knowledge of business concepts, tools and processes that are needed for making sound decisions in the context of the company's business.
- Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges.
- Ability to coach others with some guidance and effectively leverage diverse ideas, experiences, thoughts, and perspectives to the benefit of the organization.
- Strong communication skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
- Excellent problem solving, communication, and collaboration skills. Ability to think creatively, innovate and challenge status quo processes or procedures.
Advanced experience in several of the following:
- Experience using industry-standard vulnerability scanning and security tools (Qualys, Tenable, Wiz, NMAP, Cloud Native – AWS, Azure)
- Experience with standard frameworks, such as OWASP, MITRE ATT&CK, and NIST.
- In-Depth knowledge of threat intelligence frameworks & methodology that will help aid the response process.
- Familiarity with defensive and monitoring technologies such intrusion prevention/detection systems (IPS/IDS), Web Application Firewalls (WAFs) security information and event management systems (SIEMs), firewalls, endpoint protection (EPP) and endpoint detection/response (EDR) tools, as well as user and entity behavior analytics (UEBA).
- Experience with Vulnerability management lifecycle best practices and tools used for SaaS and cloud monitoring (Wiz, AppOmni, Cloud Native – AWS, Azure) Experience with standard frameworks, such as MITRE ATT&CK, CIS and NIST.
- In-Depth knowledge of threat intelligence frameworks & methodology that will help aid the response process.
- Proven experience in SaaS security, vulnerability management, or related roles.
- Proven experience leading security initiatives in SaaS environments, including designing and implementing security controls.
- Strong understanding of network security, encryption, identity and access management, and incident response.
You’ll Love Working Here Because You Can
Join a team and culture where your voice matters; where every day, your work transforms our experiences to make lives better. As you put your skills to use, we’ll help you make an even bigger impact with learning experiences that can grow your technical AND leadership capabilities. You’ll be surprised by what this rock-solid organization has in store for you.
What we offer you:
- Market competitive base salaries, with a yearly bonus potential at every level
- Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave
- Retirement plans:
- 401(k) plan with company match (up to 4%)
- Company-funded pension plan
- Wellness Programs to help you achieve your wellbeing goals, including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs
- Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.
- Tuition Assistance to help finance traditional college enrollment toward obtaining an approved degree, many accredited certificate programs, and industry designations.
- Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.
To find out more about our Total Reward package, see our Total Rewards Brochure. Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.
Note: Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $125,000.00 to $186,100.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills. Roles may also be eligible for additional compensation and/or benefits. Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. In addition, employees are eligible for standard benefits package including paid time off, medical, dental and retirement.Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.
Prudential is a multinational financial services leader with operations in the United States, Asia, Europe, and Latin America. Leveraging its heritage of life insurance and asset management expertise, Prudential is focused on helping individual and institutional customers grow and protect their wealth. The company's well-known Rock symbol is an icon of strength, stability, expertise and innovation that has stood the test of time. Prudential's businesses offer a variety of products and services, including life insurance, annuities, retirement-related services, mutual funds, asset management, and real estate services.
We recognize that our strength and success are directly linked to the quality and skills of our diverse associates. We are proud to be a place where talented people who want to make a difference can grow as professionals, leaders, and as individuals. Visit www.prudential.com to learn more about our values, our history and our brand.
Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender identity, national origin, genetics, disability, marital status, age, veteran status, domestic partner status , medical condition or any other characteristic protected by law.
The Prudential Insurance Company of America, Newark, NJ and its affiliates.
Note that this posting is intended for individual applicants. Search firms or agencies should email Staffing at staffingagencies@prudential.com for more information about doing business with Prudential.
PEOPLE WITH DISABILITIES:
If you need an accommodation to complete the application process, which may include an assessment, please email accommodations.hw@prudential.com.
Please note that the above email is solely for individuals with disabilities requesting an accommodation. If you are experiencing a technical issue with your application or an assessment, please email careers.technicalsupport@prudential.com to request assistance.
Tags: Agile Analytics ASM Audits AWS Azure Cloud Compliance Computer Science CSPM DevOps EDR Encryption Finance Firewalls GDPR Governance HIPAA IAM IDS Incident response Intrusion prevention IPS ISO 27001 MITRE ATT&CK Monitoring Network security NIST Nmap OWASP Qualys Risk assessment SaaS Security strategy SIEM SOC SOC 2 Strategy TDD Threat intelligence Vulnerability management
Perks/benefits: 401(k) matching Career development Competitive pay Equity / stock options Health care Insurance Medical leave Parental leave Salary bonus Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.