• Supervise, mentor, and develop a team of SaaS security engineers and analysts, fostering professional growth and maintaining high team performance. • Manage day-to-day SaaS security operations, including continuous monitoring of SaaS application configurations, user activity, and integrations for security risks. • Design, implement, and maintain robust security controls and policies aligned with organizational requirements and industry best practices for SaaS applications. • Oversee the configuration, monitoring, and utilization of SaaS Security Posture Management (SSPM) tools to identify and remediate misconfigurations, excessive permissions, and compliance gaps across the SaaS landscape. • Lead the assessment and management of security risks associated with third-party SaaS vendors, including due diligence, contract reviews, and continuous monitoring of vendor security posture and compliance. • Ensure the secure integration of SaaS applications, focusing on API security, secure authentication (e.g., SSO, MFA), and data flow protection. • Ensure SaaS application compliance with regulatory and internal requirements, with a specific focus on interpreting, implementing, and documenting controls based on frameworks such as NIST 800-53, SOC 2, and ISO 27001 as applied to SaaS. • Support SaaS-specific security incident response activities – when requested by Cyber Defense leadership – ensuring effective containment, analysis, and resolution for incidents involving SaaS applications. • Collaborate effectively with engineering, operations, procurement, legal, and business teams to integrate security throughout the SaaS application lifecycle, from selection and onboarding to offboarding. • Develop and present reports on the SaaS security posture, vendor risk, compliance status, and key security initiatives in existing Governance Forums. • Stay abreast of the latest security threats, vulnerabilities, and security best practices relevant to SaaS applications and their underlying cloud platforms.