Senior Staff SaaS Security Architect
Top focus
Senior Staff SaaS Security Engineer We are looking for a Senior Staff SaaS Security Engineer reporting within the Defensive Engineering leadership team in Global Cyber Security (GCS). You will lead the deployment, integration, and operationalization of SaaS security platforms and controls, enabling visibility, governance, and protection across the enterprise SaaS ecosystem.
Why this role is important to us The team you will be joining is part of the Defensive Engineering, in Global CyberSecurity , a function that is critical to the company’s cybersecurity strategy. As enterprise adoption of SaaS applications and AI-enabled services continues to grow, this role will help ensure these platforms are securely deployed, continuously monitored, and protected against evolving SaaS-to-SaaS, identity-based, and agent-to-SaaS threats.
What you will be responsible for As a Senior Staff SaaS Security Engineer , you will: Lead the deployment, integration, and operationalization of SaaS Security Posture Management (SSPM), SaaS threat protection, and governance capabilities across enterprise SaaS platforms.
Partner with application owners, platform teams, and security stakeholders to onboard SaaS applications, implement security controls, and drive remediation of identified risks. Design and maintain SaaS security integrations, API-based telemetry collection, and automation workflows to provide continuous visibility into SaaS security posture and threats.
Develop and maintain SaaS security standards, architecture documentation, operational procedures, and implementation guidelines. Track and report key SaaS security metrics, including application coverage, posture findings, threat exposure, and remediation progress.
What we value These skills will help you succeed in this role: Hands-on experience with SSPM, CASB, SaaS security, or SaaS threat protection platforms such as Obsidian Security. Strong understanding of SaaS-to-SaaS, identity-to-SaaS, and agent-to-SaaS threats, including account takeover, OAuth abuse, privilege escalation, data exposure, and unauthorized application access.
Experience onboarding enterprise SaaS applications and implementing security controls through APIs, automation, and governance frameworks. Strong knowledge of OAuth, OpenID Connect (OIDC), SAML/SSO, API permission models, and modern SaaS security architectures.
Strong analytical, problem-solving, automation, and scripting skills. Education & Preferred Qualifications Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience. 8+ years of experience in information security with a focus on SaaS security, cloud security, identity security, or platform security. 5+ years of hands-on experience with SSPM, CASB, SaaS threat protection, or related security technologies.
Experience working in financial services or other highly regulated industries preferred. Relevant cloud or information security certifications (e.g., CISSP, CCSP, AWS/Azure Security) preferred. Additional Requirements Experience securing enterprise SaaS ecosystems and managing application risk at scale.
Experience working with modern SaaS platforms, APIs, automation frameworks, and cloud-native security technologies. Knowledge of emerging AI and agentic technologies and their impact on SaaS security is a plus. Work Requirement Hybrid work model in accordance with company policy.
Ability to collaborate effectively with global teams across multiple time zones. Standard business hours with flexibility to support critical incidents and deployments when required. Salary Range: $120,000 - $202,500 Annual The range quoted above applies to the role in the primary location specified.
If the candidate would ultimately work outside of the primary location above, the applicable range could differ. Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.
For a full overview, visit https://hrportal.ehr.com/statestreet/Home . About State Street Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success.
We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most.
Join us in shaping the future. As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.
Discover more information on jobs at StateStreet.com/careers Read our CEO Statement Job Application Disclosure: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment.
An employer who violates this law shall be subject to criminal penalties and civil liability.