SaaS Security Data Analyst

Needs a Python developer with API development and integration experience
Client uses Obsidian Security for SaaS data security. The primary goal of this resource is to customize SaaS security tools for client needs using API and SDK provided by Obsidian to ingest into the platform client is using.

Job Description:
The use of SaaS applications is central to our operating environment and monitoring these for secure configurations is every bit as important as the more traditional monitoring of workload telemetry and network data. Client is looking for a Python developer to work in partnership with our security team to add custom connections to our SaaS security platform, Obsidian Security. The primary role involves pulling data directly from SaaS platforms’ APIs. Experience with integrating into SaaS platforms like Salesforce, ServiceNow, etc., is desirable but not necessary. This role plays an integral part of ensuring that the SaaS environments we use are properly secured and the data protected from loss or theft.

Responsibilities
Develop custom connections to SaaS platforms using Python
Work with REST APIs, GraphQL, and OAuth authentication
Collaborate with the security team to understand requirements and implement solutions
Ensure code quality and maintainability through continuous integration and deployment practices

What you will do
Gathering data from our SaaS applications via API
Work with security architecture to determine the proper operating protocols for SaaS applications
Analyze the data available to monitor for the proper implementation of security controls in the SaaS applications
Leverage all the above to meet expected standards and protect company data resident in SaaS applications
Specific deliverables
Objective - to enhance the security posture of Client SaaS applications by implementing robust data gathering, analysis, and monitoring processes. This tech spec outlines the responsibilities and technical expectations for the SaaS Security Data Analyst role.
API Integration and Data Gathering:
Use the Obsidian SDK to interface with SaaS APIs for data extraction.
Ensure the API connections are secure, efficient, and robust.
Implement automated data collection processes from various SaaS platforms.
Deliverable: Data is extracted regularly from the target SaaS systems and stored in client system of record (i.e. Obsidian Security)
Data Analysis and Compliance Requirements:
Analyze the gathered data to identify security vulnerabilities due to misconfiguration.
Work closely with the security architecture team to define secure operating parameters for various SaaS applications.
Use the data to gather information about integrations with other systems.
Where frameworks such as a CIS benchmark exists, use the data to identify compliance issues with the expected operating profile.
Deliverable: A documented mapping of configuration data from SaaS systems to configuration state and security requirements, with parameters for passing and failing clearly defined.
Visualization and Reporting:
Utilize statistical methods and machine learning techniques where applicable to enhance analysis accuracy.
Ensure that the implemented protocols are aligned with industry best practices and compliance requirements.
Using the data from the platforms, create notifications for system owners when there is a gap in compliance.
Deliverable: Dashboards and reports that provide actionable insights into the security posture of SaaS applications.
Monitoring and Alerts:
Where possible, leverage the Obsidian Security platform to monitor for adherence to security policies within SaaS environments.
Work with the SaaS Security Analyst and system owners to set up alerting mechanisms to notify relevant stakeholders of any detected anomalies or breaches in real time.
Integrate these processes with existing ticketing workflows via Jira and ServiceNow.

Education:
Not a hard requirement, but expectation is for candidates to have a BS degree, as they will need to be good at programmatic data analysis.

Requirements
Proficient in Python – preferred 5 years of experience but willing to consider 3+ if candidate is a rockstar and performs well during interview.
Experience with API development and integration
Solid understanding of cybersecurity principles and best practices
Understanding of GraphQL
Experience with OAuth authentication
Familiarity with continuous integration and deployment (CI/CD) processes
Knowledge of hosting and deployment strategies, including Kubernetes, Docker, etc