Senior Security Engineer - SaaS Cybersecurity - Hybrid
Company: Charles Schwab
Location: Paradise Valley
Posted on: May 2, 2025
Job Description:
Position Type: RegularYour opportunitySchwab's Cloud & Data
Security Engineering (CDSE) group designs and develops
next-generation cloud (XasS) security solutions for the Schwab
Cybersecurity Services (SCS) organization, providing high security
assurance and the safeguarding of Firm data. The Senior Cloud
Security Engineer will join an elite team of cloud security
engineers and analysts whose mission is to protect Schwab's most
valuable assets: our client information and their trust. -As a
Senior Cloud Security Engineer, you will contribute directly to the
protection and the adoption of SaaS applications within the
enterprise. -With you, we will build on and around core SaaS
security technologies including Security Posture Management (SSPM)
and Cloud Access Security Broker (CASB) platforms. In collaboration
with technical leadership, you will be responsible for designing
and developing major areas of the platforms that implement
preventative and detective capabilities to support Schwab's growing
SaaS portfolio, improving upon overall SaaS security posture and
use. -What you're good at -
Collaboration and relationship
building with multiple cross-functional areas of the enterprise
(consumer, business, technology, risk, audit)Identifying and
communicating complex business and technical problems related to
information riskAbility to swiftly identify bottlenecks or problems
while not being constrained by in-the-box thinking or legacy
processWriting professional level documentation covering topics
related to Cybersecurity or SaaS application technologies. These
include design and implementation documents, process documents,
SLAs, diagrams, etc..Working with industry standards like; NIST,
CIS, CSA, and PCI, and ISO 27001 as it relates to cloud platforms
and services.Monitoring, detecting, and responding to potential
threats, drift, or anomalies of SaaS usage and posture.Ensuring
compliance and meeting the stipulations of regulatory bodies and
acts (NIST, COBIT, etc.)Proven thought leadership with development
pipelines and RESTful methodologies, Git, and Continuous
Integration/Deployment (CI/CD) tooling & automationWorking with and
consuming web service APIsTranslating business & technology
security requirements into functional controls and policyEvaluation
and prioritization of workstreams for efficient delivery via an
Agile methodologyCoach, mentor, and develop less experienced
colleaguesWhat you have
5+ years' large enterprise technical
experience in IT (systems administration preferred)5+ years' cloud
experience working with as-a-service platforms and technology3+
years' operational experience with security technologies and
teamsDemonstrable experience in the deployment, configuration, and
management of cloud security platforms and tools (CASB, SSPM, SSE,
CSPM)Deep understanding of today's SaaS threat landscape,
mitigations, and remediesFlawless communication skills (both
written and verbal)Solid functional familiarity with one or more of
the following programing/scripting languages; Go, PowerShell,
Python, Bash, SQL, BASICExperience implementing & utilizing
technology lifecycles and best practicesAn understanding of
regulatory requirements and industry standards related to cloud
securitySignificant understanding of functionality and capabilities
related to CASB, SSPM, and DLP platforms and associated networking
technologies within large, distributed environmentsKnowledge and
understanding across multiple security domains, concepts, and how
they are interconnectedDevelopment and scripting experience in
cloud service providers (CSP) environments, SaaS, and their
associated APIsA track record of prioritizing and analyzing large
amounts of data, creating metrics, and reportingHigh motivation as
a self-starter and standout colleague in a team environmentA
passion for technology and committed to continual improvement of
yourself, your team, and your technologyGood understanding of
networking technologies and protocols within large enterprise
environments, such as firewalls, traffic management, proxies, VPN,
DNS, HTTP, TCP/IPHand-on experience with monitoring and logging
concepts, content solutions, and tools; SIEM, SOAR, Kafka, pub-sub,
syslog, etc.Expertise in source control, unit testing, and agile
methodologiesSecurity certifications from ISC2, CSA or SANS (cloud
focus preferred)Bachelor of Science in Information Technology,
Security Assurance, Computer Science or related field (preferred)
-Platforms -
Cloud Access Security Broker (CASB) -
Zscaler/NetskopeSaaS Security Posture Management (SSPM) - Adaptive
Shield/AppOmni/ObsidianCloud Security Posture Management (CSPM) -
Palo Alto PrismaCloud Service Provider(s): AWS, Azure, GCP
-Continuous Integration/Continuous Deployment & Orchestration -
Plan, Track & Support: - JIRA,
Confluence, RemedyCode, Build & Ship: - GitHub, Azure DevOps,
BitBucket, BambooInfrastructure as Code: - Terraform, SaltStack,
Ansible, CloudFormation
What's in it for youAt Schwab, we're committed to empowering our
employees' personal and professional success. Our purpose-driven,
supportive culture, and focus on your development means you'll get
the tools you need to make a positive difference in the finance
industry. Our approach balances our ongoing commitment to workplace
flexibility, serving our clients, and our strong belief in the
value of being together in person on a regular basis.We offer a
competitive that takes care of the whole you - both today and in
the future:
- 401(k) with company match and Employee stock purchase plan
- Paid time for vacation, volunteering, and 28-day sabbatical
after every 5 years of service for eligible positions
- Paid parental leave and family building benefits
- Tuition reimbursement
- Health, dental, and vision insurance
Keywords: Charles Schwab, Scottsdale , Senior Security Engineer - SaaS Cybersecurity - Hybrid, Accounting, Auditing , Paradise Valley, Arizona
Didn't find what you're looking for? Search again!
Loading more jobs...
