Key skills
SaaS securityDetection engineeringThreat researchSecurity analyticsCloud securityIdentity and access managementOAuth integrationsThird-party app risk assessmentSecurity telemetry analysisSQLPythonSIEMXDRSaaS application APIsSecurity rule developmentSecurity detection logicSecurity posture managementSecurity threat detectionSecurity risk analysisAIAnalyticsOAuthSaaSSalesforceCommunication
About this role
AppOmni is a company that prevents SaaS data breaches by delivering end-to-end SaaS security. They are seeking a Senior SaaS Security Engineer to design and develop security content that identifies risks across SaaS environments, working closely with Product and Engineering to ensure accurate and actionable security insights.
Responsibilities:
- Design and develop detection logic and security rules to identify threats, suspicious behaviors, and misconfigurations across SaaS applications
- Research SaaS platforms (e.g., Google Workspace, Microsoft 365, Salesforce, Slack, etc.) to understand security models, APIs, and potential attack surfaces
- Translate real-world attack techniques and SaaS security risks into scalable product capabilities, including detections, posture checks, and risk signals
- Contribute to both threat detection and posture management content, ensuring broad coverage across identity, access, integrations, and data exposure risks
- Analyze large-scale SaaS telemetry to identify patterns, anomalies, and opportunities for new detections or improvements
- Continuously improve detection quality by reducing false positives and ensuring signals are actionable for customers
- Collaborate with Engineering to productionize detection logic and ensure reliable execution at scale
- Partner with Product to shape how security insights are surfaced, prioritized, and explained to users
- Stay current on emerging SaaS attack techniques, identity threats, OAuth risks, and AI-related security considerations
- Contribute to internal knowledge sharing and help elevate SaaS security expertise across the organization
Requirements:
- 5–8+ years of experience in cybersecurity, with hands-on work in areas such as detection engineering, threat research, security analytics, or cloud/SaaS security
- Strong understanding of SaaS security concepts, including identity and access management, OAuth integrations, third-party app risks, and misconfiguration-driven exposure
- Experience working with security telemetry and logs, including querying and analyzing large datasets (e.g., SQL, Python, or similar tools)
- Experience developing or tuning detection logic, rules, or analytics in a SIEM, XDR, or similar system
- Familiarity with SaaS application APIs and security-relevant data sources
- Understanding of attacker techniques in SaaS environments, including identity-based attacks, privilege escalation, and persistence mechanisms
- Ability to translate complex technical findings into clear, actionable security insights
- Experience balancing detection fidelity, coverage, and performance in production systems
- Experience partnering with Product and Engineering to deliver customer-facing security capabilities
- Strong analytical thinking and problem-solving skills, with attention to detail
- Strong written and verbal communication skills