Position Details

Salary $110K – $144K USD / year

Type Full-Time

Experience mid

Exp. Years 5+ years

Education Bachelor's degree in Information Security, Computer Science, Risk Management, or related field; or equivalent professional experience

Category Cybersecurity

About this role

SaaS Security Information Security Consultant responsible for securing MassMutual's SaaS ecosystem, defining security baselines, coordinating vendor security reviews, and monitoring risk across the SaaS lifecycle.

Key Responsibilities

Provide security advisory and risk analysis for SaaS usage
Define SaaS security baselines and acceptance criteria
Collaborate with Third-Party Onboarding and other domain owners
Translate regulatory requirements into practical SaaS security controls
Monitor SaaS security posture and coordinate remediation

Technical Overview

Focus on SaaS security governance, risk assessment, and compliance with NIST, CSA, and CCM frameworks; involves SSPM, CASB, and GRC tooling; engagement with cross-functional teams.

Ideal Candidate

The ideal candidate is a mid-to-senior information security professional with 5+ years of SaaS Security, Cloud Security, and GRC experience in a large organization, strong stakeholder management, and the ability to translate regulatory requirements into actionable SaaS security guidance.

Must-Have Skills

None listed

Required Skills

Bachelor's degree in Information Security/Related Field; 5+ years in Information Security/Cyber Risk management; SaaS Security experience; ability to translate regulatory requirements into guidance; strong written and verbal communication; knowledge of NIST CSF/800-53CSA SSCFCCM; familiarity with SSPMCASBand GRC tools; vendor security review experience; IAM concepts (SSOMFARBAC)

Certifications

Preferred

CISSPCISMCCSPCRISCISO 27001 Lead Implementer/Auditor

Industry & Role

Industry Insurance

Job Function Security consultant for SaaS security governance and risk management

Role Subtype Security consultant

Tech Domains Microsoft 365, Salesforce, ServiceNow, Workday, Atlassian

Keywords for Your Resume

SaaS SecurityInformation SecurityCloud SecurityGRCSSPMCASBGRC platformsNIST CSF/800-53CSA SSCFCCMSOC 2 Type IIISO 27001Identity and Access GovernanceSaaS vendor security reviewsCISSPCISMCCSPCRISCISO 27001 Lead Implementer/AuditorMicrosoft 365SalesforceServiceNowWorkdayAtlassianeightNIST CSF

Deal Breakers

Less than 5 years of information security experience, Lack of SaaS/security governance experience, No Bachelor’s degree or equivalent experience

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Information Security Consultant - SaaS Security

Get matched to jobs like this