Prudential Annuities Distributors (PAD)
Director, Attack Surface Management
Prudential Annuities Distributors (PAD), Newark, New Jersey, us, 07175
Job Classification:Technology - Information SecurityAs Director of SaaS Security Posture Management, you will partner with other security professionals across the Information Security Office, the Global Technology Office and Prudential business areas to drive our SaaS Security efforts across the global enterprise.
You will establish the strategy to build, scale, and automate the SaaS Security program with a focus on onboarding new applications, automating compliance reporting, hardening the SaaS environments and operationalizing the function to support ~150 applications.You will lead and oversee the security and compliance posture of our SaaS platforms and partner with multiple technology partners to enhance baseline capabilities, establish preventive controls, and identify and mitigate potential security risks and maintain a secure SaaS environment.
**Key Responsibilities:**
• Develop and own the overall SaaS security posture management strategy, aligning with organizational goals and risk appetite.
• Build and lead a team responsible for the security of all enterprise SaaS applications.
• Direct and lead the SaaS vulnerability and compliance security strategy, including the design and implementation of attack surface reduction and security configurations across all SaaS Platforms.
• Design and implement scalable processes for onboarding new SaaS applications, including risk assessments, security reviews, and integration with identity and access management systems.
• Drive automation initiatives to streamline compliance reporting, monitoring, and remediation activities.
• Establish and maintain standards and best practices for SaaS environment hardening, including configuration management and continuous posture assessment.
• Collaborate with application owners, IT, compliance, and legal teams to ensure security requirements are met throughout the SaaS lifecycle.
• Operationalize the SaaS security program to support and secure a portfolio of ~150 applications, ensuring effective incident response and vulnerability management.
• Track and report on key metrics, program effectiveness, and risk reduction to executive leadership.
• Stay current with industry trends, emerging threats, and regulatory changes impacting SaaS security.**Qualifications:**
• 5-10 years of experience in cybersecurity with at least 3-5 years focused on SaaS or cloud security.
• Proven experience building and managing enterprise-level SaaS security programs.
• Deep understanding of SaaS architectures, security controls, and compliance requirements (e.g., SOC 2, ISO 27001, GDPR).
• Strong leadership and communication skills, with experience managing cross-functional teams.
• Hands-on experience with automation, security tooling, and integration with CI/CD pipelines.
• Ability to effectively prioritize and execute in a fast-paced environment.
• Ability to coach others with some guidance and effectively leverage diverse ideas, experiences, thoughts, and perspectives to the benefit of the organization.
**Advanced experience in several of the following:**
• Experience with standard frameworks, such as OWASP, MITRE ATT&CK, and NIST.
• In-Depth knowledge of threat intelligence frameworks & methodology that will help aid the response process.
• Experience with Vulnerability management lifecycle best practices and tools used for SaaS and cloud monitoring (Wiz, AppOmni, Cloud Native – AWS, Azure) Experience with standard frameworks, such as MITRE ATT&CK, CIS and NIST.
• In-Depth knowledge of threat intelligence frameworks & methodology that will help aid the response process.
• Proven experience in SaaS security, vulnerability management, or related roles.
• Proven experience leading security initiatives in SaaS environments# **What we offer you:**# Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $158,800.00 to $238,200.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills.* **Market competitive base salaries, with a yearly bonus potential at every level.*** **Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.*** 401(k) plan with company match (up to 4%).* Company-funded pension plan.* **Wellness Programs**including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.* **Work/Life Resources** to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.* **Education Benefit** to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.* **Employee Stock Purchase Plan:** **Shares** can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.
Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender identity, national origin, genetics, disability, marital status, age, veteran status, domestic partner status, medical condition or any other characteristic protected by law.If you need an accommodation to complete the application process, please email accommodations.hw@prudential.com.If you are experiencing a technical issue with your application or an assessment, please email careers.technicalsupport@prudential.com to request assistance.Prudential Financial, Inc. (NYSE: PRU), a global financial services leader and premier active global investment manager with approximately $1.4 trillion in assets under management as of Dec. 31, 2023, has operations in the United States, Asia, Europe, and Latin America. Prudential’s diverse and talented employees help make lives better and create financial opportunity for more people by expanding access to investing, insurance, and retirement security. Prudential’s iconic Rock symbol has stood for strength, stability, expertise and innovation for 150 years. For more information please visit news.prudential.com.**Our Commitment to an Inclusive Workplace**Prudential Financial, Inc. serves its customers in more than 40 countries and territories, and we seek talented, creative individuals from a variety of backgrounds, worldviews, and life circumstances to work with us. We are focused on creating a fully inclusive culture, where all employees feel comfortable bringing their authentic selves to work. We don’t just accept difference—we celebrate it, support it, and thrive on it. At Prudential, employees have a unique opportunity to build their career path by owning their development, their career, and their future. We encourage employees to hone their skills and explore continued opportunities within Prudential.PGIM, the global asset management business of Prudential Financial, Inc. (NYSE: PRU), is a global investment manager with US $1.3 trillion in assets under management as of Dec. 31, 2023. With offices in 18 countries, PGIM’s businesses offer a range of investment solutions for retail and institutional investors #J-18808-Ljbffr
You will establish the strategy to build, scale, and automate the SaaS Security program with a focus on onboarding new applications, automating compliance reporting, hardening the SaaS environments and operationalizing the function to support ~150 applications.You will lead and oversee the security and compliance posture of our SaaS platforms and partner with multiple technology partners to enhance baseline capabilities, establish preventive controls, and identify and mitigate potential security risks and maintain a secure SaaS environment.
**Key Responsibilities:**
• Develop and own the overall SaaS security posture management strategy, aligning with organizational goals and risk appetite.
• Build and lead a team responsible for the security of all enterprise SaaS applications.
• Direct and lead the SaaS vulnerability and compliance security strategy, including the design and implementation of attack surface reduction and security configurations across all SaaS Platforms.
• Design and implement scalable processes for onboarding new SaaS applications, including risk assessments, security reviews, and integration with identity and access management systems.
• Drive automation initiatives to streamline compliance reporting, monitoring, and remediation activities.
• Establish and maintain standards and best practices for SaaS environment hardening, including configuration management and continuous posture assessment.
• Collaborate with application owners, IT, compliance, and legal teams to ensure security requirements are met throughout the SaaS lifecycle.
• Operationalize the SaaS security program to support and secure a portfolio of ~150 applications, ensuring effective incident response and vulnerability management.
• Track and report on key metrics, program effectiveness, and risk reduction to executive leadership.
• Stay current with industry trends, emerging threats, and regulatory changes impacting SaaS security.**Qualifications:**
• 5-10 years of experience in cybersecurity with at least 3-5 years focused on SaaS or cloud security.
• Proven experience building and managing enterprise-level SaaS security programs.
• Deep understanding of SaaS architectures, security controls, and compliance requirements (e.g., SOC 2, ISO 27001, GDPR).
• Strong leadership and communication skills, with experience managing cross-functional teams.
• Hands-on experience with automation, security tooling, and integration with CI/CD pipelines.
• Ability to effectively prioritize and execute in a fast-paced environment.
• Ability to coach others with some guidance and effectively leverage diverse ideas, experiences, thoughts, and perspectives to the benefit of the organization.
**Advanced experience in several of the following:**
• Experience with standard frameworks, such as OWASP, MITRE ATT&CK, and NIST.
• In-Depth knowledge of threat intelligence frameworks & methodology that will help aid the response process.
• Experience with Vulnerability management lifecycle best practices and tools used for SaaS and cloud monitoring (Wiz, AppOmni, Cloud Native – AWS, Azure) Experience with standard frameworks, such as MITRE ATT&CK, CIS and NIST.
• In-Depth knowledge of threat intelligence frameworks & methodology that will help aid the response process.
• Proven experience in SaaS security, vulnerability management, or related roles.
• Proven experience leading security initiatives in SaaS environments# **What we offer you:**# Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $158,800.00 to $238,200.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills.* **Market competitive base salaries, with a yearly bonus potential at every level.*** **Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.*** 401(k) plan with company match (up to 4%).* Company-funded pension plan.* **Wellness Programs**including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.* **Work/Life Resources** to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.* **Education Benefit** to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.* **Employee Stock Purchase Plan:** **Shares** can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.
Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.Prudential is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, ancestry, sex, sexual orientation, gender identity, national origin, genetics, disability, marital status, age, veteran status, domestic partner status, medical condition or any other characteristic protected by law.If you need an accommodation to complete the application process, please email accommodations.hw@prudential.com.If you are experiencing a technical issue with your application or an assessment, please email careers.technicalsupport@prudential.com to request assistance.Prudential Financial, Inc. (NYSE: PRU), a global financial services leader and premier active global investment manager with approximately $1.4 trillion in assets under management as of Dec. 31, 2023, has operations in the United States, Asia, Europe, and Latin America. Prudential’s diverse and talented employees help make lives better and create financial opportunity for more people by expanding access to investing, insurance, and retirement security. Prudential’s iconic Rock symbol has stood for strength, stability, expertise and innovation for 150 years. For more information please visit news.prudential.com.**Our Commitment to an Inclusive Workplace**Prudential Financial, Inc. serves its customers in more than 40 countries and territories, and we seek talented, creative individuals from a variety of backgrounds, worldviews, and life circumstances to work with us. We are focused on creating a fully inclusive culture, where all employees feel comfortable bringing their authentic selves to work. We don’t just accept difference—we celebrate it, support it, and thrive on it. At Prudential, employees have a unique opportunity to build their career path by owning their development, their career, and their future. We encourage employees to hone their skills and explore continued opportunities within Prudential.PGIM, the global asset management business of Prudential Financial, Inc. (NYSE: PRU), is a global investment manager with US $1.3 trillion in assets under management as of Dec. 31, 2023. With offices in 18 countries, PGIM’s businesses offer a range of investment solutions for retail and institutional investors #J-18808-Ljbffr