MSS Analyst

CASB JD L2

Role Overview:

We are seeking a skilled CASB L2 Engineer with strong expertise and hands-on experience with CASB platforms (Skyhigh Preferred). The role involves day-to-day administration, troubleshooting, policy management, integrations, incident handling, and supporting CASB deployments in enterprise environments. The candidate will act as the escalation point for L1 teams and collaborate with cross-functional team for smooth operations.

Key Responsibilities:

• Administration & Operations

• Manage and operate CASB operations.

• Monitor dashboards, alerts, and incidents related to CASB security events.

• Ensure availability, performance, and health of CASB services.

• Work aroun Policy management and configuration.

• Integration & Deployment

• Support integration of CASB with IdPs (Okta, Azure AD, Ping, etc.), proxies, firewalls, and SIEMs.

• Assist in onboarding new SaaS apps into CASB for visibility and control.

• Work with endpoint agents, reverse proxy, and API-based deployments.

• Incident Response & Troubleshooting

• Investigate CASB-related security alerts (DLP violations, anomalous activity, shadow IT usage).

• Troubleshoot user access and application connectivity issues related to CASB policies.

• Collaborate with SOC teams on incident triage and escalation. Provide RCA when needed.

• Compliance & Reporting

• Generate CASB reports for data usage, compliance adherence (GDPR, HIPAA, PCI, etc.), and management reviews.

• Assist in regulatory compliance through continuous policy enforcement.

Required Skills & Experience:

• 36 years of experience in Information Security with 2+ years in CASB (Skyhigh preferred).

• Strong hands-on experience in Skyhigh CASB:

• Policy creation & tuning (DLP, access control, threat protection).

• API-based and proxy-based deployment models.

• Integration with IdP, SIEM, and endpoint security.

• Exposure to other CASB solutions like Netskope, Microsoft Defender for Cloud Apps, Zscaler CASB, Palo Alto SaaS Security is a plus.

• Understanding of cloud platforms (AWS, Azure, GCP) security models.
• Knowledge of SAML, OAuth, API security, TLS, proxies, and identity federation.
• Familiarity with compliance frameworks (ISO 27001, GDPR, HIPAA, PCI-DSS).
• Strong troubleshooting skills in CASB connectivity, policy enforcement, and DLP cases.
• Excellent communication, documentation, and stakeholder management skills.