Who we are:
Motive empowers the people who run physical operations with tools to make their work safer, more productive, and more profitable. For the first time ever, safety, operations and finance teams can manage their drivers, vehicles, equipment, and fleet related spend in a single system. Combined with industry leading AI, the Motive platform gives you complete visibility and control, and significantly reduces manual workloads by automating and simplifying tasks.
Motive serves nearly 100,000 customers – from Fortune 500 enterprises to small businesses – across a wide range of industries, including transportation and logistics, construction, energy, field service, manufacturing, agriculture, food and beverage, retail, and the public sector.
Visit gomotive.com to learn more.
We are looking for a SaaS Security & Compliance Engineer to join our Information Security team. Our environment is 100% SaaS-based with many interconnected systems (e.g., CRM, billing, HRIS, collaboration, support, finance tools), all tied together through our identity provider and integrations.
This role is less about traditional code-review AppSec and more about:
- Securing how we configure, connect, and use our SaaS platforms
- Owning key SaaS/identity security controls (SSO, MFA, RBAC, logging, DLP, CASB, SaS Security Posture Management (SSPM), etc.
- Making sure our SaaS environment is audit-ready for SOC 2, ISO 27001 and customer security reviews
You will sit in InfoSec but work closely with IT, Engineering, Enterprise Systems and other system owners to keep our SaaS stack secure and compliant.
What You'll Do:1. SaaS Security Architecture & Configuration- Work with IT to build and maintain an inventory of SaaS applications, including data sensitivity, owners, and integrations.
- Define and maintain baseline security configurations for key SaaS tools (e.g., password policies, session settings, IP/device restrictions, sharing controls).
- Review and approve new SaaS apps and integrations from a security perspective:
- Data flows (what data, where it goes, which region)
- Access model (who can use it, how they log in)
- Integration security (API tokens, webhooks, scopes, secrets)
- Work with app owners to remediate misconfigurations and close security gaps in SaaS platforms.
- Partner with IT/Platform to standardize SSO/MFA across as many SaaS apps as possible.
- Help design and enforce role-based access control (RBAC) and least privilege for critical applications.
- Support user lifecycle management across SaaS:
- Onboarding/offboarding flows
- Group-based access
- Periodic access reviews and certifications
- Monitor for and reduce “shadow IT” and unmanaged accounts.
- Work with SIEM/CASB/SSPM/DLP tools (or equivalent) to:
- Ingest and correlate SaaS audit logs (IdP, CRM, collaboration tools, etc.)
- Tune alerts for suspicious logins, unusual data access, risky configurations, and anomalous behavior.
- Participate in the security incident process for SaaS-related events:
- Triage alerts, validate impact, and coordinate containment with system owners and vendors.
- Document incidents, root causes, and follow-up actions.
- Help implement data protection controls in SaaS:
- DLP policies (e.g., for PII, payment data, other sensitive data)
- Sharing restrictions (public links, external sharing, downloads).
- Own/co-own SaaS-related controls for SOC 2, ISO 27001, and similar frameworks, such as:
- Access control, authentication, and authorization
- Change management and configuration management for SaaS apps
- Logging, monitoring, and incident response
- Vendor management and third-party risk
- Collect and maintain audit-ready evidence:
- Screenshots of configs, exported reports, access review results, SIEM/CASB reports, DLP policies, tickets.
- Support internal and external audits by walking auditors through:
- How our SaaS security controls are designed
- How they operate day-to-day
- How we monitor and improve them.
- Create and maintain clear documentation:
- SaaS security standards and configuration guides
- Playbooks for onboarding new SaaS apps and integrations
- Runbooks for common SaaS security tasks and incidents
- Provide lightweight, targeted guidance to system owners:
- Here’s how to configure this SaaS app securely
- Here’s the checklist before you connect a new integration
- Identify manual or repetitive tasks and suggest opportunities for automation (e.g., scripts, SSPM integrations, workflow tools).
- Create and maintain clear documentation:
- 3–6 years of experience in Information Security, IT Security, or a related technical role, with clear exposure to SaaS-heavy environments.
- Hands-on experience administering or securing SaaS platforms (e.g., Google Workspace / Microsoft 365, Salesforce, HRIS, ticketing/support, collaboration tools).
- Strong understanding of identity-centric security:
- SSO, MFA, SAML/OIDC, SCIM
- RBAC and least privilege
- Group-based and role-based access models.
- Experience working with at least some of:
- IdP (e.g., Okta, Azure AD, Google)
- CASB / SSPM / DLP / SIEM / or equivalent SaaS monitoring tools.
- Familiarity with security and compliance frameworks such as SOC 2, ISO 27001 (or similar).
- Ability to read and interpret SaaS security documentation, admin guides, and audit logs.
- Strong written and verbal communication; able to explain SaaS security risks and controls to non-security stakeholders.
Creating a diverse and inclusive workplace is one of Motive's core values. We are an equal opportunity employer and welcome people of different backgrounds, experiences, abilities and perspectives.
Please review our Candidate Privacy Notice here.
UK Candidate Privacy Notice here.
The applicant must be authorized to receive and access those commodities and technologies controlled under U.S. Export Administration Regulations. It is Motive's policy to require that employees be authorized to receive access to Motive products and technology.
#LI-Remote
