Lead Security Engineer, GovCloud - Cyber Defense Professionals

Description

About the team

Salesforce is looking to hire a Lead Security Engineer for Government Cloud Services. We prioritize security and data protection to ensure the confidentiality, integrity, and availability of our systems and information. As we continue to expand our operations, we are seeking a skilled and experienced Lead Security Analyst to join our dynamic team and play a pivotal role in safeguarding our organization against evolving cyber threats.

As the Lead Security Engineer, you will be responsible for driving the overall security posture of our organization. You will work closely with cross-functional teams to assess risks, implement security measures, monitor security systems, and respond to security incidents. Your expertise in security frameworks, technologies, and best practices will be critical in developing and executing strategies to protect our critical assets and infrastructure.

What you will be doing:

Apply security policies to meet security objectives of the system.
Assess adequate access controls based on principles of least privilege and need-to-know.
Assess all the configuration management (change configuration/release management) processes.
Assess the effectiveness of security controls.
Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
Develop and implement comprehensive security policies, procedures, and guidelines to ensure the protection of company assets and compliance with applicable regulations.
Conduct (or coordinate with third party partners) regular security risk assessments, vulnerability assessments, and penetration tests to identify potential weaknesses in systems, networks, and applications and coordinate remediation of findings. Drive related mitigations.
Collaborate with stakeholders to design and implement security controls, including firewalls, intrusion detection systems, access controls, and encryption technologies.
Conduct analysis of logs and events, identify gaps for deeper analysis as needed, and coordinate with Detection and Response teams on detection and alerting betterment efforts and uplift.
Stay up-to-date with the latest security trends, vulnerabilities, and threat intelligence, and provide recommendations to proactively address emerging risks.
Liaison with Incident Response teams on incidents and response efforts, recommend and/or instigate remediation actions to prevent future occurrences.
Develop and deliver security awareness and training programs to educate employees on security best practices and promote a culture of security across the organization.
Collaborate with external vendors, partners, and auditors to ensure compliance with security standards and regulations. Further, implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation
Maintain documentation of security procedures, incident response plans, and security incident reports.

What you should have:

Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git
Professional certifications such as CISSP, CISM, CEH, or similar are highly desirable.
Proven experience (5+ years) in a security analyst role, with a focus on information security, incident response, and vulnerability management.
Must be US Citizen operating on US Soil and pass both enhanced background check as long as Criminal Justice background check.
Strong understanding of security frameworks such as ISO 27001, NIST, or CIS Controls, and their practical application.
Extensive knowledge of security technologies, including firewalls, IDS/IPS, SIEM, DLP, antivirus, and endpoint protection systems.
Hands-on experience with vulnerability assessment tools, network scanning tools, and penetration testing methodologies.
Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git“
Proficiency in log analysis, incident response, and forensic investigation techniques.
Excellent communication skills, both written and verbal, with the ability to articulate complex security concepts to technical and non-technical stakeholders.
Demonstrated leadership abilities, with the capacity to motivate and inspire a team.
Strong analytical and problem-solving skills, with the ability to think strategically and develop innovative solutions to security challenges.

Joining Salesforce Government Cloud as a Lead Security Engineer provides an exciting opportunity to make a significant impact on the organization’s security posture and contribute to its overall success. If you are passionate about security, possess strong leadership skills, and thrive in a fast-paced environment, we encourage you to apply for this challenging and rewarding position.

For roles in San Francisco and Los Angeles: Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.

Unleash Your Potential

When you join Salesforce, you’ll be limitless in all areas of your life. Our benefits and resources support you to find balance and be your best, and our AI agents accelerate your impact so you can do your best. Together, we’ll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future — but to redefine what’s possible — for yourself, for AI, and the world.

At Salesforce, we strive to create an accessible and inclusive experience for all candidates.

If you need a reasonable accommodation during the application or the recruiting process, please submit a request via this Accommodation Request Form.

Please note that Salesforce uses an automated employment decision tool to help our recruiters assess and evaluate candidates’ resumes. If you do not want Salesforce to use this tool with your application, please submit a request via this form.

Equal Opportunity Statement.

Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that’s inclusive, and free from discrimination. Know your rights: workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications – without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.

At Salesforce, we believe in equitable compensation practices that reflect the dynamic nature of labor markets across various regions.

The typical base salary range for this position is $172,500 – $260,100 annually. In select cities within the San Francisco and New York City metropolitan area, the base salary range for this role is $207,800 – $285,800 annually.

The range represents base salary only, and does not include company bonus, incentive for sales roles, equity or benefits, as applicable.

Salesforce welcomes all.

In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: https://www.salesforcebenefits.com.