salesforce
Lead Software Engineer, Application Security and DDoS
salesforce, San Francisco, California, United States, 94199
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.Job Category:
Software EngineeringAbout Salesforce:We’re Salesforce, the Customer Company, inspiring the future of business with AI + Data + CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too — driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good – you’ve come to the right place.Role Overview:Salesforce’s Security team is seeking a Security Software Engineer to help secure the world’s #1 CRM! As a member of the NetSec DDoS team, you will be part of the team responsible for designing, building and maintaining innovative security services and solutions that support the needs of our internal and external customers. This is a highly visible role that will work closely with partner teams to drive an integrated solution and respond to incidents!RESPONSIBILITIES:Architect and implement distributed systems to deliver security controls at the network level in Salesforce’s public and private clouds. Such solutions cover but are not limited to network policy management, ACLs enforcement, distributed firewalls, DDoS and network protection for bare metal servers, containers, and VMs.Develop software solutions and microservices to support our network security platforms at one or more of the following levels: low-level OS components, datacenter distributed platforms, user interfaces.Advance and operate these security platforms in a full DevOps model.Support the team’s engineering excellence by performing code reviews and mentoring junior team members.Partner with other engineering teams and executives to develop short and long-term security, product, and service strategies.Collaborate with other teams to solve security problems with minimal disruption to other business functions.REQUIREMENTS:Industry experience:
8+ years in Infrastructure or Security Architecture including:3+ years experience in SaaS, PaaS or IaaS software development.3+ years experience in networking, security, or DDoS.3+ years experience in a high-availability 24/7 environment (cloud platforms are a plus).Platform development:
Demonstrated experience of designing and coding large-scale PaaS or IaaS systems, especially for public cloud providers (e.g., AWS, Azure, GCP, Alibaba Cloud).Programming: Proficiency in object-oriented and multi-threaded programming in at least one of the following languages: Golang, Java, C++, Python.Operating systems: Development and software management on Linux systems (e.g., CentOS, RHEL).DevOps approach and strong ownership over owned code (test, monitor, deploy, maintain).Networking and Application Security:
Industry-level expertise in any of the following networking (security) aspects:Familiar with denial of service attacks, mitigation strategies, and industry best practices.Familiar with OWASP top 10 vulnerabilities, CWE, and related countermeasures.Network security platforms, including segmentation, ACLs, DDoS protection.OSI model and debugging network traffic.Networking protocols (TCP/UDP, BGP, DNS, DHCP).Datacenter network architecture at software platform and hardware devices (NAT, VXLAN, overlay/underlay).Network security architectures and implementations in public clouds (e.g., AWS, Azure, GCP).Experience with log analysis and monitoring systems such as Splunk, ELK, Grafana, etc.DESIRED SKILLS:Distributed systems: Expertise in designing, implementing, and operating distributed systems architectures and concepts.Network Security: 5+ years of experience in Application Security or Security Architecture.Accommodations:If you require assistance due to a disability applying for open positions please submit a request via this
Accommodations Request Form .Posting Statement:At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at
www.equality.com
and explore our company benefits at
www.salesforcebenefits.com .Salesforce
is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status.
Salesforce
does not accept unsolicited headhunter and agency resumes.
Salesforce
will not pay any third-party agency or company that does not have a signed agreement with
Salesforce .Salesforce welcomes all.
#J-18808-Ljbffr
Software EngineeringAbout Salesforce:We’re Salesforce, the Customer Company, inspiring the future of business with AI + Data + CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too — driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good – you’ve come to the right place.Role Overview:Salesforce’s Security team is seeking a Security Software Engineer to help secure the world’s #1 CRM! As a member of the NetSec DDoS team, you will be part of the team responsible for designing, building and maintaining innovative security services and solutions that support the needs of our internal and external customers. This is a highly visible role that will work closely with partner teams to drive an integrated solution and respond to incidents!RESPONSIBILITIES:Architect and implement distributed systems to deliver security controls at the network level in Salesforce’s public and private clouds. Such solutions cover but are not limited to network policy management, ACLs enforcement, distributed firewalls, DDoS and network protection for bare metal servers, containers, and VMs.Develop software solutions and microservices to support our network security platforms at one or more of the following levels: low-level OS components, datacenter distributed platforms, user interfaces.Advance and operate these security platforms in a full DevOps model.Support the team’s engineering excellence by performing code reviews and mentoring junior team members.Partner with other engineering teams and executives to develop short and long-term security, product, and service strategies.Collaborate with other teams to solve security problems with minimal disruption to other business functions.REQUIREMENTS:Industry experience:
8+ years in Infrastructure or Security Architecture including:3+ years experience in SaaS, PaaS or IaaS software development.3+ years experience in networking, security, or DDoS.3+ years experience in a high-availability 24/7 environment (cloud platforms are a plus).Platform development:
Demonstrated experience of designing and coding large-scale PaaS or IaaS systems, especially for public cloud providers (e.g., AWS, Azure, GCP, Alibaba Cloud).Programming: Proficiency in object-oriented and multi-threaded programming in at least one of the following languages: Golang, Java, C++, Python.Operating systems: Development and software management on Linux systems (e.g., CentOS, RHEL).DevOps approach and strong ownership over owned code (test, monitor, deploy, maintain).Networking and Application Security:
Industry-level expertise in any of the following networking (security) aspects:Familiar with denial of service attacks, mitigation strategies, and industry best practices.Familiar with OWASP top 10 vulnerabilities, CWE, and related countermeasures.Network security platforms, including segmentation, ACLs, DDoS protection.OSI model and debugging network traffic.Networking protocols (TCP/UDP, BGP, DNS, DHCP).Datacenter network architecture at software platform and hardware devices (NAT, VXLAN, overlay/underlay).Network security architectures and implementations in public clouds (e.g., AWS, Azure, GCP).Experience with log analysis and monitoring systems such as Splunk, ELK, Grafana, etc.DESIRED SKILLS:Distributed systems: Expertise in designing, implementing, and operating distributed systems architectures and concepts.Network Security: 5+ years of experience in Application Security or Security Architecture.Accommodations:If you require assistance due to a disability applying for open positions please submit a request via this
Accommodations Request Form .Posting Statement:At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at
www.equality.com
and explore our company benefits at
www.salesforcebenefits.com .Salesforce
is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status.
Salesforce
does not accept unsolicited headhunter and agency resumes.
Salesforce
will not pay any third-party agency or company that does not have a signed agreement with
Salesforce .Salesforce welcomes all.
#J-18808-Ljbffr