Salesforce.Com Inc
Information Security Engineer with TS/SCI clearance
Salesforce.Com Inc, Herndon, Virginia, United States, 22070
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.Job CategorySoftware Engineering
Job DetailsAbout SalesforceWe're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.Information Security EngineerLocation - HerndonDescription:In this role, you're expected to lead the area of responsibility with minimal guidance from senior team members. You should innovate, challenge the status quo, adopt operational excellence standard processes and use automation and emerging technologies to enhance delivery of your work product. Additionally, be held accountable for advising business partners on adopting new DoD and Intel requirements.
Responsibilities:Drive existing or newly identified initiatives between partner organizations finding opportunities to collaborate and reducing risk of non-compliance with internal or external requirementsSupport organizational change activities with federal authorization bodiesSupport multiple security pillars within Salesforce Government Cloud Division including but not limited to, controls assessment, evidence automation, continuous monitoring activities, configuration management, incident response, advisory, adoption of AI, vulnerability management, and security documentationConsult with business or security customers on information security requirements and applicability to their business processes, products, or servicesCreate and maintain relationships with key business, legal, Employee Success, Internal Audit, technical/engineering partners, and other organizations throughout the company who guide in security requirements and solution managementFocus on continuous improvement of operational processes and designing innovative and automated functionality for added efficiencyOptimally communicate accreditation programs to applicable business partnersPerform risk management reviews and work across the organization to identify and mitigate security compliance risks.
Minimum Qualification:
Active TS/SCI clearance with polygraph requiredMinimum 5 years of experience in information security, cybersecurity, accreditation, and other security related areasExperience working with Government Cloud environments such as AWS, Azure, GCP (SaaS, IaaS, PaaS etc)Experience in security related analysis, creating metrics and dashboards and summarizing large data setsAbility to work with both business and technical areas and translate between the two areasSkilled at building rapport and establishing partnershipsTechnical background to translate security requirements to engineers responsible for implementationExcellent verbal and written communication skills and ability to communicate results to multiple levels of managementKnowledge of DoD and Intelligence community frameworks (ICD-503, DoD IL6)Demonstrated desire to learn new skills and innovateAgile, proactive, comfortable working with ambiguous specifications and can prioritize quickly and effectivelyGood interpersonal, relationship, and organizational skillsExcellent analytical and process development skillsDetail oriented with quality approachDrive improvements in existing processes and develop new innovative and efficient solutionsAbility to work effectively with a wide range of individuals including developers, systems administrators, executives, customers, regulators, auditors, etc.
Required Qualifications:Experience building productive relationships with Technical Operations, Security Operations, Incident Response, Technical Compliance, Engineering, and other partnersExperience working with Information Security, GRC, ERM, Technology, Business, and Legal/Privacy functionsStrong knowledge of technical vulnerability managementStrong knowledge of security risk management frameworks including related regulatory compliance requirements (NIST CSF & 800-53, ISO 27001, SOC, HITRUST, HIPAA, FedRAMP, PCI, etc.)Preferred Qualifications:Knowledge of, or experience working with, Cloud technologies/environmentsCISSP, CISA, CISM, AWS or similar certifications a plusQualification for this job is contingent upon acceptable results from a background investigation as well as your obtaining and maintaining the specific level of U.S. Government secret clearance required for this role. U.S. citizenship (U.S. born or naturalized) required.*LI-YThis candidate must be a U.S. citizen (U.S. born or naturalized) who does not hold dual citizenship and agrees to complete a U.S. federal government Minimum Background Investigation (MBI) for a Moderate Public Trust position.This position requires a USA TS/SCI with Polygraph security access level.
AccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.Posting StatementAt Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.Salesforce welcomes all.
Job DetailsAbout SalesforceWe're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.Information Security EngineerLocation - HerndonDescription:In this role, you're expected to lead the area of responsibility with minimal guidance from senior team members. You should innovate, challenge the status quo, adopt operational excellence standard processes and use automation and emerging technologies to enhance delivery of your work product. Additionally, be held accountable for advising business partners on adopting new DoD and Intel requirements.
Responsibilities:Drive existing or newly identified initiatives between partner organizations finding opportunities to collaborate and reducing risk of non-compliance with internal or external requirementsSupport organizational change activities with federal authorization bodiesSupport multiple security pillars within Salesforce Government Cloud Division including but not limited to, controls assessment, evidence automation, continuous monitoring activities, configuration management, incident response, advisory, adoption of AI, vulnerability management, and security documentationConsult with business or security customers on information security requirements and applicability to their business processes, products, or servicesCreate and maintain relationships with key business, legal, Employee Success, Internal Audit, technical/engineering partners, and other organizations throughout the company who guide in security requirements and solution managementFocus on continuous improvement of operational processes and designing innovative and automated functionality for added efficiencyOptimally communicate accreditation programs to applicable business partnersPerform risk management reviews and work across the organization to identify and mitigate security compliance risks.
Minimum Qualification:
Active TS/SCI clearance with polygraph requiredMinimum 5 years of experience in information security, cybersecurity, accreditation, and other security related areasExperience working with Government Cloud environments such as AWS, Azure, GCP (SaaS, IaaS, PaaS etc)Experience in security related analysis, creating metrics and dashboards and summarizing large data setsAbility to work with both business and technical areas and translate between the two areasSkilled at building rapport and establishing partnershipsTechnical background to translate security requirements to engineers responsible for implementationExcellent verbal and written communication skills and ability to communicate results to multiple levels of managementKnowledge of DoD and Intelligence community frameworks (ICD-503, DoD IL6)Demonstrated desire to learn new skills and innovateAgile, proactive, comfortable working with ambiguous specifications and can prioritize quickly and effectivelyGood interpersonal, relationship, and organizational skillsExcellent analytical and process development skillsDetail oriented with quality approachDrive improvements in existing processes and develop new innovative and efficient solutionsAbility to work effectively with a wide range of individuals including developers, systems administrators, executives, customers, regulators, auditors, etc.
Required Qualifications:Experience building productive relationships with Technical Operations, Security Operations, Incident Response, Technical Compliance, Engineering, and other partnersExperience working with Information Security, GRC, ERM, Technology, Business, and Legal/Privacy functionsStrong knowledge of technical vulnerability managementStrong knowledge of security risk management frameworks including related regulatory compliance requirements (NIST CSF & 800-53, ISO 27001, SOC, HITRUST, HIPAA, FedRAMP, PCI, etc.)Preferred Qualifications:Knowledge of, or experience working with, Cloud technologies/environmentsCISSP, CISA, CISM, AWS or similar certifications a plusQualification for this job is contingent upon acceptable results from a background investigation as well as your obtaining and maintaining the specific level of U.S. Government secret clearance required for this role. U.S. citizenship (U.S. born or naturalized) required.*LI-YThis candidate must be a U.S. citizen (U.S. born or naturalized) who does not hold dual citizenship and agrees to complete a U.S. federal government Minimum Background Investigation (MBI) for a Moderate Public Trust position.This position requires a USA TS/SCI with Polygraph security access level.
AccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.Posting StatementAt Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.Salesforce welcomes all.