Salesforce.Com Inc
Information Security Associate - CIR
Salesforce.Com Inc, Herndon, Virginia, United States, 22070
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.Job CategoryEnterprise Technology & Infrastructure
Job DetailsAbout SalesforceWe're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.About SalesforceWe're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM+Trust. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place!Impact - ResponsibilitiesThe Incident Responder is owning technical investigations in response to high-severity incidents. This can variously include host and network forensics, log analysis, and working with a variety of technical partners collaboratively to direct investigations. It is crucial for Incident Responders to work efficiently with other team members to optimally identify and contain incidents. This requires a deep technical knowledge and critical thinking skills to quickly assess and respond to potential threats. Successful Incident Responders grow with challenge, are calm under pressure, and can think on their feet!Be able to think quickly and analytically to assess the scope and severity of an incident, and resolve the best course of action to mitigate the threat
Function as a technical authority on complex investigations, coordinating with team member technical SMEs
Analyze large or complicated evidence items from security incidents and synthesize the results to aid in progressing incidents
Perform basic host and network forensics.
Perform sophisticated log analysis using a variety of tools
Create detailed timelines and other supporting documentation.
Review peers' work and train peers on basic analysis techniques
Work with partner teams to provide technical analysis of cases to assist in the development of mitigation and detection techniquesTurn technical analysis into high-quality incident after-action reports.Assist customers with regulatory notifications including DORA
This position is based in our AMER operations center which operates 5 days per week, weekdays only. Incident handlers also participate in a local on-call rotation for weekends and public holidays, which covers daytime hours only.Minimum QualificationsBachelor's degree or equivalent experience in IT, Computer Science or related field
demonstrated ability in information security or closely related roles, with direct experience in security incident response
Deep understanding of Salesforce Core, Marketing Cloud, Commerce Cloud, Tableau, and Mulesoft
Ability to run and constantly triage multiple security incidents, differentiating urgent issues from the merely important.=
Ability to meet with customers and communicate complex technical concepts to a non-technical audience
Ability to stand back from a complex problem, logically assess the facts, and formulate a plan of action - even in the worst of situations
Experience handling common types of security incidents, e.g., application or OS compromise, endpoint compromise, internal and external data exposure
Familiarity with common threats and issues leading to security incidents.
Superior verbal and written communication skills, including the ability to optimally and clearly communicate complex scenarios to non-technical colleagues
Exceptional technical basics, including networking fundamentals, common application protocols, system architecture, and basics of software development
Strong Linux and MacOS knowledge, including familiarity with key security controls and preferably some shell scripting experience
Exceptional log analysis skills, including experience extracting data from complex SQL or Hadoop-type data stores
Ability to research and learn unfamiliar technologies quickly, adapting existing knowledge and processes to investigate and resolve security issues
Broad information security knowledge, including some familiarity with key regulations and standards relating to security incident response, as well as regional privacy and regulatory guidelines (e.g., PCI-DSS, GDPR, DORA)
Preferred QualificationsSalesforce Admin certified
3-5 years E-commerce security experience
Prior experience in a large and sophisticated organization, operating across numerous locations and with a high degree of change
Experience with complex digital forensic cases or investigations, e.g., those with very large numbers of devices, exceptional data volumes, or unusual data sources.
Experience securing applications and infrastructure in Amazon Web Services, Google Cloud Platform, and or Azure
Deep application security knowledge, with the ability to map an application vulnerability to exploitation indications and relevant investigative techniques
Relevant incident response or information security certifications, such as SANS GCIA, SANS GCIH, SANS GCFA, SANS GNFA, Offensive Security OSCP
*LI-YAccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.Posting StatementAt Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.Salesforce welcomes all.For Washington-based roles, the base salary hiring range for this position is $125,700 to $172,800. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, benefits. More details about our company benefits can be found at the following link: https://www.salesforcebenefits.com.
Job DetailsAbout SalesforceWe're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.About SalesforceWe're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM+Trust. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place!Impact - ResponsibilitiesThe Incident Responder is owning technical investigations in response to high-severity incidents. This can variously include host and network forensics, log analysis, and working with a variety of technical partners collaboratively to direct investigations. It is crucial for Incident Responders to work efficiently with other team members to optimally identify and contain incidents. This requires a deep technical knowledge and critical thinking skills to quickly assess and respond to potential threats. Successful Incident Responders grow with challenge, are calm under pressure, and can think on their feet!Be able to think quickly and analytically to assess the scope and severity of an incident, and resolve the best course of action to mitigate the threat
Function as a technical authority on complex investigations, coordinating with team member technical SMEs
Analyze large or complicated evidence items from security incidents and synthesize the results to aid in progressing incidents
Perform basic host and network forensics.
Perform sophisticated log analysis using a variety of tools
Create detailed timelines and other supporting documentation.
Review peers' work and train peers on basic analysis techniques
Work with partner teams to provide technical analysis of cases to assist in the development of mitigation and detection techniquesTurn technical analysis into high-quality incident after-action reports.Assist customers with regulatory notifications including DORA
This position is based in our AMER operations center which operates 5 days per week, weekdays only. Incident handlers also participate in a local on-call rotation for weekends and public holidays, which covers daytime hours only.Minimum QualificationsBachelor's degree or equivalent experience in IT, Computer Science or related field
demonstrated ability in information security or closely related roles, with direct experience in security incident response
Deep understanding of Salesforce Core, Marketing Cloud, Commerce Cloud, Tableau, and Mulesoft
Ability to run and constantly triage multiple security incidents, differentiating urgent issues from the merely important.=
Ability to meet with customers and communicate complex technical concepts to a non-technical audience
Ability to stand back from a complex problem, logically assess the facts, and formulate a plan of action - even in the worst of situations
Experience handling common types of security incidents, e.g., application or OS compromise, endpoint compromise, internal and external data exposure
Familiarity with common threats and issues leading to security incidents.
Superior verbal and written communication skills, including the ability to optimally and clearly communicate complex scenarios to non-technical colleagues
Exceptional technical basics, including networking fundamentals, common application protocols, system architecture, and basics of software development
Strong Linux and MacOS knowledge, including familiarity with key security controls and preferably some shell scripting experience
Exceptional log analysis skills, including experience extracting data from complex SQL or Hadoop-type data stores
Ability to research and learn unfamiliar technologies quickly, adapting existing knowledge and processes to investigate and resolve security issues
Broad information security knowledge, including some familiarity with key regulations and standards relating to security incident response, as well as regional privacy and regulatory guidelines (e.g., PCI-DSS, GDPR, DORA)
Preferred QualificationsSalesforce Admin certified
3-5 years E-commerce security experience
Prior experience in a large and sophisticated organization, operating across numerous locations and with a high degree of change
Experience with complex digital forensic cases or investigations, e.g., those with very large numbers of devices, exceptional data volumes, or unusual data sources.
Experience securing applications and infrastructure in Amazon Web Services, Google Cloud Platform, and or Azure
Deep application security knowledge, with the ability to map an application vulnerability to exploitation indications and relevant investigative techniques
Relevant incident response or information security certifications, such as SANS GCIA, SANS GCIH, SANS GCFA, SANS GNFA, Offensive Security OSCP
*LI-YAccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.Posting StatementAt Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.Salesforce welcomes all.For Washington-based roles, the base salary hiring range for this position is $125,700 to $172,800. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, benefits. More details about our company benefits can be found at the following link: https://www.salesforcebenefits.com.