Systems Engineering Associate
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.
Job CategorySoftware Engineering
We’re Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too — driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good – you’ve come to the right place.
Salesforce.com is currently seeking a Security Compliance Analyst who is passionate about security, and has had hands-on experience with multiple types of infrastructure (on prem & cloud). Salesforce.com's Infrastructure Security group manages a fast-paced and constantly growing environment that seeks to implement ground breaking technology to secure the infrastructure behind one of the world's largest business driving technologies. Level offered will be dependent on experience & knowledge.
Work with application/technology platform owners to identify access review requirements and ensure they are documented and periodically maintained
Work as part of our Compliance Operations team within the Security IAM (Identity & Access Management) organisation to act as the point of contact for audit and to review and test the governance solutions across multiple security systems in different technology substrates (1P, AWS, Azure, GCP), to ensure compliance processes run smoothly.
Maintain systematic evidence for audit purposes
Responsible for tracking process effectiveness, measurement and optimization
Creates and maintains processes, procedures, and other program documentation
Develops and executes detailed communications for relevant partners
Coordinate the periodic access review process e.g. QAR, Role Validation etc.
Assist with the overall execution of compliance programs aimed at achieving and maintaining industry accreditations and certifications.
Advocating for continuous automation and improvement of customer facing documentation, training and literature
Work as part of our Compliance & Reliance team to assist with audits of entitlements, appropriateness of access and Quarterly Access Reviews, as defined by our Identity & Access Management Policies.
Assist with audit & compliance reviews, evidence collection and pre-certification testing, ensuring timelines are met for Compliance Certifications (e.g. SOX, SOC, SOC2) at the required cadence.
Partner with the GRC (Governance Risk & Compliance) team and internal & external auditors, to ensure all new automation, controls and processes are reviewed for accuracy and appropriateness.
Partner with various business units to assist in their onboarding to Identity Governance tooling and automation, as built by the Access Control & Security IAM Engineering teams.
BS/BEng/BTech degree, or equivalent work experience.
Experience in auditing methodology and technology risk assessments
Excellent analytical, conceptual, problem-solving skills in addition to superb attention to detail.
Experience in security and lifecycle management tools
Self-starting, proactive and organized, as well as being capable of long-term thinking.
Knowledge of Compliance Certifications (SOX, SOC, SOC2)
Technical understanding of systems, networking and identity fundamentals.
Understanding of Agile development methodologies and principles.
Flexible, agile, proactive, comfortable working with ambiguous specifications
Thrives in a collaborative and detailed environment, using research and analysis to support recommendations and opinions
Very strong written and verbal communication and presentation skills
Self-starter and able to work independently; motivated to set personal and program goals and proactively track performance against goals and initiatives.
Additional Desired Skills:
Ability to thoroughly document work-papers and to understand/communicate the E2E control risks and control execution conclusion
Experience driving security related change within a business
Experience of the Salesforce Platform.
Knowledge of authentication platforms: Kerberos, LDAP, Radius, AD.
Security specific certifications e.g. CISSP, CISM.
Operating knowledge of Lifecycle Management or Access Provisioning Systems.
Compliance Certification knowledge e.g. FedRAMP, NIST CSF Security Scoring.
Scripting/automation experience (Python).
If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.
At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.
Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.
Salesforce welcomes all.For Washington-based roles, the base salary hiring range for this position is $93,000 to $128,700.Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, benefits. More details about our company benefits can be found at the following link: https://www.salesforcebenefits.com.