Information Security Engineer with TS/SCI clearance

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.

Job Category

Software Engineering

Job Details

About Salesforce

We’re Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too — driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good – you’ve come to the right place.

Information Security Engineer
Location - Herndon

Description:
In this role, you’re expected to lead the area of responsibility with minimal guidance from senior team members. You should innovate, challenge the status quo, adopt operational excellence standard processes and use automation and emerging technologies to enhance delivery of your work product. Additionally, be held accountable for advising business partners on adopting new DoD and Intel requirements.

Responsibilities:

• Drive existing or newly identified initiatives between partner organizations finding opportunities to collaborate and reducing risk of non-compliance with internal or external requirements
• Support organizational change activities with federal authorization bodies
• Support multiple security pillars within Salesforce Government Cloud Division including but not limited to, controls assessment, evidence automation, continuous monitoring activities, configuration management, incident response, advisory, adoption of AI, vulnerability management, and security documentation
• Consult with business or security customers on information security requirements and applicability to their business processes, products, or services
• Create and maintain relationships with key business, legal, Employee Success, Internal Audit, technical/engineering partners, and other organizations throughout the company who guide in security requirements and solution management
• Focus on continuous improvement of operational processes and designing innovative and automated functionality for added efficiency
• Optimally communicate accreditation programs to applicable business partners
• Perform risk management reviews and work across the organization to identify and mitigate security compliance risks.

Minimum Qualification:
 

• Active TS/SCI clearance with polygraph required
• Minimum 5 years of experience in information security, cybersecurity, accreditation, and other security related areas
• Experience working with Government Cloud environments such as AWS, Azure, GCP (SaaS, IaaS, PaaS etc)
• Experience in security related analysis, creating metrics and dashboards and summarizing large data sets
• Ability to work with both business and technical areas and translate between the two areas
• Skilled at building rapport and establishing partnerships
• Technical background to translate security requirements to engineers responsible for implementation
• Excellent verbal and written communication skills and ability to communicate results to multiple levels of management
• Knowledge of DoD and Intelligence community frameworks (ICD-503, DoD IL6)
• Demonstrated desire to learn new skills and innovate
• Agile, proactive, comfortable working with ambiguous specifications and can prioritize quickly and effectively
• Good interpersonal, relationship, and organizational skills
• Excellent analytical and process development skills
• Detail oriented with quality approach
• Drive improvements in existing processes and develop new innovative and efficient solutions
• Ability to work effectively with a wide range of individuals including developers, systems administrators, executives, customers, regulators, auditors, etc.

Required Qualifications:

• Experience building productive relationships with Technical Operations, Security Operations, Incident Response, Technical Compliance, Engineering, and other partners
• Experience working with Information Security, GRC, ERM, Technology, Business, and Legal/Privacy functions
• Strong knowledge of technical vulnerability management
• Strong knowledge of security risk management frameworks including related regulatory compliance requirements (NIST CSF & 800-53, ISO 27001, SOC, HITRUST, HIPAA, FedRAMP, PCI, etc.)

Preferred Qualifications:

• Knowledge of, or experience working with, Cloud technologies/environments
• CISSP, CISA, CISM, AWS or similar certifications a plus

Qualification for this job is contingent upon acceptable results from a background investigation as well as your obtaining and maintaining the specific level of U.S. Government secret clearance required for this role. U.S. citizenship (U.S. born or naturalized) required.

*LI-Y

This candidate must be a U.S. citizen (U.S. born or naturalized) who does not hold dual citizenship and agrees to complete a U.S. federal government Minimum Background Investigation (MBI) for a Moderate Public Trust position.This position requires a USA TS/SCI with Polygraph security access level.

Accommodations

If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.

Posting Statement

At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.

Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.

Salesforce welcomes all.