To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.
Job Category
ProductJob Details
About Salesforce
We’re Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too — driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good – you’ve come to the right place.
Marketing Security Lead Engineer
Are you a security professional passionate about translating technical controls into balanced guidance for a diverse workforce of humans and AI? Are you inspired by innovating pragmatic solutions for security challenges across a broad range of Marketing infrastructure, platforms and products? Do you get excited about enabling an effective security controls at scale?
Marketing Security secures our Marketing environment that generates a revenue pipeline for Salesforce. In this role, you will partner closely with marketing architects, engineers, product mangers to understand their objectives, identify threats, and scale our Marketing security programs. You will collaborate with our IT and Enterprise Security organizations and champion security requirements in the selection, development, and integration of a wide range of technologies. You will also have the opportunity to identify emerging threats and design new processes that balance security and business agility across for the Chief Marketing Office.
At Salesforce Trust is our #1 value. We are looking for a team player who can contribute and grow alongside an established and experienced team of technical security professionals. Are you interested in becoming part of an innovative, business-centric security team that focuses on preventing and remediating risk to the Marketing organization?
Your Impact - Responsibilities:
Threat model common attacker methods to develop appropriate mitigation techniques.
Collaborate with engineering teams and business partners to drive solutions through a secure development lifecycle.
Perform full stack security assessments of a diverse and complex range of environments including:
Operating system and hardware platforms (server and client endpoints, mobile and other embedded devices)
Network infrastructure (switches, routers, wireless access points, load balancers, firewalls, VPN, SDN, cloud)
Authentication and authorization services (SAML, OAuth, Radius, Kerberos)
Public cloud infrastructure platforms and technologies (AWS, GCP, Azure, Terraform)
Securing Web Applications, SaaS pen testing
Code Reviews and SDLC
Security Architecture Design Reviews
Research new technologies, emerging threats, and vulnerabilities.
Minimum Qualifications:
Bachelor's Degree in Computer Science, Engineering, or related technical field, or equivalent experience in technical leadership
8+ years experience in one of the following security roles: security operations, security engineering, incident response, penetration testing, intrusion detection, network security, application security, identity management, cryptography, or endpoint security controls (Experience varies by role level)
Understanding of major areas pertaining to security:
Common network security models and protocols.
Methods of determining integrity and providing confidentiality.
Operating systems internals and vulnerabilities.
Exploit mitigation techniques.
Application security.
Excellent communication skills with experience providing advice to internal customers on risk assessment, threat modeling, and remediation of vulnerabilities.
Ability to distill complex technical information verbally during situation reports and briefings.
Proven project management and organizational skills.
Excellent analytical skills, organizational skills, ingenuity, and the ability to work as part of a team.
Preferred Qualifications:
Hands-on experience designing solutions or performing security testing of cloud environments (AWS, Azure, Google Cloud)
Strong working experience with common security assessment tools such as BurpSuite, Nexpose, Nessus, Metasploit, Nmap
Understanding relevant scripting languages: Bash, Powershell, Python, Java, JavaScript / NodeJS. Experience with DevOps, CI/CD pipelines, or secure development lifecycles.
At least one security related certification such as OSCP, GCIH, GCIA, GPEN, GWAPT, GMOB, GPPA, CCNP, CCNP Security, CCIE Security
Experience performing detailed network traffic analysis, architecture review, and engineering network security solutions
Experience writing security white papers and/or presenting at industry security conferences and events.
Strong understanding of encryption methods
Accommodations
If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.
Posting Statement
Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that’s inclusive, and free from discrimination. Know your rights: workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications – without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.
In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: https://www.salesforcebenefits.com.Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.For California-based roles, the base salary hiring range for this position is $200,800 to $276,100.