Salesforce.Com Inc
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.
Job Category Software Engineering
Job Details
About Salesforce
Salesforce is the Customer Company, inspiring the future of business with AI, data, and CRM. We help companies blaze new trails and connect with customers in new ways, and we empower our people to grow and make a difference.
A key leader, the Cloud Security Architect, will drive security efforts related to the design, implementation, and maintenance of secure cloud environments. This role focuses on public cloud security principles, best practices, and technologies to define security baselines, enforce policies, and embed security into cloud architectures. The architect will champion secure adoption, ensure parity across cloud environments, proactively mitigate risks, and serve as a subject matter expert for partners and stakeholders on cloud-native security.
Responsibilities
Security Solution Architecture: Drive the architecture of robust and scalable security solutions for public cloud environments, utilizing guardrails, policies, and industry-leading practices.
Security Baselines and Standards: Define and maintain security baseline requirements, policies, and standards for public cloud platforms (e.g., AWS, Azure, GCP).
Security Control Implementation and Automation: Lead the design, implementation, and automation of security controls in cloud environments, including IAM, detection and monitoring, CI/CD security, configuration management, container security, network security, and data protection.
Automation and IaC: Utilize Infrastructure as Code tools (e.g., Terraform) and container orchestration (e.g., Kubernetes) to automate security configurations and ensure secure-by-design infrastructure.
Cross-Functional Collaboration: Collaborate with Product Engineering and internal Security teams to integrate security solutions and risk mitigation into cloud architectures.
Threat Landscape and Trend Analysis: Continuously assess cybersecurity trends to evolve security policies, practices, and architectural patterns.
Cloud Security Vision and Strategy: Partner with stakeholders to develop and drive a converged cloud security vision and strategy across all public cloud environments.
Architecture Reviews and Guidance: Conduct periodic security architecture reviews and provide actionable recommendations; serve as a subject matter expert on secure patterns for cloud-native applications.
Secure Architecture Adoption and Advocacy: Promote a "security by design" mindset and drive adoption of secure architecture principles across the organization.
Proactive Risk Management: Work with the Security Assessments team to identify, prioritize, and mitigate risks in public cloud environments.
Qualifications
8-12 years of progressive experience in cloud security architecture and engineering.
Strong understanding of public cloud platforms (e.g., GCP, AWS) and their native security services.
Experience designing, implementing, and automating security controls in cloud environments, including IAM, detection and monitoring, CI/CD security, configuration management, container security, and IaC.
Excellent communication and collaboration skills; ability to communicate complex concepts to diverse audiences.
Strong analytical and problem-solving skills with a proactive approach to risk mitigation in cloud environments.
Experience with security architecture reviews and actionable recommendations.
Familiarity with cloud-native application architectures and security considerations.
Knowledge of security frameworks (e.g., NIST, CIS, ISO 27001) and cloud security best practices.
Preferred Qualifications
Relevant certifications such as Google Cloud Engineer, Cloud Architect, Cloud Security Engineer, CCSP, CISSP or equivalent.
Hands-on experience with Google Cloud Native Security Services (e.g., Chronicle, Cloud Armor, Cloud Firewall, IDS, Certificate Manager, KMS, Secret Manager, DLP).
Proficient scripting and automation skills (e.g., Python, Bash).
Accommodations
If you require assistance due to a disability applying for open positions, please submit a request via the Accommodations Request Form. Posting Statement
Salesforce is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and provide equal opportunity in all aspects of employment. All qualified applicants will receive consideration without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, disability, veteran status, or any other protected characteristic. #J-18808-Ljbffr
Security Solution Architecture: Drive the architecture of robust and scalable security solutions for public cloud environments, utilizing guardrails, policies, and industry-leading practices.
Security Baselines and Standards: Define and maintain security baseline requirements, policies, and standards for public cloud platforms (e.g., AWS, Azure, GCP).
Security Control Implementation and Automation: Lead the design, implementation, and automation of security controls in cloud environments, including IAM, detection and monitoring, CI/CD security, configuration management, container security, network security, and data protection.
Automation and IaC: Utilize Infrastructure as Code tools (e.g., Terraform) and container orchestration (e.g., Kubernetes) to automate security configurations and ensure secure-by-design infrastructure.
Cross-Functional Collaboration: Collaborate with Product Engineering and internal Security teams to integrate security solutions and risk mitigation into cloud architectures.
Threat Landscape and Trend Analysis: Continuously assess cybersecurity trends to evolve security policies, practices, and architectural patterns.
Cloud Security Vision and Strategy: Partner with stakeholders to develop and drive a converged cloud security vision and strategy across all public cloud environments.
Architecture Reviews and Guidance: Conduct periodic security architecture reviews and provide actionable recommendations; serve as a subject matter expert on secure patterns for cloud-native applications.
Secure Architecture Adoption and Advocacy: Promote a "security by design" mindset and drive adoption of secure architecture principles across the organization.
Proactive Risk Management: Work with the Security Assessments team to identify, prioritize, and mitigate risks in public cloud environments.
Qualifications
8-12 years of progressive experience in cloud security architecture and engineering.
Strong understanding of public cloud platforms (e.g., GCP, AWS) and their native security services.
Experience designing, implementing, and automating security controls in cloud environments, including IAM, detection and monitoring, CI/CD security, configuration management, container security, and IaC.
Excellent communication and collaboration skills; ability to communicate complex concepts to diverse audiences.
Strong analytical and problem-solving skills with a proactive approach to risk mitigation in cloud environments.
Experience with security architecture reviews and actionable recommendations.
Familiarity with cloud-native application architectures and security considerations.
Knowledge of security frameworks (e.g., NIST, CIS, ISO 27001) and cloud security best practices.
Preferred Qualifications
Relevant certifications such as Google Cloud Engineer, Cloud Architect, Cloud Security Engineer, CCSP, CISSP or equivalent.
Hands-on experience with Google Cloud Native Security Services (e.g., Chronicle, Cloud Armor, Cloud Firewall, IDS, Certificate Manager, KMS, Secret Manager, DLP).
Proficient scripting and automation skills (e.g., Python, Bash).
Accommodations
If you require assistance due to a disability applying for open positions, please submit a request via the Accommodations Request Form. Posting Statement
Salesforce is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and provide equal opportunity in all aspects of employment. All qualified applicants will receive consideration without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, disability, veteran status, or any other protected characteristic. #J-18808-Ljbffr