Salesforce
Overview
Salesforce is seeking a talented and dynamic Leader in Security IAM to design, build, deploy and maintain IAM systems at cloud scale. The role focuses on deploying IAM services across First Party and Cloud environments, with a longer-term aim to improve our security posture and NIST CSF score. The position requires initiative, ownership, and leadership with strong organizational and decision-making skills. This role helps drive continuous improvement in process, controls, scalability, and maturity. Responsibilities
Lead and inspire a team within Security Infrastructure Identity and Access [IAM]. Deliver security services, drive change, communicate clearly, and provide recommendations for process, service and automation initiatives on 1P (first party) and Cloud environments. Lead development teams in an Agile, full-service ownership model. Lead DevOps activities for owned services in a 24/7 runtime environment, including root cause investigations and solutions. Collaborate with other engineering teams to solve security problems with minimal disruption to business functions. Hire, train and assess the performance of direct reports following corporate policies. Mentor and develop employees through training and career development activities. Define goals and timely deliverables for provisioning/deprovisioning, privileged user management, RBAC, access appropriateness, and IAM services to support internal or external business needs. Work with partners and team members to design/architect, test, deploy and operate the IAM stack; partner with other business units to deliver an enterprise identity solution for Salesforce. Drive design and implementation of innovative distributed software platforms for continuous assessment of security posture of code and third-party packages used by Salesforce engineers. Required Skills/Experience
3+ years of experience managing identity and access management teams. Proficiency with IAM tools such as Okta, SailPoint, Azure AD, CyberArk, ForgeRock, etc. Strong knowledge of authentication standards (SAML, OIDC, OAuth2). Experience with identity lifecycle management and governance frameworks. Familiarity with directory services (LDAP, AD), scripting (PowerShell, Python), and APIs. Understanding of compliance frameworks (e.g., NIST, ISO 27001). Knowledge of automation/scripting languages and CI/CD processes including GoLang, Python (and/or Terraform, Spinnaker, JSON, Puppet). Proven experience driving Software Engineering Excellence practices and engineering partnerships. Experience with APIs (JSON/XML) and multi-tiered cloud environments (AWS, Azure, GCP). Solid experience in high-availability 24x7x365 environments with structured change management. Strong technical understanding of systems, network, and identity fundamentals. Knowledge and experience with IAM technologies and concepts. Desired Skills/Experience
Knowledge of classic auth platforms (Kerberos, LDAP, Radius, Tacacs+). Knowledge of federation platforms/protocols (OAuth, OpenID, SAML, WS-Fed). Experience with commercial/enterprise IAM platforms (Ping Identity, Active Directory) or Open Source (OpenLDAP, OpenDJ). Experience with cloud-scale IAM services (SSO/Multi-Factor Authentication) or design and architecture of IAM services. Accommodations
If you require assistance due to a disability applying for open positions please submit a request via the Accommodations Request Form. Posting Statement
Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. Information about compensation and benefits is provided where applicable, including base salary ranges for Washington-based roles. Further details about benefits are available at the Salesforce benefits site.
#J-18808-Ljbffr
Salesforce is seeking a talented and dynamic Leader in Security IAM to design, build, deploy and maintain IAM systems at cloud scale. The role focuses on deploying IAM services across First Party and Cloud environments, with a longer-term aim to improve our security posture and NIST CSF score. The position requires initiative, ownership, and leadership with strong organizational and decision-making skills. This role helps drive continuous improvement in process, controls, scalability, and maturity. Responsibilities
Lead and inspire a team within Security Infrastructure Identity and Access [IAM]. Deliver security services, drive change, communicate clearly, and provide recommendations for process, service and automation initiatives on 1P (first party) and Cloud environments. Lead development teams in an Agile, full-service ownership model. Lead DevOps activities for owned services in a 24/7 runtime environment, including root cause investigations and solutions. Collaborate with other engineering teams to solve security problems with minimal disruption to business functions. Hire, train and assess the performance of direct reports following corporate policies. Mentor and develop employees through training and career development activities. Define goals and timely deliverables for provisioning/deprovisioning, privileged user management, RBAC, access appropriateness, and IAM services to support internal or external business needs. Work with partners and team members to design/architect, test, deploy and operate the IAM stack; partner with other business units to deliver an enterprise identity solution for Salesforce. Drive design and implementation of innovative distributed software platforms for continuous assessment of security posture of code and third-party packages used by Salesforce engineers. Required Skills/Experience
3+ years of experience managing identity and access management teams. Proficiency with IAM tools such as Okta, SailPoint, Azure AD, CyberArk, ForgeRock, etc. Strong knowledge of authentication standards (SAML, OIDC, OAuth2). Experience with identity lifecycle management and governance frameworks. Familiarity with directory services (LDAP, AD), scripting (PowerShell, Python), and APIs. Understanding of compliance frameworks (e.g., NIST, ISO 27001). Knowledge of automation/scripting languages and CI/CD processes including GoLang, Python (and/or Terraform, Spinnaker, JSON, Puppet). Proven experience driving Software Engineering Excellence practices and engineering partnerships. Experience with APIs (JSON/XML) and multi-tiered cloud environments (AWS, Azure, GCP). Solid experience in high-availability 24x7x365 environments with structured change management. Strong technical understanding of systems, network, and identity fundamentals. Knowledge and experience with IAM technologies and concepts. Desired Skills/Experience
Knowledge of classic auth platforms (Kerberos, LDAP, Radius, Tacacs+). Knowledge of federation platforms/protocols (OAuth, OpenID, SAML, WS-Fed). Experience with commercial/enterprise IAM platforms (Ping Identity, Active Directory) or Open Source (OpenLDAP, OpenDJ). Experience with cloud-scale IAM services (SSO/Multi-Factor Authentication) or design and architecture of IAM services. Accommodations
If you require assistance due to a disability applying for open positions please submit a request via the Accommodations Request Form. Posting Statement
Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. Information about compensation and benefits is provided where applicable, including base salary ranges for Washington-based roles. Further details about benefits are available at the Salesforce benefits site.
#J-18808-Ljbffr