Lead Security Engineer, GovCloud

About Salesforce

Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn’t a buzzword — it’s a way of life. The world of work as we know it is changing and we’re looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce’s core values at the heart of it all.

Salesforce is looking to hire a Lead Security Engineer for Government Cloud Services. We prioritize security and data protection to ensure the confidentiality, integrity, and availability of our systems and information. As we continue to expand our operations, we are seeking a skilled and experienced Lead Security Analyst to join our dynamic team and play a pivotal role in safeguarding our organization against evolving cyber threats.

• Apply security policies to meet security objectives of the system.
• Assess adequate access controls based on principles of least privilege and need-to-know.
• Assess all the configuration management (change configuration/release management) processes.
• Assess the effectiveness of security controls.
• Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
• Develop and implement comprehensive security policies, procedures, and guidelines to ensure the protection of company assets and compliance with applicable regulations.
• Conduct (or coordinate with third party partners) regular security risk assessments, vulnerability assessments, and penetration tests to identify potential weaknesses in systems, networks, and applications and coordinate remediation of findings. Drive related mitigations.
• Collaborate with stakeholders to design and implement security controls, including firewalls, intrusion detection systems, access controls, and encryption technologies.
• Conduct analysis of logs and events, identify gaps for deeper analysis as needed, and coordinate with Detection and Response teams on detection and alerting betterment efforts and uplift.
• Stay up-to-date with the latest security trends, vulnerabilities, and threat intelligence, and provide recommendations to proactively address emerging risks.
• Liaison with Incident Response teams on incidents and response efforts, recommend and/or instigate remediation actions to prevent future occurrences.
• Develop and deliver security awareness and training programs to educate employees on security best practices and promote a culture of security across the organization.
• Collaborate with external vendors, partners, and auditors to ensure compliance with security standards and regulations. Further, implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
• Maintain documentation of security procedures, incident response plans, and security incident reports.

• Experience with using cloud infrastructure as code (IaC), including Terraform, Cloud Formation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git
• Professional certifications such as CISSP, CISM, CEH, or similar are highly desirable.
• Proven experience (5+ years) in a security analyst role, with a focus on information security, incident response, and vulnerability management.
• Must be US Citizen operating on US Soil and pass both enhanced background check as long as Criminal Justice background check.
• Strong understanding of security frameworks such as ISO 27001, NIST, or CIS Controls, and their practical application.
• Extensive knowledge of security technologies, including firewalls, IDS/IPS, SIEM, DLP, antivirus, and endpoint protection systems.
• Hands‑on experience with vulnerability assessment tools, network scanning tools, and penetration testing methodologies.
• Experience with using cloud infrastructure as code (IaC), including Terraform, Cloud Formation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git
• Proficiency in log analysis,…