Security GRC Senior Analyst

Security GRC Senior Analyst

Join to apply for the Security GRC Senior Analyst role at Salesforce
.

4 days ago – Be among the first 25 applicants.

Job Category: Enterprise Technology & Infrastructure

About Salesforce: Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Ambition meets action. Tech meets trust. Innovation isn’t a buzzword—it’s a way of life. The world of work is changing, and we’re looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce’s core values at the heart of it all.

Ready to level‑up your career at the company leading workforce transformation in the agentic era? You’re in the right place! Agentforce is the future of AI, and you are the future of Salesforce.

• This candidate must be a U.S. citizen (U.S. born or naturalized) who does not hold dual citizenship and agrees to complete a U.S. federal government Minimum Background Investigation (MBI) for a Moderate Public Trust position.

In this role you will own a specific deliverable in GCC and work with Engineering stakeholders, partners, and other members of GCC to deliver exceptional quality that reduces risk and ensures ongoing compliance for our customers. You will own your area of responsibility with minimal guidance from senior team members, innovate, challenge the status quo, and embrace operational excellence best practices by using automation and emerging technologies.

• Assess security risk and ensure that controls are designed to appropriately mitigate security risk.
• Assess control effectiveness to ensure ongoing compliance.
• Drive existing or newly identified initiatives between stakeholder organizations prends synergy and reduce risk of non‑compliance with internal or external requirements.
• Consult with business or security stakeholders on information security requirements and applicability to their business processes, products, or services.
• Build and maintain relationships with key business, legal, Employeeạ Success, Internal Audit, technical/engineering stakeholders, and other organizations across the company उपलब्ध expertise in security requirements and solution management.
• on team's process improvement and design innovative, automated functionality for added efficiency.
• Identify and create metrics and dashboards to quantify and measure the impact of security processes that you drive.
• Effectively communicate compliance positions and programs to applicable businessurger stakeholders.

• 3 years of experience in security governance, risk management, compliance, audit, internal controls, or related areas, and 3–5 years of total work experience.
• Experience working with Government Cloud environments such as AWS, Azure, and GCP (SaaS, IaaS, PaaS, etc.).
• Experience in security analysis, creating metrics and dashboards, and summarizing large detail sets.
• Ability to work with both business and technical areas and translate between the two.
• Skilled at building rapport and establishing partnerships.
• Excellent verbal and written communication skills and ability to communicate results to multiple levels of management.
• Knowledge of multiple regulatory compliance frameworks (NIST CSF & 800‑53, ISO 27001, SOX, SOC, HITRUST, HIPAA, FedRAMP, DOD SRG IL4/IL5, PCI, etc.).
• Operational process design, improvement, and implementation experience.
• Demonstrated desire to learn new skills and innovate.
• Agile, proactive, comfortable working with ambiguous specifications and can prioritize quickly and effectively.
• Drive improvements in existing processes and develop new, innovative and efficient solutions.
• Ability to work effectively with a wide range of individuals including developers, systems administrators, executives, customers, regulators, auditors, etc.

• Experience building productive relationships with Technical Operations webinar Security Operations, Incident Response, Technical Compliance, Engineering, and other stakeholders.
• Experience working with the Authorizing Officials and DISA Cloud Assessment Division.
• Experience working with Information Security, GRC, ERM, Technology, Business, and Legal/Privacy functions.

• Knowledge of, or experience working with, Cloud technologies/environments is a plus.
• CISSP, CISA, CISM, AWS or similar certifications a plus.

If you require assistance due to a disability applying for open positions, please submit a request via the Accommodations Request Form.

Salesforce is an quilômetros triggering ……

Salesforce offers a variety of benefits, including time‑off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. Details can be found at Salesforce Benefits (link omitted due to tag restrictions).