Cyber Detection, Cryptography, & Threat Engineers / Managers (All Levels)
Salesforce
Open roles include:
Job level dependent on experience
Security Optimization Engineer, Crypto Operations
Senior Manager / Director, Crypto Operations
Detection Engineer
Threat Intel Engineer
Salesforce is looking to add to our expanding security organization. We're seeking Security Operations Engineers who are passionate about security and have had hands-on operational experience with infrastructure at a cloud scale. The Security Operations team is responsible for helping ensure that Salesforce becomes the most secure and compliant enterprise cloud solution. Security Operations includes the Detection Cloud, CSIRT, Threat & Vulnerability Management and Threat Intelligence teams among others. This group manages a fast-paced and constantly growing environment that seeks to implement cutting-edge technology to secure the infrastructure behind one of the world's largest business driving technologies. As a member of one of these Security Operations teams, you understand modern cyber threats, how to detect them, how to efficiently respond to them, and an interest in growing as a cyber security professional.
All Positions Require:
- A passion for Information Security
- Attention to detail
- Experience in Information Security, including security operations
- Security incident response in coordination with other teams across the company and/or externally as required
- Monitoring devices such as network and host-based intrusion detection systems, web application firewalls, database security monitoring systems, firewalls/routers/switches, proxy servers, antivirus systems, file integrity monitoring tools, and operating system logs.
- Understanding of attack vectors and tools as well as the best practices for securing systems and networks
- Strong technical understanding of network fundamentals and common Internet protocols
- Strong understanding of the information security threat landscape (attack vectors and tools, best practices for securing systems and networks, etc.)
- Familiarity with Microsoft Windows, Mac OSX, and Linux/Unix system administration and security controls
- Formulating and implementing monitoring, policies, procedures and standards relating to system security
- Support ongoing and new security/compliance initiatives
- The ability to build strong relationships with peers both internal and external to your functional group, and with peers/professional organizations outside your company
- Must have strong verbal and written communication skills; ability to communicate effectively and clearly to both technical and non-technical staff.
- Some travel may be required
- Job level dependent on experience
Security Optimization Engineer, Crypto Operations:
As a key member of our Crypto team, the Security Optimization Engineer will help build our growing cryptography operations team. The Security Optimization Engineer will need a passion for security, love hands-on work and a desire to innovate by driving efficiencies through process improvement and automation. You will be responsible for collaborating with our global operations team to identify, implement and optimize security services and operations. You’ll focus on strategic long term automation investments in order to help us scale our operations as the company continues to grow.
Responsibilities:
- Enhancing the security of our production systems, developing the tools to help us maintain and report on our security posture, ensuring that we maintain our external security certifications, and deploying and maintaining the security systems in our production data centers.
- Identify, design and deliver automation opportunities for cryptography services and operations.
- Process engineer existing workflows and identify optimization and automation opportunities.
- Drive continuous improvement of processes, policies, procedures and technology.
- Support ongoing and new security/compliance initiatives.
- Engineering and supporting security solutions in a large scale environment.
- Management/Review of systems security configurations.
- Support ongoing and new security/compliance initiatives.
- Security incident response in coordination with other security teams across the company and/or externally as required.
- Deploy and manage security systems.
- Design and development of tools to automate security or security reporting tasks.
Senior Manager / Director, Crypto Operations
Senior Manager / Director Crypto Operations to help build our growing cryptography operations team with a strong focus on certificate lifecycle management.
Required Skills/Experience
- Deep understanding and ownership of Certificate Management. Individual will own certificate management for Salesforce
- The ability to build & lead a high performing global team of engineers in the field of cryptography.Ownership of certificate management for Salesforce
- Leading a team to ensure no expired certificates
- Continuous improvements in certificate request efficiency through automation
- 10+ years’ experience in the Information Security field, including operational security
- 7+ Years experience in PKI/Cryptography
- 5+ Years experience in Security operations
- Identify, design and deliver automation opportunities for cryptography services and operations.
- Deep understanding of running a RA (Registration Authority)
- Experience working with leadership to influence risk decisions
The ability to build & lead a high performing global team of experts in the field of threat detection.
Detection Cloud Engineers
Required Skills/Experience:
- Experience analyzing security event data for anomalies. web application firewalls, database security monitoring systems, firewalls/routers/switches, proxy servers, antivirus systems, file integrity monitoring tools, and operating system logs
- Experience managing intrusion detection systems (such as Suricata or Sourcefire)
- Experience configuring security incident and event management tools (such as LogRhythm, Symantec SIM, LogLogic), including creating event filtering and correlation rules and reports.
- Ability to write intrusion detection system rules
Desired Skills/Experience:
- Strong scripting skills (i.e. Python/Perl, shell scripting) a significant plus
- Experience with Splunk or ElasticSearch
- Relevant information security certifications OSCP, OSCE, SANS GCIA, SANS GCIH, SANS GPEN, SANS GFCA and CISSP
Threat Intelligence Engineers
Required Skills/Experience:
- Strong research background and an analytical approach, especially with respect to event classification, event correlation, and root cause analysis
- Strong background in query development for SIEM/IDS
- In depth understanding of APT TTP’s
- Demonstrated understanding of the life cycle of network threats, attacks, attack vectors, and methods of exploitation
- Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, PCAP, Flow Log), and other artifacts in support of incident investigations.
- Experience with malware analysis concepts and methodology
- Motivated self-starter with strong written and verbal communications skills, and the ability to create complex technical reports on analytic findings
Desired Skills/Experience:
- Strong scripting skills (i.e. Python/Perl, shell scripting) a significant plus
- Experience with Splunk or ElasticSearch
Accessibility - If you require accessibility assistance applying for open positions please contact the Salesforce.com Recruiting Department.
Posting Statement
Salesforce.com and Salesforce.org are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. Salesforce.com and Salesforce.org do not accept unsolicited headhunter and agency resumes. Salesforce.com and Salesforce.org will not pay fees to any third-party agency or company that does not have a signed agreement with Salesforce.com or Salesforce.org.
Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.
Similar Jobs
