S'INSCRIRE

Offres d'emploi

Trouvez des postes près de chez vous, sur site, hybrides ou à distance.
  • Emplois similaires à : Information Security Architect
XX
Information Security Architect - CSIRTSalesforceUnited States
Postuler Maintenant
XX

Information Security Architect - CSIRT

Salesforce
  • US
    United States
  • US
    United States
Postuler Maintenant

À propos

Incident And Vulnerability Manager
Our Incident and Vulnerability Managers are a critical part of Salesforce's Cyber Security Operations Center (CSOC). As commanders on the most impactful cyber security team, we lead Salesforce's security response for our Commercial and GovCloud environments while acting as the security executive liaison with Security and Business Leadership across the lifecycle of events. Responsible for the response strategy and its timely execution, we leverage our unique perspective to partner with the wider Security organization to identify, prioritize and remediate critical risks across Salesforce. We are constantly looking at ways to reduce toil, and drive continuous improvement initiatives across our tooling, playbooks and automated workflows. The scale of our environment and the variety of problems to tackle provides unique opportunities to learn and to grow surrounded by a diverse and supportive team and incredibly helpful partners. This candidate must be a U.S. citizen (U.S. born or naturalized) operating on U.S. Soil who does not hold dual citizenship with the ability to meet customer and government screening standards applicable to this role, including a Criminal Justice Information Services screening with fingerprint scan. Due to the citizenship requirements for this role, which supports U.S. federal, state, and/or local government customers, citizenship will be verified through two of the following REAL ID Act documents: U.S. Passport, Passport Card, REAL Driver's License, Global Entry Card, U.S. Government CAC/PIV. You agree to complete a Minimum Background Investigation (MBI) for a Moderate Public Trust position with the U.S. federal government and gain other clearances as deemed appropriate for the role. Responsibilities: Act as the Incident or Vulnerability Commander for Salesforce's high risk cyber security events across our Commercial and GovCloud environments. Establish response strategy and coordinate its delivery until remediation of threats. Ensure the highest standards of the execution and documentation of the NIST incident response lifecycle to timely scope, contain and remediate critical security threats. Command Executive Briefings and response calls, act as security executive liaison. Maintain timely communications on progress and findings to Leadership and address incoming escalations from executives. Partner closely with Legal, Software Engineering, Operations, Technical Support, Customer Success and Sales Leadership to ensure and communicate the best outcomes for customers and partners. Lead cross-functional post-incident process reviews to identify and implement continuous improvement initiatives. Contribute to the team sprint and/or lead critical uplift projects. Educate, train and mentor staff on the incident response lifecycle. Required Qualifications: 5+ years of relevant experience in security operations, incident management and/or risk management within an enterprise environment. A related technical degree required. Experience responding to and leading complex critical cyber security incidents in a large-scale environment. Broad knowledge of security best practices, the current threat landscape and the incident response lifecycle. Strong teamwork skills with the ability to build and grow relationships. Ability to stay composed under pressure and to think critically on the spot. Excellent verbal and written communication skills; ability to communicate optimally and clearly to both technical and non-technical audiences. Project management skills with proven ability to drive, influence and coordinate cross-teams and cross-region projects. Preferred Qualifications: Technical knowledge of complex systems and Cloud environments (AWS, GCP, Azure). Technical knowledge of network fundamentals and common Internet protocols. Technical knowledge of incident response frameworks with operational experience across Windows, Mac and Linux forensics Operational and services experience in a cloud services delivery environment Experience in conducting root cause analysis Familiarity with cyber key security regulations and standards (e.g.,NIST, PCI-DSS, GDPR, ISO 27001) Relevant information security certifications
  • United States

Compétences linguistiques

  • English
Avis aux utilisateurs

Cette offre provient d’une plateforme partenaire de TieTalent. Cliquez sur « Postuler maintenant » pour soumettre votre candidature directement sur leur site.