Information Security Operations Senior Analyst

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.

Job Category

Products and Technology

Job Details

The Compliance Business Engineering and Operations team (CBEO) within the IAM Org is looking to hire a Senior Security Analyst to drive the identity lifecycle management program. We are looking for an experienced individual contributor with background in IT security, compliance or identity management. This role will will coordinate the Salesforce’s periodic access Review process (manually and through tools e.g.

Responsibilities

• Coordinate the periodic access review process
• Document and maintain schedule for periodic access reviews
• Work with application/technology platform owners to identify access review requirements and ensure they are documented and periodically maintained
• Create and manage schedule for access reviews
• Communicate with all necessary stakeholders and business partners on status, completions, and required access removal, and/or escalations needed to complete the campaigns.
• Maintain systematic evidence for audit purposes
• Interact with internal and external audit teams regularly to provide documentation/evidence as needed
• Responsible for tracking process effectiveness, measurement and optimization
• Creates and maintains processes, procedures, and other program documentation
• Develops and executes detailed communications for relevant stakeholders
• Monitors and analyzes security risks and metrics to identify themes, trends, correlations, and variances
• Prepares reports and presentations for multiple audiences with varying business objectives
• Communicates status reporting in a way that drives risk-based business decision-making and action
• Plans, implements, and manages security control execution
• Coordinates with various teams and departments, to ensure alignment, share best practices and hold teams accountable to deadlines
• Coordinates subject matter expertise for members of the Security and Engineering organization
• Assist with the overall execution of compliance programs aimed at achieving and maintaining industry accreditations and certifications.
• Advocating for continuous automation and improvement of customer facing documentation, training and literature

Required Skills

• 5+ years of related experience
• Bachelor’s degree or higher with a concentration in computer science, technology, or business, or equivalent combination of education and experience.
• Some knowledge and experience in security and engineering, and the ability to articulate how it applies to identity lifecycle management
• Ability to motivate people, instill accountability, and achieve results
• Flexible, agile, proactive, comfortable working with ambiguous specifications
• Thrives in a collaborative and detailed environment, using research and analysis to support recommendations and opinions
• Excellent business and technical communication skills at all levels of the organization
• Detail oriented with an eye for quality
• Analytical thinker, highly organized, and ability to multi-task
• Very strong written and verbal communication and presentation skills
• Self-starter and able to work independently; motivated to set personal and program goals and proactively track performance against goals and initiatives.

Preferred Skills

• Experience in security and lifecycle management tools (e.g. IIQ)
• Experience in auditing methodology and technology risk assessments
• Experience driving security related change within a business
• Passionate about building and developing good engineering and security practices and processes
• CISA or CISSP certification

*LI-Y

Accommodations

If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.

Posting Statement

At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at Salesforce and explore our benefits.

Salesforce.com and Salesforce.org are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce.com and Salesforce.org do not accept unsolicited headhunter and agency resumes. Salesforce.com and Salesforce.org will not pay any third-party agency or company that does not have a signed agreement with Salesforce.com or Salesforce.org.

Salesforce welcomes all.