| Position Description:
Required Education:
Experience: 6+ years with a Bachelor's degree (IT security focus preferred) OR 8+ years without a degree.
Must-Haves (Non-Negotiable)
Salesforce Background: Previous experience as a Salesforce Administrator.
Security Expertise: Proven experience implementing security controls within the Salesforce platform.
Cybersecurity Knowledge: Strong understanding of Threat Monitoring, Privileged Access, and Identity and Access Management (IAM).
Technical Skills: 5+ years in cybersecurity, with experience in enterprise-scale cloud security, architectural designs, and Salesforce security tools (Health Check, Shield, Security Center).
Location & Attendance: Must be able to work onsite 5 days a week.
Soft Skills: Excellent communication, collaboration, and self-starter attitude.
Nice-to-Haves (Differentiators)
Certifications/Badges: Ranger-level badges on Salesforce Trailhead for Security/Administration; CISSP or CISM.
Skills: Experience communicating technical info to non-technical clients; experience with Agile methodologies and Azure DevOps.
This is a backfill role for a Senior Salesforce Security Analyst (Analyst/Developer - General 4) to start in January 2025. The candidate will be a key member of the Salesforce Security and Governance team, responsible for developing strategy, conducting risk assessments, and implementing security controls across global Salesforce environments. The role is 100% on-site (5 days a week) in East Peoria, Dallas, or Nashville.
Typical task breakdown:
Performs engineering of security capabilities within Salesforce environments.
Utilizes and develop standards, practices, processes, audits, playbooks, accelerators, and documentation to establish, manage, and report adherence to the program.
Partners to build, operate, and remediate continuous control assessments within Salesforce platform.
Utilizes Salesforce security tools such as Security Center, Optimizer, and Health Check.
Acts as a subject matter expert on the implementation and capabilities of existing security controls for Salesforce.
Works closely with Salesforce teams to ensure security initiatives are in line with all other key initiatives that may have interdependencies.
Anticipates and identifies security risks, threats and vulnerabilities advising stakeholders accordingly with reliable, timely, and complete information while designing and implementing strategies to mitigate and minimize incidents impacting Salesforce
Analyzes, advises, and evaluates security configurations to protect Salesforce environment from unauthorized disclosure or misuse.
Develops collaborative relationships and provides expertise, technical guidance, and training to the Caterpillar Salesforce community
Working with another sales security architect with team, working with salesforce administrator
Disqualifiers (Red Flags)
Job Hopping: "Choppy tenure" or a history of frequent job changes.
Remote Work: Inability or unwillingness to work 5 days a week in the office. |