Salesforce Security Architect

Position: Salesforce Security Architect

Duration: 1 years

Remote work

Agency: MNIT/POST Salesforce

Description of Project

The Minnesota Department of Information Technology Services (MNIT) partnering with Peace Officer Standards and Training (POST) Board is seeking a vendor to rebuild POST’s instance of Salesforce that has been in place since 2015. 

At a high level, the vendor will develop a comprehensive plan for a Salesforce business solution for POST program areas in Phase 1 of this project.  

This work will include: the preparation of requirements documentation, workflow mapping, solution architecture, a risk assessment, and an implementation roadmap.  The State reserves the right to amend the work order to include Phase 2 implementation services of this comprehensive plan. 

The work is expected to be done remotely.

Mode of Interview

The State will conduct interviews for this solicitation. Interviews will be conducted via MS Teams with a short list of responders. The State expects the vendor’s Account Representative, Proposed Project Lead, and Proposed Technical Lead to attend the interview.  The State reserves the right to remove a responder from consideration if the responder is unavailable for interview as requested by the State.

Project Schedule

• Anticipated Project Start Date: July 1, 2026
• Anticipated End Date: June 30, 2027

Key Responsibilities

• Analyze current Salesforce security controls, user access models, and compliance requirements.
• Conduct security assessments and identify risks associated with the current shared Salesforce Org.
• Design Salesforce security architecture including profiles, permission sets, roles, sharing rules, and data access controls.
• Define authentication and authorization frameworks including LoginMN integration and Single Sign-On (SSO).
• Develop security requirements documentation covering both functional and non-functional requirements.
• Design secure integration architectures for external vendors, APIs, payment systems, and state applications.
• Establish data protection, encryption, auditing, monitoring, and compliance standards.
• Create security risk assessments, mitigation plans, and governance frameworks.
• Support development of the Security Plan, Risk Management Plan, and implementation roadmap.
• Ensure compliance with State security policies, Salesforce security best practices, and regulatory requirements.
• Participate in architecture reviews, threat modeling, and security testing activities.

Required Qualifications

• 8+ years of Salesforce security architecture experience.
• Salesforce Certified Security & Privacy Accredited Professional and/or Salesforce System Architect certification.
• Strong expertise in Identity and Access Management (IAM), SSO, OAuth, SAML, and MFA.
• Experience implementing secure Salesforce Experience Cloud portals.
• Knowledge of security frameworks, risk assessments, and compliance standards.
• Experience integrating Salesforce with enterprise identity providers.
• Excellent documentation and stakeholder communication skills.