Job Description

We are seeking a highly skilled Salesforce Security Engineer with 8+ years of experience in Salesforce security, user-level security role management, and automation. The successful candidate will be responsible for safeguarding our Salesforce environment, managing complex user permissions, and automating security processes to ensure compliance and integrity.

Responsibilities

• Design, implement, and maintain robust security controls across the Salesforce platform, including user-level security roles, profiles, permission sets, and sharing rules to ensure appropriate access

• Develop and manage Salesforce security architecture, creating security roles and permission hierarchies tailored to business needs

• Conduct security audits and periodic reviews of user permissions, roles, and profiles to ensure least-privilege access and adherence to security policies

• Oversee Salesforce Shield for encryption, event monitoring, and audit trails, ensuring data security and compliance with privacy regulations

• Collaborate with business and technical teams to design secure Salesforce solutions, ensuring alignment with security standards and regulatory requirements

• Automate security monitoring and access management processes using Salesforce automation tools, such as Flow, Process Builder, and custom solutions

• Define and manage role-based security protocols for external integrations, using OAuth, JWT, and SAML for secure API authentication and data exchange

• Stay updated on emerging Salesforce security threats and implement proactive measures to safeguard the platform

• Lead incident response activities, including analysis, remediation, and documentation of security incidents within the Salesforce environment

• Provide security training and guidance to development teams, ensuring that best practices in user-level security and access management are followed

• Integrate security checks and best practices into CI/CD pipelines, automating routine security processes to improve efficiency and reduce risks

Minimum Qualifications

• 8+ years of experience in Salesforce Security Engineering, with a focus on managing user-level security roles, profiles, and permission sets

• Proven experience with Salesforce Shield, encryption, identity management, and SSO configurations

• Expertise in designing and managing complex role-based security models, ensuring least-privilege access and data protection

• Strong knowledge of Salesforce automation tools (Flow, Process Builder) for automating security tasks and access controls

• Familiarity with security tools like Salesforce Optimizer, Security Center, and other third-party security solutions

• Thorough understanding of security frameworks such as OWASP, NIST, ISO 27001, and CIS Controls

• Experience ensuring compliance with regulatory standards (GDPR, HIPAA, CCPA) in Salesforce environments

• Knowledge of secure API integrations, using OAuth, JWT, and SAML for secure authentication and communication

• Salesforce certifications (e.g., Salesforce Certified Identity and Access Management Designer, Salesforce Certified Platform Security Designer) are highly preferred

• Experience with automated security testing and vulnerability assessments

• Strong communication and interpersonal skills, with the ability to collaborate effectively across teams

• Detail-oriented, with a focus on delivering high-quality, secure solutions

• Excellent problem-solving and analytical skills, with a proactive approach to identifying and mitigating security risks

Preferred Qualifications

• Experience with DevSecOps practices, integrating security into the development lifecycle

• Familiarity with CI/CD pipelines, and automating security checks during the deployment process

• Hands-on experience in Salesforce governance, risk, and compliance management