To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.
Job Category
Enterprise Technology & Infrastructure
Job Details
About Salesforce
We’re Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too — driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good – you’ve come to the right place.
Our Security teams support the unwritten fourth tenet of Slack’s mission: make people’s working lives more secure. We’re serious about protecting our infrastructure, operations, and most importantly, our customers’ data. We take a systemic approach to security and strive to ensure we provide low friction high-impact security across everything we do.
As a key member of the Risk & Compliance Team, you understand that building user trust is critical to Slack’s success. You are passionate about information security risk management, privacy and maintaining customer confidence! Not only are you passionate about the subject matter, but learning, building, and sustaining processes to address new regulatory and compliance requirements excites you. You are eager to use your technical knowledge to understand our customers and answer their questions accordingly. In this role, your work will directly impact the way millions of users, teams and businesses get things done. We are seeking a motivated individual that is not only passionate about delivering results but does so in a collaborative and courteous manner.
Responsibilities
Support the development and maintenance of the FedRAMP Continuous Monitoring program for both FedRAMP Moderate and FedRAMP High/IL4 authorizations.
Responsible for monthly FedRAMP deliverables including Plans of Action and Milestones (POA&M)
Responsible for Significant Change Request discipline including out-of-band audits.
Distill data from a variety of sources and tools (Nessus, Twistlock, etc) to ensure the creation and delivery of evidence, including POA&M, for monthly communication with Agency Sponsors.
Collaborate with a variety of teams to track remediation of vulnerabilities within SLA
Manual entry, manipulation and comparison of large quantities of data on a monthly basis
What you should have:
US Persons/US Citizen
Strong familiarity with FedRAMP and NIST 800-53.
Some familiarity with vulnerability scan tooling like Nessus and Twistlock
Exquisite attention to detail
Understanding of basic cloud concepts (e.g. IaaS vs. PaaS vs. SaaS, AWS shared responsibility model, etc.)
Ability to work independently with excellent time management, attention to detail, and other related organizational skills while interacting with partners across multiple time zones.
Effective communication with great interpersonal and presentation skills; writing and speaking well to translate complex issues into simple language that people who are not specialists can understand.
Industry certification (e.g. AWS, Security+, CCSK, etc.) and/or Bachelor’s Degree in a relevant field
Bonus points:
Accommodations
If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.
Posting Statement
At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.
Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status.Salesforce does not accept unsolicited headhunter and agency resumes.Salesforce will not pay any third-party agency or company that does not have a signed agreement withSalesforce.
Salesforce welcomes all.
For Colorado-based roles, the base salary hiring range for this position is $93,000 to $127,800.Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, benefits. More details about our company benefits can be found at the following link: https://www.salesforcebenefits.com.