Salesforce.com, Inc Senior Security Vulnerability Handler in Indianapolis, Indiana
To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.
Products and Technology
Salesforce - the leader in enterprise cloud computing and #1 on Fortune's "Best Companies to Work For" list - is seeking a Senior Security Vulnerability Handler to join one of the world's leading vulnerability response teams.
The security vulnerability response team at Salesforce deals with the most challenging problems in information security. The pace and variety of our work creates a unique learning environment, whether you are starting out or have deep security experience. You will be given unique challenges and the tools to solve them, surrounded by exceptional colleagues, and supported by incredibly helpful partner teams.
Security Vulnerability Handlers are responsible for leading the response to lower severity vulnerabilities and participating in the response to high severity vulnerabilities. Successful vulnerability handlers thrive on challenge, are calm under pressure, and can think on their feet.
7+ years experience in information security or closely related roles, with direct experience of security vulnerability response.
Experience leading other handlers and delegate responsibilities to facilitate accelerated triage.
Determine initial vulnerability stakeholders and initiate the vulnerability notification process.
Ability to manage and constantly triage multiple security vulnerabilities, differentiating urgent issues from the merely important.
Ability to stand back from a complex problem, logically assess the facts, and formulate a plan of action - even in the worst of situations.
Experience managing common types of security vulnerabilities, e.g., OWASP Top 10.
Familiarity with common threats and issues related to security vulnerabilities, e.g., credential phishing, internal data spillage events, and inadvertent data leaks.
Application forensics skills, including collecting and analysing code artifacts to assess potential impact if the vulnerability were to be exploited.
Superior verbal and written communication skills, including the ability to effectively and clearly communicate complex scenarios to non-technical colleagues.
Exceptional technical basics, including networking fundamentals, common application protocols, system architecture, and basics of software development.
Strong knowledge of web proxy tools and techniques.
Ability to research and learn unfamiliar technologies quickly, adapting existing knowledge and processes to investigate and resolve security issues.
Broad information security knowledge, including some familiarity with key regulations and standards relating to security vulnerability response.
Previous experience with SalesforceCRM security, administration or development.
Prior experience in a large and complex organisation, operating across numerous locations and with a high degree of change.
Experience reproducing proof of concept exploitation steps.
Experience judging the priority of a vulnerability based on risk and impact.
Experience securing applications and infrastructure in Amazon Web Services and similar IaaS / PaaS platforms.
Deep application security knowledge, with the ability to map an application vulnerability to exploitation indications and relevant investigative techniques.
Relevant incident response or information security certifications, such as GIAC GWAPT, GIAC GCIH, GIAC GPEN, GIAC GXPN, Offensive Security OSCP.
Accommodations - If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form. at http://cloud.mail.salesforce.com/accommodations-request-form
At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at Salesforce and explore our benefits.
Salesforce.com at http://salesforce.com/ and Salesforce.org at http://salesforce.org/ are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce.com at http://salesforce.com/ and Salesforce.org at http://salesforce.org/ do not accept unsolicited headhunter and agency resumes. Salesforce.com at http://salesforce.com/ and Salesforce.org at http://salesforce.org/ will not pay any third-party agency or company that does not have a signed agreement with Salesfore.com at http://salesfore.com/ or Salesforce.org.
Salesforce welcomes all.
Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.
Founded in 1999, Salesforce is the global leader in Customer Relationship Management (CRM). Companies of every size and industry are using Salesforce to transform their businesses, across sales, service, marketing, commerce, and more by connecting with customers in a whole new way. We harness technologies that can revolutionize companies, careers, and, hopefully, our world.
Salesforce is built on a set of four core values: Trust, Customer Success, Innovation, and Equality. By making technology more accessible, we're helping create a future with greater opportunity and equality for all. This has taken our company to great heights, including being ranked by Fortune as one of the “Most Admired Companies in the World” and one of the “100 Best Companies to Work For” eleven years in a row, and named “Innovator of the Decade” and one of the “World’s Most Innovative Companies” eight years in a row by Forbes.
There are those who choose to work with the best and brightest. And then, there are those who want to do more than just a job. They are the ones improving lives, not only their careers. Having an impact now instead of later. Doing something that’s so much bigger than themselves, an industry, and their company.
We believe everyone can be a Trailblazer. Join Salesforce and discover a future of new opportunities.
- Salesforce.com, Inc Jobs