This job has expired, please see additional jobs below
Director, Vulnerability Management
Salesforce
San Francisco, CA, United States
Job Details - this job has expired, please see similar jobs below
SalesForce's Trust Assessments group is looking for a forward thinking vulnerability and vulnerability automation expert that loves to learn, has passion for security, and can lead a team to execute against the mission relentlessly.
You will lead a team of expert engineers that are driven to uncover vulnerabilities, and automate everything in their environment using their strong network, systems, software engineering and security skill sets.
To be right for this role, your planning and execution skills are consistent and on time. You inspire, support, and empower your team to deliver while maintaining a healthy work life balance. If you are accepted for this position, you will collaborate across teams, and with leaders to ensure that your efforts align with the greater security objectives of the organization. Your team will demand that you perform as an A player and you will demand the same of your team. You will work hard and you will play hard. You will enjoy the freedom to work with limited barriers in a results-oriented environment.
Responsibilities:
Manage, grow and develop a team of vulnerability management software engineers
Prioritize, plan and deliver software tools for internal use in vulnerability management and in penetration testing
Oversee and manage the evaluation and prioritization of vulnerabilities in infrastructure and software environment
Work with technical teams to facilitate removal of vulnerabilities using consistent and rapid processes that you design
Minimum Qualifications:
• 7+ years of people management in a security engineering environment
• Demonstrated knowledge in the areas of offensive security such as penetration testing in network and application environments
• Demonstrated knowledge of defensive security
• BS/MS degree, or relevant work experience
• Strong knowledge of computer and network security
• Proficiency as developer using Java OR Python OR Ruby OR Scala Or similar
• Passion for security with a hacker mind set
• Demonstrated knowledge of relevant scanning tools
• Ability and willingness to quickly learn new technical skills
• Past proven ability to execute against plan in a similar environment
• An ability to inspire and motivate a team
• Experience working with technical teams on vulnerability remediation
Desired Skills and Credentials:
• Ability to inspire a team to execute
• Experience with port scanners (nmap, zmap, etc).
• Extensive knowledge of the OWASP Top 10 and CWE Top 25
• Experience in exploiting web and web services security vulnerabilities including cross-site scripting, CSRF, SQL injection, XML/SOAP and API attacks
• Information security certifications, GPEN, OSCP, OSCE, OSWE, CEH, CISSP
Salesforce, the Customer Success Platform and world's #1 CRM, empowers companies to connect with their customers in a whole new way. The company was founded on three disruptive ideas: a new technology model in cloud computing, a pay-as-you-go business model, and a new integrated corporate philanthropy model. These founding principles have taken our company to great heights, including being named one of Forbes's "World's Most Innovative Company" five years in a row and one of Fortune's "100 Best Companies to Work For" eight years in a row. We are the fastest growing of the top 10 enterprise software companies, and this level of growth equals incredible opportunities to grow a career at Salesforce. Together, with our whole Ohana (Hawaiian for "family") made up of our employees, customers, partners and communities, we are working to improve the state of the world.
Keywords: developer, ruby, sinatra, database, security, vulnerability, penetration test, Qualys, Qualysguard, Nessus, Tenable, Tripwire, Invincea, nCircle, 0-Day, Pentest, nexpose