1. Home
  2. Senior Software Developer, Infrastructure Security (Continuous Compliance Platform)
Expires soon
Salesforce

Senior Software Developer, Infrastructure Security (Continuous Compliance Platform)

  • Hyderabad, India
  • Legal
Apply Now

Job description

Job Category

Products and Technology

Job Details

Salesforce is world’s #1 CRM business and Trust is our #1 value. We commit to Trust by ensuring all our platforms implement the appropriate levels of security, compliance and privacy controls.

The Security team is looking for an experienced software developer to design and build a platform-as-a-service (PaaS) to provide rich visibility into the compliance and risk posture of all systems in our datacenters and clouds. This PaaS must be highly scalable and available, capable of collecting information from millions of hardware and software assets, and provide our security teams with the ability to query and act on compliance-related events. You will work directly with our governance and compliance security teams to provide rich management and monitoring capabilities, while building a state-of-the-art platform for data aggregation and analytics covering a diverse collection of assets (e.g., servers, VMs, containers, network devices, applications).

This is a great opportunity for ambitious engineers who want technical growth in distributed systems development, big data collection and processing, as well as security. Your talent will find significant outreach and business impact, contributing to the CISO’s security reportings.

Responsibilities

· 
Architect and implement software platforms for continuous assessment of security risk and policy compliance across Salesforce software and hardware assets

· 
Implement platforms and workflows to deliver automated status reporting on data governance, policy compliance and security risks across all Salesforce clouds

· 
Build monitoring and engagement services to allow security engineers to act on the collected compliance data and take remediation actions

· 
Advance and operate these security assessment platforms in a full DevOps model

· 
Operate in an Agile development environment, including participating in daily scrums

· 
Support the team’s engineering excellence by performing code reviews and mentoring junior team members

Required Skills/Experience

· 
Industry experience . 6+ years, including:

· 
3+ years experience in SaaS, PaaS or IaaS software development

· 
3+ years experience in a high-availability 24/7 environment (cloud platforms are a plus)

· 
Education . M.Sc/M.Eng in Computer Science/Engineering or B.A/B.Sc. in same disciplines with equivalent years of experience

· 
Distributed systems . Expertise in designing, implementing and operated distributed systems architectures and concepts, including the following:

· 
High-performance, high-availability (99.999%) and self-recoverable systems

· 
Big data collection and processing pipelines (e.g., Lambda architecture, Kafka, RabbitMQ, ELK)

· 
Storage solutions (e.g., Cassandra, MongoDB, Hadoop, Redis, Zookeeper, MySQL)

· 
RPC frameworks (e.g., Protobuf/gRPC, Thrift, Bond)

· 
Consensus and consistency frameworks (e.g., Paxos, Raft, eventual consistency)

· 
Control, orchestration and automation platforms

· 
Programming . Proficiency in object-oriented and multi-threaded programming in at least one of the following languages: Golang, Java, C++, Python, C#

· 
Software design . Demonstrated expertise in applying systems patterns (e.g., Client-server, N-tier, Master/Slave, MVC) and API constructions (e.g., Swagger, OpenAPI)

· 
Operating systems . Development and software management on Linux (e.g., CentOS, RHEL) and Windows

· 
Security . Strong knowledge in fundamentals: authentication/authorization frameworks (e.g., SSO, SAML, Oauth), secure transport (e.g., SSL, TLS), identity management (e.g., certificates, PKI)

· 
DevOps mindset and strong ownership over owned code (test, monitor, deploy, maintain)

· 
Communication . Excellent oral and written communication skills

· 
Team . Ability to value team success beyond personal contributions

Desired Skills/Experience

· 
Big data . Hands-on experience in building big data collection, processing and visualisation platforms using common technologies (e.g., Lambda architecture, Kafka, RabbitMQ, ELK)

· 
Virtualization . Hands-on experience with container technologies (e.g., Docker, Kubernetes) and virtualization technologies (i.e., OpenStack)

· 
Proven track of building large-scale PaaS or IaaS systems, especially for public cloud providers (e.g., AWS, Azure, GCP)

· 
Deep understanding of security controls at the systems, devices, and application level

· 
Understanding of security compliance standards and regulations (e.g., ISO 27001, PCI, SOC, FISMA, FedRAMP, HIPAA, GDPR)

· 
Experience working with  information security, IT audit, security risk and policy compliance

Posting Statement

Salesforce.com and Salesforce.org are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. Salesforce.com and Salesforce.org do not accept unsolicited headhunter and agency resumes. Salesforce.com and Salesforce.org will not pay fees to any third-party agency or company that does not have a signed agreement with Salesforce.com or Salesforce.org.

Make every future a success.
  • Job directory
  • Business directory
    •