Salesforce.com, Inc Principal/Lead Identity and Access Management Engineer in San Francisco, California

Job CategoryProducts and Technology

Job Details

Job Details

Principal/Lead Identity and Access Management Engineer

As a Principal/Lead Identity and Access Management Engineer you will report to the Senior Director of Security Operations and work with other systems engineers, developers and technical program managers to architect, integrate, deploy and operate IAM solutions end-to-end across disparate environments within Salesforce. Your solutions will primarily benefit the technical community inside the company but may also be used as a model for customers with similar identity challenges.

Responsibilities:

  • Participate in design and architecture of new IAM services

  • Elaborate and help execute the test and deployment of new IAM services

  • Generate technical specifications/documentation

  • Act as a mentor, technical lead and escalation point for other engineers

  • Be a trusted advisor for the Security Leadership Team

Required Skills/Experience:

  • BS/BEng/BTech degree, or equivalent work experience

  • 10+ years experience deploying and operating IAM infrastructure at scale

  • Strong systems engineering, scripting skills (Python, Golang, OOP languages)

  • Experience designing cloud scale solutions, familiarity with reference architectures and best practices

  • Experience designing implementing of security controls (MFA, Conditional Access) and reference frameworks (NIST, CIS, etc.)

  • Strong knowledge of operating systems and network security fundamentals

  • Master of the "rare art" of troubleshooting

  • Strong verbal and written communication skills

  • Experience in highly available and distributed environments

  • Proficiency managing code through source control, CI/CD pipelines

Desired Skills/Experience:

  • Industry recognized certifications (RedHat RHCA, etc.)

  • Security specific certifications (CISSP, CISM, etc.)

  • Working experience with Commercial (Ping Identity, BoKS Server Control, etc.), and Open Source (OpenLDAP, OpenDJ, etc.) enterprise IAM platforms. Knowledge of Active Directory is a plus

  • Deep understanding on legacy AuthN/AuthZ architectures and specifications (Kerberos, LDAP, Radius, Tacacs+, etc.)

  • Deep understanding of modern Web SSO AuthN/AuthZ (Oauth, OpenID, SAML, WS-Fed, etc.)

  • Proven experience with service offerings from major cloud providers (AWS, GCP, etc.), and on-premise/cloud hybrid architectures.

Company Overview:

Salesforce, the Customer Success Platform and world's #1 CRM, empowers companies to connect with their customers in a whole new way. The company was founded on three disruptive ideas: a new technology model in cloud computing, a pay-as-you-go business model, and a new integrated corporate philanthropy model. These founding principles have taken our company to great heights, including being named one of Forbes’s “World’s Most Innovative Company” five years in a row and one of Fortune’s “100 Best Companies to Work For” eight years in a row. We are the fastest growing of the top 10 enterprise software companies, and this level of growth equals incredible opportunities to grow a career at Salesforce. Together, with our whole Ohana (Hawaiian for "family") made up of our employees, customers, partners, and communities, we are working to improve the state of the world!

Posting Statement

Salesforce.com and Salesforce.org are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. Salesforce.com and Salesforce.org do not accept unsolicited headhunter and agency resumes. Salesforce.com and Salesforce.org will not pay fees to any third-party agency or company that does not have a signed agreement with Salesforce.com or Salesforce.org.

Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.

Salesforce, the Customer Success Platform and world's #1 CRM, empowers companies to connect with their customers in a whole new way. We are the fastest growing of the top 10 enterprise software companies, the World's Most Innovative Company according to Forbes, and one of Fortune's 100 Best Companies to Work For six years running. The growth, innovation, and Aloha spirit of Salesforce are driven by our incredible employees who thrive on delivering success for our customers while also finding time to give back through our 1/1/1 model, which leverages 1% of our time, equity, and product to improve communities around the world. Salesforce is a team sport, and we play to win. Join us!