Salesforce.com, Inc Technology Compliance, Manager in San Francisco, California
Technology Compliance, Manager
Salesforce is the global leader in customer relationship management (CRM) software. We pioneered the shift to cloud computing, and today we’re delivering the next generation of social, mobile and cloud technologies that help companies revolutionize the way they sell, service, market and innovate–and become customer companies. We are the fastest growing of the top 10 enterprise software companies, the World’s Most Innovative Company according to Forbes and one of Fortune’s 100 Best Companies to Work For. Our more human, less corporate culture is built around doing work that matters, winning as a team and celebrating success Aloha-style.
The Technology Compliance (TC) team is part of the Risk Security and Compliance organization that reports to the VP of Compliance and the EVP, Chief Compliance Officer. TC serves as a second line of defense function to enable the company to reduce technical compliance risks. This team performs surveillance of the regulatory landscape, tests and monitors the effectiveness of controls, acts as an advisor to the business, and provides independent reporting to management to support Salesforce’s #1 value of trust. This team provides oversight on the work performed by first line of defense functions in Information Security, IT, Engineering and other functions. This team also performs 3rd party vendor assessments.
We are looking to hire a Manager.
A successful candidate will be a strong communicator who excels at explaining regulatory requirements and technology to diverse audiences (across varying technical and business backgrounds) in a way that fosters understanding and ownership. Innovation and creativity are key qualifications, as this role will assist business and technical partners in designing scalable, sustainable approaches to satisfying our regulatory requirements. The ability to build influence and evangelize for new initiatives among stakeholders in multiple organizations will be an essential driver for success, as will an unflappable demeanor and grace under pressure. This role will work with the business at all organizational layers, so it will be important to demonstrate flexibility in approach, communication style and depth of understanding.
As a result of the Company's on-demand application service technologies and "software-as-a-service" business model, the Technology Compliance (TC) team often confronts novel and challenging compliance issues. The team's goal is to support all aspects of the Company's operations while providing a superior compliance and process management experience. The successful candidate must be comfortable working in a very fast-paced and constantly changing environment.
Roles and Responsibilities:
In this role, you are part analyst, technologist, project manager, mentor, and advisor. You have the ability to ramp up quickly into a solid, productive member of the Technology Compliance team. You are organized and have the ability to innovate and automate as we continually look to improve our processes and tools. You will act as a coach and mentor to junior team members, and maintain and grow the program. You create and maintain relationships with business and technical experts through the company who provide expertise in compliance and security requirements. You are a “bridge” builder helping to coordinate and bring together various parts of the organization around a common process through the use of tools, and communications channels.
Support the implementation of the strategic vision for Technical Compliance that are aligned to the company's focus on trust.
Evaluate new and evolving regulations programs. Assess potential regulatory changes for impact to technology compliance objectives.
Translate regulatory requirements to internal business partners and drive alignment on compliance requirements.
Create and maintain the technology compliance risk universe.
Plan, coordinate and execute assessments with process/control owners and stakeholders.
Perform and review controls testing, document results, and provide detailed updates to Compliance management and internal stakeholders.
Proactively identify gaps or weaknesses in existing processes and work to develop solutions.
Educate and train process/control owners so they better understand the regulatory requirements and their responsibilities.
Build strong relationships with business partners (Information Security/Security GRC, Internal IT, Legal, Engineering and Products team) and facilitate continuous improvement aligned with operational processes.
Effectively communicate program execution status, key accomplishments, and risks to management both within the compliance center and to our business partners.
Drive continuous improvement by interfacing with internal business partners and leveraging prior IT audit experience to add value.
Experience and Qualifications:
Strong technical background with a good understanding of information security concepts and practical usage.
Strong written and verbal communication skills; ability to effectively communicate across all levels of the Company.
Analytical thinker with strong organizational skills; attention to detail is a must,
Prior experience in a compliance and regulatory environment related to security and privacy including security compliance standards across industries and geographies.
Ability to work efficiently with minimal oversight/direction as well as part of multiple project teams.
Possess a "whatever it takes to get the job done" mentality (i.e., pick up the phone, stop by a desk, follow-up multiple times).
Flexibility in daily hours (i.e., willingness to work longer hours during peak periods in audit cycles).
7+ years of IT audit,security, or compliance experience, 3+ years leading a team.
BS degree in Management Information Systems, Computer Science, or a related field required.
Certified CISSP, CISA or equivalent preferred.
Salesforce.com and Salesforce.org are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. Salesforce.com and Salesforce.org do not accept unsolicited headhunter and agency resumes. Salesforce.com and Salesforce.org will not pay fees to any third-party agency or company that does not have a signed agreement with Salesforce.com or Salesforce.org.
Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.
Salesforce, the Customer Success Platform and world's #1 CRM, empowers companies to connect with their customers in a whole new way. We are the fastest growing of the top 10 enterprise software companies, the World's Most Innovative Company according to Forbes, and one of Fortune's 100 Best Companies to Work For six years running. The growth, innovation, and Aloha spirit of Salesforce are driven by our incredible employees who thrive on delivering success for our customers while also finding time to give back through our 1/1/1 model, which leverages 1% of our time, equity, and product to improve communities around the world. Salesforce is a team sport, and we play to win. Join us!