Cloud Security Architect

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.

Job Category

Software Engineering

Job Details

About Salesforce

Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn't a buzzword - it's a way of life. The world of work as we know it is changing and we're looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce's core values at the heart of it all.

Ready to level-up your career at the company leading workforce transformation in the agentic era? You're in the right place! Agentforce is the future of AI, and you are the future of Salesforce.

A key leader, the Cloud Security Architect will drive the security related efforts related to design, implementation, and maintenance of secure cloud environments leveraging cloud-native services and security tooling for proactive risk reduction on GCP and other environments. This role requires deep expertise in public cloud security principles, best practices, and cutting-edge technologies to define security baselines, enforce policies, and embed security into public cloud architectures. The architect will champion secure adoption, ensure parity across cloud environments, proactively mitigate risks, and serve as a subject matter expert for partners and stakeholders on cloud-native security.

Responsibilities :

Security Solution Architecture :

Drive the architecture of robust and scalable security solutions for public cloud environments, utilizing guardrails, policies, and industry-leading practices.

Security Baselines and Standards :

Define and maintain comprehensive security baseline requirements, policies, and standards for public cloud platforms (e.g., AWS, Azure, GCP).

Security Control Implementation and Automation :

Lead the design, implementation, and automation of security controls in public cloud environments, including :

IAM (Identity and Access Management)

Detection and Monitoring

CI / CD Security

Configuration Management

Container Security

Network Security

Data Protection

Utilize Infrastructure as Code (IaC) tools like Terraform and container orchestration platforms like Kubernetes to automate security configurations and ensure infrastructure is secure by design.

Cross-Functional Collaboration :

Collaborate effectively with cross-functional teams, such as Product Engineering and internal Security teams (CSOC, Enterprise Security, Compliance, others), to seamlessly integrate security solutions, tooling, and risk mitigation strategies into the architecture of public cloud environments.

Threat Landscape and Trend Analysis :

Continuously assess emerging trends in the cybersecurity landscape, including new threats, vulnerabilities, and technologies, to proactively evolve security policies, practices, and architectural patterns.

Cloud Security Vision and Strategy :

Partner with key stakeholders to develop, communicate, and drive a converged cloud security vision and strategy across all public cloud environments, ensuring security parity and a consistent security posture.

Architecture Reviews and Guidance :

Conduct periodic security architecture reviews to identify potential vulnerabilities, assess the effectiveness of existing controls, and provide actionable recommendations for improvement.

Serve as a subject matter expert, providing expert guidance and consultation to partners and stakeholders on secure architecture patterns and best practices for developing and deploying cloud-native applications and services.

Secure Architecture Adoption and Advocacy :

Drive the adoption of secure cloud architecture principles, patterns, and services across the organization, promoting a "security by design" mindset.

Proactive Risk Management :

Partner closely with the Security Assessments team to proactively identify, prioritize, and mitigate security risks across public cloud environments, contributing to a continuous risk reduction program.

Qualifications :

8-12 years of progressive experience in cloud security architecture and engineering.

Deep and demonstrable understanding of public cloud platforms (e.g., GCP, AWS,) especially GCP and their native security services.

Proven experience in designing, implementing, and automating security controls in cloud environments, including IAM, detection and monitoring, CI / CD security, configuration management, container security, and ideally using IaC tools.

Excellent communication, collaboration, and interpersonal skills, with the ability to effectively communicate complex technical concepts to diverse audiences, including 1 technical and non-technical stakeholders, partners, and leadership.

Strong analytical and problem-solving skills, with a proactive and strategic approach to identifying and mitigating security risks in cloud environments.

Experience with conducting security architecture reviews and providing actionable recommendations.

Familiarity with cloud-native application architectures and security considerations.

Strong knowledge of security frameworks (e.g., NIST, CIS, ISO 27001), compliance regulations, and security best practices for cloud environments.

Preferred Qualifications :

Relevant certifications such as Professional Google Cloud Engineer, Cloud Architect, Cloud Security Engineer, CCSP, CISSP or equivalent.

Proven hands-on experience with Google Cloud Native Security Services such as Chronicle, Cloud Armor, Cloud Firewall, IDS, Certificate Manager, KMS, Secret Manager, DLP

Advanced with scripting and automation languages (e.g., Python, Bash).

• LI-Y

Unleash Your Potential

When you join Salesforce, you'll be limitless in all areas of your life. Our benefits and resources support you to find balance and be your best , and our AI agents accelerate your impact so you can do your best . Together, we'll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future - but to redefine what's possible - for yourself, for AI, and the world.

Accommodations

If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.

Posting Statement

Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that's inclusive, and free from discrimination. Know your rights : workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.

In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including : time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link : to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records. For Washington-based roles, the base salary hiring range for this position is $230,700 to $351,800. For California-based roles, the base salary hiring range for this position is $251,900 to $384,100.