To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.

Job Category

Enterprise Technology & Infrastructure

Job Details

About Salesforce

Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn’t a buzzword — it’s a way of life. The world of work as we know it is changing and we're looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce's core values at the heart of it all.

Ready to level-up your career at the company leading workforce transformation in the agentic era? You’re in the right place! Agentforce is the future of AI, and you are the future of Salesforce.

Job Description

Background

As the adoption of Salesforce for critical applications in the enterprise accelerates, so does the requirement for our prospects and customers to learn more about how we keep their data secure. The Trust & Security Advisor will be the interface between Salesforce Security and our customers and prospects to ensure they are successful with their own internal compliance and vendor-management efforts related to Salesforce.

Job functions

Salesforce security and compliance expert for customers and prospects

• Strategic Security Partnership: Deeply understand the business context and strategic challenges related to our core security services to ensure alignment and effective problem-solving.

• Customer Assurance and Trust: Serve as a primary security expert for the field, actively supporting sales and pre-sales teams by managing and providing expert responses to customer risk and security questionnaires and inquiries.

• Executive Trust Building: Build and maintain critical customer trust by managing and hosting in-person security meetings and discussions with customers and prospects, often at an executive level.

• Salesforce Security Story Leadership: Act as the Subject Matter Expert (SME) for the Salesforce Trust story, proficiently articulating and defending our posture across security, architecture, reliability, performance, privacy, and compliance in customer-facing conversations.

• Cross-Functional Security Advocacy: Liaise with Product Management and internal security teams to ensure the latest security features and capabilities are accurately and compellingly represented in all customer-facing documentation and responses.

• Vulnerability Management Oversight: Review, analyze, and interpret security findings from customer-conducted penetration test reports, collaborating with internal teams to oversee and track timely remediation efforts.

• Contractual & Compliance Consultation: Collaborate closely with Legal, Privacy, and other teams to advise on and address customer-specific contractual security and compliance requirements.

• Field Enablement & Positioning: Develop and drive consistent security and compliance enablement for field sales, services, and partner teams, ensuring they are equipped with the latest positioning, messaging, and best practices.

• Product Roadmap Influence: Gather and consolidate strategic customer security and compliance requests, acting as a key liaison to influence the security product roadmap by communicating requirements to Product Management and Engineering teams.

• Security Content Development: Provide input and assist in the development of high-quality compliance documentation and security collateral, including white papers, standard questionnaires, and security best practice guides.

• Service Expertise Development: Develop and maintain SME capabilities for selected Salesforce services, actively collaborating with product teams and global experts to stay updated on the latest security developments and features.

Desired skills and experience

• Bachelor's degree with 10+ years of experience in information security, security architecture, governance, risk and compliance

• Good understanding of the regulatory environment in India as it pertains to to public sector procurement practices, Government e-Marketplace (GeM), Ministry of Electronics and Information Technology (MeiTY) SaaS empanelment requirements

• Familiarity with public sector tendering process

• Experience interpreting the intent of specific customer questions, and mapping them to industry standard controls

• Experience in conducting penetration tests and vulnerability assessments across various platforms, including web applications, networks, and mobile devices

• Experience using industry-standard tools and frameworks such as Metasploit, Burp Suite, Nmap, and Wireshark, along with a strong understanding of common security protocols and attack vectors

Required skills and experience

• Excellent communication and presentation skills

• Good understanding of public cloud platforms like AWS, GCP, Azure.

• Familiarity with one or more security and regulatory frameworks: NIST 800-53, NIST Cybersecurity Framework, PCI-DSS, ISO 27001, ISO 27017, ISO 27018

• Strong understanding of Indian Security and Privacy Regulations including but not limited to India Digital Personal Data Protection Act (DPDPA), RBI IT Outsourcing Guidelines, SEBI CSCRF, etc.

• Proven experience in supporting and managing security incident response activities, coupled with thorough, hands-on knowledge of Security Information and Event Management (SIEM) tools (e.g., Splunk, Google Chronicle, New Relic) and cloud logging services (e.g., AWS CloudTrail). Ability to analyze and interpret complex audit logs to effectively assist customers with their incident assessment and provide expert support.

• Demonstrated expertise in conducting and overseeing application security assessments, vulnerability scanning, and penetration tests. Requires a thorough understanding of secure coding guidelines and deep familiarity with industry-standard risk frameworks, including the OWASP Top 10 and the SANS Top 25 Common Weakness Enumerations.

• Managed one or more compliance certifications/audits, either as an auditor or responder (PCI-DSS, ISO27001, SOC 1, SOC 2)

• Familiarity with public cloud architectures, security practices and compliance documentation

• Experience supporting Public Sector customers across state and federal as well as the financial services industry

• Supported responses to public sector tenders/RFPs/RFIs from a security architecture, risk and compliance perspective

• Strong team player

About Salesforce

Salesforce, the Customer Success Platform and world's #1 CRM, empowers companies to connect with their customers in a whole new way. We are the fastest growing of the top 10 enterprise software companies, the World's Most Innovative Company according to Forbes, and one of Fortune's 100 Best Companies to Work for six years running. The growth, innovation, and Aloha spirit of Salesforce are driven by our incredible employees who thrive on delivering success for our customers while also finding time to give back through our 1/1/1 model, which leverages 1% of our time, equity, and product to improve communities around the world. Salesforce is a team sport, and we play to win. Join us!

Unleash Your Potential

When you join Salesforce, you’ll be limitless in all areas of your life. Our benefits and resources support you to find balance and be your best, and our AI agents accelerate your impact so you can do your best. Together, we’ll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future — but to redefine what’s possible — for yourself, for AI, and the world.

Accommodations

If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.

Posting Statement

Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that’s inclusive, and free from discrimination. Know your rights: workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications – without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.