DevSecOps Engineer- (Salesforce, Mulesoft) Customer Portfolio

DevSecOps Engineer- (Salesforce, Mulesoft) Customer Portfolio

Posted 1 day ago by 1751374272

Apply
Negotiable
Outside
Remote
USA
Apply
Access Controls Amazon Web Services (AWS) AppExchange Application Security AWS Certified Security Specialty AWS Certified Solutions Architect AWS Identity And Access Management (IAM) AWS Lambda AWS Solution Architect Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Cloud Computing Cloud Services Cloud Technology Computer Science Continuous Integration and Continuous Delivery Cyber Security Data Encryption Data Protection Strategy Data Security DevOps DevSecOps Embedding Encryption Identity And Access Management IT Security Architecture Management Market Trend MuleSoft Platform as a Service (PaaS) Salesforce Salesforce Certification Security Engineering Software as a Service (SaaS) Stakeholder Management Threat Modeling Tokenisation Vulnerability Vulnerability Management Workflows

Summary: The role of DevSecOps Engineer focuses on enhancing the security of Salesforce and Mulesoft platforms within a Cybersecurity Application Platform Security Team. The position requires a proactive individual with extensive experience in IT security, specifically in DevSecOps practices, to ensure secure development and deployment processes. The engineer will collaborate with various teams to implement security measures and maintain compliance across cloud-based services. This is a remote position with a duration of over one year.

Key Responsibilities:

  • Secure the Salesforce & Mulesoft Platform: Implement best practices to ensure Salesforce applications are "secure by design" and "secure by default," protecting sensitive data and workflows.
  • Experience leveraging Salesforce out of box tools for security enforcing capabilities including but not limited to access control, encryption, threat modeling, vulnerability management and applying industry best practices.
  • Provide guidelines on usage of AppExchange / Vendor products versus using out of box capabilities with keen eye for cybersecurity risk.
  • Risk Identification & Mitigation: Proactively identify security risks across the Salesforce ecosystem and implement solutions to address vulnerabilities.
  • DevSecOps Enablement: Drive DevSecOps practices within the organization by embedding security into the development lifecycle of Salesforce applications. Secure Mulesoft integrations with applications.
  • Collaboration with Stakeholders: Partner with various customer portfolio teams to influence their roadmaps, ensuring security is a foundational element in their strategies.
  • Data Security & Compliance: Ensure compliance with data protection regulations and implement robust data security measures within Salesforce and integrated systems.
  • Cloud Integration Expertise: Leverage your knowledge of AWS to secure integrations between Salesforce, Mulesoft, AWS and cloud-based services.
  • Continuous Improvement: Stay up-to-date on emerging threats, trends, and technologies in application security to continuously improve our security posture.
  • Communication & Advocacy: Act as a trusted advisor on security matters, effectively communicating complex technical concepts to both technical and non-technical stakeholders.

Key Skills:

  • Bachelor's degree in computer science, Information Security, or a related field (or equivalent experience).
  • 5+ years of experience in IT security, with at least 3 years focused on DevSecOps, DevOps or Security Engineering roles.
  • Strong experience with Salesforce architecture, development, and administration with a focus on platform security (e.g., profiles, roles, permissions, encryption).
  • Demonstrated ability to integrate security practices into CI/CD pipelines for Salesforce applications.
  • Hands-on experience with AWS services (e.g., IAM, S3, Lambda) and securing cloud integrations.
  • Proficiency in data protection techniques such as encryption, tokenization, and access controls.
  • Excellent Communication Skills: Ability to clearly articulate security concepts to diverse audiences, including engineers, product managers, and executives.
  • Collaboration & Influence: Proven ability to work cross-functionally with teams to align on security priorities and influence roadmaps.
  • Relevant certifications in Cybersecurity - SSCP, CISSP, CISM preferred.
  • Salesforce specific certifications like Salesforce Certified Identity and Access Management, Salesforce Certified Associate, Salesforce Platform App Builder.
  • AWS certifications (e.g., AWS Certified Solutions Architect or AWS Certified Security Specialty).
  • Experience with regulatory frameworks like GDPR, CCPA, or HIPAA.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Location: Remote

Length: 1 yr +

Key Responsibilities

We are seeking an experienced and proactive DevSecOps engineer with expertise in Salesforce, Mulesoft platforms to join our Cybersecurity Application Platform Security Team. This role combines expertise in Salesforce, Mulesoft platforms security with a strong foundation in DevSecOps practices to ensure the secure by design , secure by default principles throughout development, deployment, and operation of Salesforce, Mulesoft platforms. The ideal candidate will have hands-on experience with Cybersecurity platforms, with a deep understanding of Salesforce, Mulesoft cloud platforms. This position plays a critical role in assisting customer portfolio teams to secure SaaS, PaaS platforms, maintain compliance and availability.

As a Platform Security Engineer (Salesforce), you will:

  • Secure the Salesforce & Mulesoft Platform: Implement best practices to ensure Salesforce applications are "secure by design" and "secure by default," protecting sensitive data and workflows.
  • Experience leveraging Salesforce out of box tools for security enforcing capabilities including but not limited to access control, encryption, threat modeling, vulnerability management and applying industry best practices.
  • Provide guidelines on usage of AppExchange / Vendor products versus using out of box capabilities with keen eye for cybersecurity risk.
  • Risk Identification & Mitigation: Proactively identify security risks across the Salesforce ecosystem and implement solutions to address vulnerabilities.
  • DevSecOps Enablement: Drive DevSecOps practices within the organization by embedding security into the development lifecycle of Salesforce applications. Secure Mulesoft integrations with applications.
  • Collaboration with Stakeholders: Partner with various customer portfolio teams to influence their roadmaps, ensuring security is a foundational element in their strategies.
  • Data Security & Compliance: Ensure compliance with data protection regulations and implement robust data security measures within Salesforce and integrated systems.
  • Cloud Integration Expertise: Leverage your knowledge of AWS to secure integrations between Salesforce, Mulesoft, AWS and cloud-based services.
  • Continuous Improvement: Stay up-to-date on emerging threats, trends, and technologies in application security to continuously improve our security posture.
  • Communication & Advocacy: Act as a trusted advisor on security matters, effectively communicating complex technical concepts to both technical and non-technical stakeholders.
    Qualifications

We re looking for someone with:

  • Bachelor s degree in computer science, Information Security, or a related field (or equivalent experience).
  • 5+ years of experience in IT security, with at least 3 years focused on DevSecOps, DevOps or Security Engineering roles
  • Strong experience with Salesforce architecture, development, and administration with a focus on platform security (e.g., profiles, roles, permissions, encryption).
  • Demonstrated ability to integrate security practices into CI/CD pipelines for Salesforce applications.
  • Hands-on experience with AWS services (e.g., IAM, S3, Lambda) and securing cloud integrations.
  • Proficiency in data protection techniques such as encryption, tokenization, and access controls.

Soft Skills

  • Excellent Communication Skills: Ability to clearly articulate security concepts to diverse audiences, including engineers, product managers, and executives.
  • Collaboration & Influence: Proven ability to work cross-functionally with teams to align on security priorities and influence roadmaps.

Preferred Technical Skills/ Qualifications:

  • Relevant certifications in Cybersecurity SSCP, CISSP, CISM preferred
  • Salesforce specific certifications like Salesforce Certified Identity and Access Management, Salesforce Certified Associate, Salesforce Platform App Builder.
  • AWS certifications (e.g., AWS Certified Solutions Architect or AWS Certified Security Specialty).
  • Experience with regulatory frameworks like GDPR, CCPA, or HIPAA.

The ideal candidate will be passionate about security, have a proactive mindset, and be able to balance security requirements with business needs. They should be comfortable working in a fast-paced environment and be able to adapt to evolving security threats and technologies

Apply
Similar Jobs
Loading data...