Public Sector Security Compliance Manager

  • Company:
    Salesforce.com, Inc
  • Location:
  • Salary:
    negotiable / month
  • Job type:
    Full-Time
  • Posted:
    24 hours ago
  • Category:
    General

**Job Category**

Products and Technology

**Job Details**

Come join the Global Public Sector Security Compliance team at Salesforce! Grounded in Salesforce’s core values of Trust, Customer Success, Innovation, and Equality, this team works across Salesforce to deliver sustainable, world-class public sector compliance solutions that protect the company and enable the success of our customers and Salesforce.

The Public Sector Security Compliance team is responsible for helping Salesforce achieve and maintain authorizations and certifications that enable Salesforce services to be used by government agencies and their constituents across the world. Specifically, this team is responsible for advisory, readiness, audit, and continuous monitoring programs for public sector programs across the globe. You will be directly involved in shaping compliance programs for one of the fastest growing areas at Salesforce.

In this role, you will work with a team of subject matter experts from multiple disciplines to help define and deliver on the compliance needs of the business. You will be helping Salesforce deliver and support new compliance offerings for our customers. This role is focused on cultivating relationships with government accreditation bodies, developing a strong understanding of government requirements and expectations, delivering expert guidance to Salesforce teams as they work to satisfy government expectations, and supporting ongoing activities required to achieve and maintain government authorizations and certifications. This role requires a knowledge and understanding of Australian compliance requirements such as the Australian Government Information Security Manual. Knowledge of commercial compliance frameworks such as NIST Risk Management Framework, NIST Special Publication 800-53, and ISO 27001/27017/27018 is a plus.

**Responsibilities** **:**

+ Serve as a primary point of contact and cultivate strong working relations with Australian government regulators, accreditation bodies, and authorized auditing firms.

+ Manage the overall execution of compliance programs aimed at achieving and maintaining Australian government accreditations and certifications.

+ Develop, maintain, and deliver Salesforce compliance accreditation materials in support of Australian government accreditations and certifications.

+ Proactively evaluate and advise the business on new and evolving certification programs, requirements, and technologies.

+ Maintain an in-depth understanding of key Australian public sector compliance requirements, standards, guidance, and interpretations.

+ Deliver accurate and actionable compliance guidance and direction to internal stakeholders.

+ Effectively communicate execution status, key accomplishments, and risks that impact Salesforce’s ability to achieve or maintain compliance accreditations or certifications to Salesforce leadership.

+ Build strong cross-functional relationships with business partners to facilitate the development of strong compliance programs that support continuous improvement and operational efficiency.

**Required Skills:**

+ Australian Citizen

+ 10+ years of related compliance and/or security experience

+ Strong working knowledge of risk management frameworks

+ Have worked on security engagement with Australian Public Sector, both at Federal and State level;

+ Good Understanding of Local and Global Information security standards e.g. ISO27001, SOC, PCI DSS, ISMand PSPF;

+ Good Understanding of Australian and Local privacy principles;

+ Detailed understanding of ASD Information Security Manual (ISM);

+ Detailedunderstanding of AGD, Protective Security Policy Framework (PSPF) and information classification schemes;

+ Have worked or directly engaged with IRAP assessment and able to coordinate IRAPactivities and remediation;

+ Able to produce and write configuration guide and documentation when required;

+ Assisting agencies with security assessment, certification and authorisation;

+ Industry engagement such as ACSC, AISA, etc.; and

+ Able to maintain and develop, System Security Plan (SSP), Statement of Applicability (SoA) and risk assessment documentations

+ Agile, proactive, and comfortable working in ambiguous situations

**Accommodations** **-** If you require assistance due to a disability applying for open positions please contact the Salesforce.com Recruiting Department at mailto:applicant_access@salesforce.com .

**Posting Statement**

Salesforce.com and Salesforce.org are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. Salesforce.com and Salesforce.org do not accept unsolicited headhunter and agency resumes. Salesforce.com and Salesforce.org will not pay fees to any third-party agency or company that does not have a signed agreement with Salesforce.com or Salesforce.org.

Founded in 1999, Salesforce is the global leader in Customer Relationship Management (CRM). Companies of every size and industry are using Salesforce to transform their businesses, across sales, service, marketing, commerce, and more by connecting with customers in a whole new way. We harness technologies that can revolutionize companies, careers, and, hopefully, our world.

Salesforce is built on a set of four core values: Trust, Customer Success, Innovation, and Equality. By making technology more accessible, we’re helping create a future with greater opportunity and equality for all. This has taken our company to great heights, including being ranked by Fortune as one of the “Most Admired Companies in the World” and one of the “100 Best Companies to Work For” eleven years in a row, and named “Innovator of the Decade” and one of the “World’s Most Innovative Companies” eight years in a row by Forbes.

There are those who choose to work with the best and brightest. And then, there are those who want to do more than just a job. They are the ones improving lives, not only their careers. Having an impact now instead of later. Doing something that’s so much bigger than themselves, an industry, and their company.

We believe everyone can be a Trailblazer. Join Salesforce and discover a future of new opportunities.