Lead Information Security Analyst- Salesforce

Lead Information Security Analyst with deep expertise in Salesforce (SFDC) security to help safeguard enterprise systems and support secure digital transformation.

• Represent the Corporate Security team in the selection and implementation of large ERP type packages, most specifically SFDC but others as well.
• Train and coordinate with systems application owners, data custodians, technical leads, and business impact analysts on security standards, guidelines, and vendor risk management of the systems within the organization and sub organizations.
• Build relationships with Dynatrace Business Systems application teams.
• Create, conduct, and report on security audits and assessments for all systems applications (custom, SaaS and 3rd party applications).
• Provide guidance and support over the teams and ensure they can meet risk management requirements and industry control frameworks for their systems / applications.
• Contribute to the development and implementation of security policies, procedures, and controls.
• Serve as a bridge between the Dynatrace business units and the Security Risk Management organization to promote and facilitate the adaptation and involvement with the Dynatrace Risk Management Framework.

• Technical skills : Experience with Salesforce (SFDC) implementations and integrations.
• Experience performing secure application configurations of other large ERP type Software packages.
• Knowledge of configuration and integration security (API, etc.) for SaaS solutions.
• Understanding Secure Architecture Design (Zero Trust, Threat Modeling).
• Understanding of Application Security (OWASP Top 10).
• Experience in programming languages and technologies used in web development.
• Proficiency with AGILE techniques, preferably tools : Atlassian / Jira.
• Proficiency in using security assessment tools and techniques.
• Understanding of legal and regulatory obligations related to information security.
• Experience working with Governance, Risk and Compliance (GRC) tools (preferred : OneTrust).
• Risk Management Skills : Identifying potential security vulnerabilities, risks and their potential impact to the organization.
• Risk analysis and mitigation of potential vulnerabilities.
• Applying risk management frameworks and methodologies.
• Performing data classification.
• Conducting security risk reviews.
• Control framework implementation, such as NIST 800-53, ISO 27001, FedRAMP and NIST CSF.
• Knowledge of penetration tests on web applications and tools.
• Maintaining systems / applications records status for reporting and alerts.
• Providing advice and guidance in implementing IT security policies and procedures to reduce risk.
• Stay current with emerging threats, vulnerabilities, and security technologies.

• A one-product software company creating real value for the largest enterprises and millions of end customers globally, striving for a world where software works perfectly.
• Working with the latest technologies and at the forefront of innovation in tech on scale; opportunities to collaborate with other areas such as marketing, design, or research.
• A team that thinks outside the box, welcomes unconventional ideas, and pushes boundaries.
• An environment that fosters innovation, enables creative collaboration, and allows you to grow.
• A globally unique and tailor-made career development program recognizing your potential, promoting your strengths, and supporting you in achieving your career goals.
• A truly international mindset with Dynatrace employees from different countries and cultures, and English as the corporate language.
• A culture shaped by the diverse personalities, expertise, and backgrounds of our global team.

Review the Dynatrace privacy policy here :

• Mid-Senior level

• Full-time

• Information Technology

• Software Development

J-18808-Ljbffr