Lead Information Security Analyst -Salesforce

Your role at Dynatrace

We're looking for a Lead Information Security Analyst with deep expertise in Salesforce (SFDC) security to help safeguard our enterprise systems and support secure digital transformation.

Dynatrace exists to make the world's software work perfectly. Our unified software intelligence platform combines broad and deep observability and continuous runtime application security with the most advanced AIOps to provide answers and intelligent automation from data at an enormous scale. This enables innovators to modernize and automate cloud operations, deliver software faster and more securely, and ensure flawless digital experiences. That is why the world's largest organizations trust Dynatrace to accelerate digital transformation.

We're an equal opportunity employer and embrace all applicants. Dynatrace wants YOU-your diverse background, talents, values, ideas, and expertise. These qualities are what make our global team stronger and more seasoned. We're fueled by the diversity of our talented employees.

The key responsibilities of this role include:

• Represent the Corporate Security team in the selection and implementation of large ERP type packages, most specifically SFDC but others as well.
• Train and coordinate with systems application owners, data custodians, technical leads, and business impact analysts on security standards, guidelines, and vendor risk management of the systems within the organization and sub-organizations.
• Build relationships with Dynatrace Business Systems application teams.
• Create, conduct, and report on security audits and assessments for all systems applications (custom, SaaS, and 3rd Party applications).
• Provide guidance and support over the teams and ensure they can meet risk management requirements and industry control frameworks for their systems/applications.
• Contribute to the development and implementation of security policies, procedures, and controls.
• Serve as a bridge between the Dynatrace business units and the Security Risk Management organization to promote and facilitate the adaptation and involvement with the Dynatrace Risk Management Framework.

What will help you succeed

Technical skills:

• Experience with Salesforce (SFDC) implementations and integrations.
• Experience performing secure application configurations of other large ERP type Software packages.
• Knowledge of configuration and integration security (API, etc.) for SaaS solutions.
• Understanding Secure Architecture Design (Zero Trust, Threat Modeling).
• Understanding of Application Security (OWASP Top 10).
• Experience in programming languages and technologies used in web development.
• Proficiency with AGILE techniques, preferably tools: Atlassian/Jira.
• Proficiency in using security assessment tools and techniques.
• Understanding of legal and regulatory obligations related to information security.
• Experience working with Governance, Risk and Compliance (GRC) tools (preferred: OneTrust).

Risk Management Skills:

• Identifying potential security vulnerabilities, risks, and their potential impact to the organization.
• Risk analysis and mitigation of potential vulnerabilities.
• Applying risk management frameworks and methodologies.
• Performing data classification.
• Conducting security risk reviews.
• Control framework implementation, such as NIST 800-53, ISO 27001, Fed Ramp, and NIST CSF.
• Knowledge of penetration tests on web applications and tools.
• Maintaining systems/applications records status for reporting and alerts.
• Providing advice and guidance in implementing IT security policies and procedures to reduce risk.
• Stay current with emerging threats, vulnerabilities, and security technologies.

Why you will love being a Dynatracer

• A one-product software company creating real value for the largest enterprises and millions of end customers globally, striving for a world where software works perfectly.
• Working with the latest technologies and at the forefront of innovation in tech on scale; but also, in other areas like marketing, design, or research.
• A team that thinks outside the box, welcomes unconventional ideas, and pushes boundaries.
• An environment that fosters innovation, enables creative collaboration, and allows you to grow.
• A globally unique and tailor-made career development program recognizing your potential, promoting your strengths, and supporting you in achieving your career goals.
• A truly international mindset with Dynatracers from different countries & cultures all over the world, and English as the corporate language that connects us all.
• A culture that is being shaped by the diverse personalities, expertise, and backgrounds of our global team.