As a Director of Penetration Testing and Security Assessments at Salesforce.com and member of our red team, you will lead the technical strategy, develop the members of this team, uncover vulnerabilities in our infrastructure, software and processes and help facilitate removal of these vulnerabilities. You will perform penetration tests, information security assessments, and application security assessments on a wide variety of infrastructure and software within our environment. You will work with talented technical experts from various Salesforce.com teams on a regular basis. Top contributors will enjoy the freedom to work with limited barriers and the experience of working with other talented and passionate information security professionals.
Deliver and execute a compelling technical strategy for the red team
Build, grow, develop and oversee the critical security engineering programs and team members
Perform penetration tests and vulnerability assessments on targets.
Facilitate removal or remediation of vulnerabilities.
Contribute to our penetration testing program and toolkit.
Research new threats, attack vectors and risk.
BS/MS degree, or relevant work experience
Infrastructure and application level penetration testing experience
Expert knowledge in computer and network security
Extensive knowledge of the OWASP Top 10 and CWE Top 25
Experience in exploiting web and web services security vulnerabilities including cross-site scripting, cross site request forgery, SQL injection, DoS attacks, XML/SOAP, API attacks, and more.
Desired Skills and Credentials:
Offensive attack hacker mindset
Bug bounty awards
Experience with the latest and greatest penetration testing tools
Experience in software development, Java, PHP, Perl, Python, Ruby, etc....
Information security certifications, GPEN, OSCP, OSCE, OSWE, CEH, CISSP
Ability to self motivate when given strategic goals.