Experience Inc. Jobs

Job Information

Salesforce.com, Inc GRC Director, Risk Assessment Leader, Security & Compliance Senior Manager, Security Risk Director, GRC Principal Program Manager in San Francisco, California

Job CategoryAudit

Job Details

GRC TEAM OVERVIEWSalesforce Security, Governance, Risk, and Compliance (GRC) Team is responsible for enterprise wide GRC ensuring Salesforce leadership has the information needed to make strategic risk-based decisions enabling the achievement of Salesforce business objectives globally. Our team builds and deploys common governance, risk, and compliance processes, controls, conducts audits, and ensures that technologies and business operations structured and configured for data protection and compliance.Leveling: If you fit that profile, we will work with you to ensure that your job title/level is aligned to your skill set.

Locations: San Francisco, CA(Other locations could be considered, Bellevue, WA, Herndon, VA, Burlington, MA or Indianapolis, IN)Open Roles: Senior Manager, Director and Senior Director levels based on GRC experience

Trust is the #1 company value at Salesforce. Salesforce.com is the pioneer in cloud computing and has one of the best Information Security teams in the world. Growing this part of the business is a top priority. Our Information Security teams work hand in hand with the business to ensure the highest security around all of our infrastructure and applications.


The Salesforce Security, Governance, Risk, and Compliance (GRC) Team is anchored in the principles of Transparency, Inclusiveness, Accountability and Equality. We build, operate, and continuously improve a best in class, organizationally integrated and business value driven, program commensurate with the most secure enterprise cloud.


The Security, Governance, Risk, and Compliance (GRC) Team is dedicated to enabling informed decisions in support of Salesforce strategic objectives, enhancing visibility into security risks across Salesforce, driving prioritized investment decisions, and ensuring internal and external obligations are integrated in the Global GRC process.


Plans, implements, and manages risk management program capabilities for all Salesforce security risks

Provides leadership (not direct people management) to individual contributors building risk capabilities and build program oversight

Responsible for assuring process effectiveness, measurement and optimization

Creates and maintains security risk management standards, frameworks, processes, procedures, and other program documentation

Develops and executes methods to identify and include relevant internal and external risk data to enhance objective, data driven risk models

Monitors and analyzes security risks and metrics to identify themes, trends, correlations, and variances

Prepares reports and presentations for multiple audiences with varying business objectives

Communicates risk intelligence in a way that drives business decision-making

Supports Governance, Risk & Compliance (GRC) tools implementation and utilization, including quantitative models

Coordinates with other teams and departments, including Enterprise Risk Management (ERM), to ensure alignment and share best practices

Provides risk management subject matter expertise for members of the Security organization

Identifies improvement opportunities and provide feedback to senior team members and management

Required Skills:

Requires relevant bachelor's degree, Master’s preferred

8+ years of related experience

Significant knowledge and experience in all facets of risk management, able to articulate how it applies to our business (security domain highly preferred)

Understanding of qualitative and quantitative risk modeling

Knowledge of industry standard risk management standards (e.g., ISO, NIST, COBIT)

Experience with data and analytics

Experience creating and utilizing KPIs and KRIs

Engaging and managing consulting partners for large scale projects

Knowledge of enterprise security relevant legal/regulatory requirements and industry trends

Experience with strategy development and organizational leadership

Proven ability to engage with and align senior executives

Ability to motivate people, instill accountability, and achieve results

Experience with dashboards and data visualization tools

Experience with GRC tools

Agile, proactive, comfortable working with ambiguous specifications and can prioritize on the fly

Thrives in a fast-paced, collaborative environment, using research and analysis to support recommendations and opinions

Excellent interpersonal and relationship skills

Excellent presentation and communication skills

Industry certifications in security, technology, and/or business management are a plus (e,g, CRISC, CISSP, CCIE, CISM, CISA)

Knowledge of cloud computing

Detail oriented with an eye for quality

Salesforce, the Customer Success Platform and world's #1 CRM, empowers companies to connect with their customers in a whole new way. We are the fastest growing of the top 10 enterprise software companies, the World’s Most Innovative Company according to Forbes, and one of Fortune’s 100 Best Companies to Work For six years running. The growth, innovation, and Aloha spirit of Salesforce are driven by our incredible employees who thrive on delivering success for our customers while also finding time to give back through our 1/1/1 model, which leverages 1% of our time, equity, and product to improve communities around the world. Salesforce is a team sport, and we play to win. Join us!

Posting Statement

Salesforce.com and Salesforce.org are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. Salesforce.com and Salesforce.org do not accept unsolicited headhunter and agency resumes. Salesforce.com and Salesforce.org will not pay fees to any third-party agency or company that does not have a signed agreement with Salesforce.com or Salesforce.org.

Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.

Founded in 1999, Salesforce is the global leader in Customer Relationship Management (CRM). Companies of every size and industry are using Salesforce to transform their businesses, across sales, service, marketing, commerce, and more by connecting with customers in a whole new way. We harness technologies that can revolutionize companies, careers, and, hopefully, our world.

Salesforce is built on a set of four core values: Trust, Customer Success, Innovation, and Equality. By making technology more accessible, we're helping create a future with greater opportunity and equality for all. This has taken our company to great heights, including being ranked by Fortune as one of the “Most Admired Companies in the World” and one of the “100 Best Companies to Work For” eleven years in a row, and named “Innovator of the Decade” and one of the “World’s Most Innovative Companies” eight years in a row by Forbes.

There are those who choose to work with the best and brightest. And then, there are those who want to do more than just a job. They are the ones improving lives, not only their careers. Having an impact now instead of later. Doing something that’s so much bigger than themselves, an industry, and their company.

We believe everyone can be a Trailblazer. Join Salesforce and discover a future of new opportunities.