Program Manager, Business Technology Risk & Compliance

Salesforce.Com, Inc. San Francisco , CA 94118

Posted 2 months ago

Job CategoryProducts and Technology

Job Details

Title: BT Risk and Compliance Program Manager

Location: SF is looking to hire a Program Manager/Analyst to join the Business Technology(BT) team. A successful candidate will have excellent collaboration and communication skills. The role will manage the vulnerability management program within BT along with assisting BT teams in fulfilling compliance requirements. Accomplishment will be measured by improvement to BT's overall risk posture, compliance with various regulations, and providing management visibility to risk.

Because of the company's business model, we are often challenged with unique, cloud centric, interesting security and compliance requests. Our goal is to improve BT's overall compliance posture, by reducing security risk, surpassing any compliance requirements and challenges.

We are looking for relevant work experience, appropriate skill sets, and a mindset that matches that of our department and its culture. This resource will report to BT Risk & Compliance.

Role Responsibilities:

  • Conducts review of threats and vulnerabilities, determines deviations from acceptable configurations or enterprise or local policy, assesses the level of risk, and develops and/or recommends and operationalizes appropriate mitigation countermeasures.

  • Creates policies and procedures to help scale the vulnerability management program to adapt to a dynamic environment

  • Manages vulnerability case queue for Business Technology and works with business partners to ensure timely remediation of vulnerabilities

  • Partners with Salesforce security team to ensure that Business Technology is actively meeting the security and compliance goals set for Salesforce.

  • Supports the documentation, and validation of processes necessary to assure that associates, business technology systems and business processes meet the organization's information assurance, security, privacy, and compliance requirements.

  • Ensures appropriate monitoring of compliance to applicable security policies and audit requirements are in place and functioning, report on their operational effectiveness.

  • Escalates non-compliance issues and risks to BT Risk & Compliance management; follows up on issues with management and IT leadership to ensure carry through of resolutions.

  • Evaluates new security and compliance requirements and determines the impact to existing Business Technology processes and policies

  • Serves as a role model and an effective partner with stakeholders within and outside of Business Technology.

Qualifications and Experiences:

  • 4-6 years of security\risk experience or IT operations experience with supporting certifications (e.g., CISA, CRISC, CISSP).

  • Bachelor of Science degree in Management Information Systems, Computer Science, or a related technical field required.

  • Strong written and verbal communication skills; ability to effectively communicate across all levels of the Company; attention to detail.

  • Vulnerability Management experience preferred.

  • Past experience administering client and server level operating systems a plus (e.g., Windows, Mac OS, Linux)

  • Experience developing, championing, and managing internal compliance programs a plus.

  • Prior experience in a compliance and/or regulatory environment related to security and privacy including security compliance standards across industries and geographies such as FedRAMP, PCI, ISO 27001, HIPAA, SOC, SOX, a plus.

Posting Statement and are Equal Employment Opportunity and Affirmative Action Employers. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. and do not accept unsolicited headhunter and agency resumes. and will not pay fees to any third-party agency or company that does not have a signed agreement with or

Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.

upload resume icon
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Adv Risk Compliance Analytics Products & Services Manager


Posted 2 days ago

VIEW JOBS 1/15/2019 12:00:00 AM 2019-04-15T00:00 A career in our Analytics Data Assurance practice, within Risk Assurance Compliance and Analytics services, will provide you with the opportunity to assist clients in developing analytics and technology solutions that help them detect, monitor, and predict risk. Using advanced technology, we're able to focus on establishing the right controls, processes and structures for our clients to ensure that decisions are based on accurate information and assure that information provided to third parties is accurate, complete, and can be trusted.Our team helps business leaders navigate evolving risks by staying ahead of uncertainty by developing smart infrastructure and harnessing data through analytics. As a part of the team, you'll help us develop cost effective technology solutions that focus on delivering relevant, actionable intelligence that executives need to understand operations and manage critical risks. Responsibilities As a Manager, you'll work as part of a team of problem solvers with extensive consulting and industry experience, helping our clients solve their complex business issues from strategy to execution. Specific responsibilities include but are not limited to: * Proactively assist in the management of a portfolio of clients, while reporting to Senior Managers and above * Be involved in the financial management of clients * Be actively involved in business development activities to help identify and research opportunities on new/existing clients * Contribute to the development of your own and team's technical acumen * Develop strategies to solve complex technical challenges * Assist in the management and delivering of large projects * Train, coach, and supervise staff * Keep up to date with local and national business and economic issues * Continue to develop internal relationships and your PwC brand Job Requirements and Preferences: Basic Qualifications: Minimum Degree Required: Bachelor Degree Required Fields of Study: Accounting, Management Information Systems, Management Information Systems & Accounting, Statistics, Mathematical Statistics, Mathematics, Engineering Minimum Years of Experience: 5 year(s) of consulting, data analysis, compliance, internal audit or risk experience or military/intelligence community leadership experience. Preferred Qualifications: Degree Preferred: Master of Business Administration Preferred Knowledge/Skills: Demonstrates extensive knowledge and/or a proven record of success as a team leader in the following areas: * Operating in a professional services firm or large enterprise as a consultant, auditor or business process specialist; or the equivalent of industry or military/intelligence community experience; * Identifying and obtaining new service opportunities and taking the opportunities through the sales cycle, including the following: defining resource requirements, project workflow, budgets, and billing and collection; * Identifying and addressing client needs, including developing and sustaining client relationships; * Leading of teams to generate a vision, establish direction and motivate members, create an atmosphere of trust, leverage diverse views, coach staff, and encourage improvement and innovation; * Performing on project teams and providing deliverables involving multiphase data analysis related to the evaluation of compliance and risk issues; - Identifying risk requirements and data sources, as well as understanding how to create decision-oriented deliverables; * Evaluating business processes, compliance and risk, the leadership to exercise oversight over projects involving database concepts, including building relationships between data sources and tables, grouping data, and producing cohesive analyses; * Leveraging data manipulation and analysis technologies inclusive of Microsoft SQL Server, SQL, Oracle, and/or DB2; * Understanding of IT architecture and solution development through the use of R, Python, Java, C# or other programming languages; and, * Understanding of compliance systems and technology such as Spotfire, Tableau, Microsoft BI, and Qlikview. Demonstrates extensive abilities and/or a proven record of success as a team leader in the following areas: * Creating a positive environment by monitoring workloads of the team and respecting the work-life quality of team members, providing feedback in a timely manner, and keeping leadership informed of progress and issues; * Working seamlessly in a virtual environment to complete projects with team members based in various locations, domestically and globally; * Identifying and addressing client needs, including developing and sustaining meaningful client relationships and understanding the client's business; * Utilizing project management skills in relation to data management projects, including developing project plans, budgets, and deliverables schedules; * Thinking creatively and using individual initiative, and flexibility in prioritizing and completing tasks; * Researching and analyzing pertinent client, industry, and technical matters; * Approaching clients and team members in an organized and knowledgeable manner and delivering clear requests for information; and, * Utilizing negotiation and persuasion skills to sell potential opportunities, including a proven track record with identifying and converting potential engagement opportunities and developing market presence. All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer. For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance. Pwc San Francisco CA

Program Manager, Business Technology Risk & Compliance

Salesforce.Com, Inc.