We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
#alert
Back to search results
Remote

Security Threat Detection Engineer, PMTS

salesforce.com, inc.
United States, Minnesota
Dec 24, 2024

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.

Job Category

Software Engineering

Job Details

About Salesforce

We're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.

Our Security team supports the unwritten fourth tenet of Slack's mission: make people's working lives more secure. We are passionate about protecting our infrastructure, operations, and most importantly, our customer data. We take a thoughtful approach to security, and strive to deliver low friction high-impact features to protect our customers.

As Slack's data, customers and features grow, protecting customer data becomes an even more significant challenge. As a member of the Slack Security Customer Protection team, you would be primarily focussed on detecting entities who intend/attempt to use Slack for malicious purposes. You will develop and use tools to tease out high-fidelity signals from the noise, while collaborating with your peers to respond to and eradicate unwelcome behaviors(such as fraud, abuse, spam etc.) on the platform. You will develop and deploy analytics that inspect the Slack internal telemetry for suspicious behaviours and surface them as anomalies to our customers.

Slack has a positive, diverse, and encouraging culture-we look for people who are curious, innovative and work to be better every single day! In our work together we seek to be smart, humble, hardworking and, above all, collaborative.

What you will be doing

  • You will understand the current data pipelines and datasets, and come up with innovative solutions to analyze them and identify unique outliers and patterns

  • Participate in efforts to organize and query the datasets to support various detection engineering projects in flight

  • Envision and develop innovative signals and roll them out across customer workspaces, which would aid the customer to identify anomalous behavior within their workspace, across different stages of the Kill Chain.

  • Collaborate with key multi-functional teams (Data and Backend engineering teams, Core platform and product teams etc.) to contribute towards security specific in-product feature development efforts.

  • Partner with fellow security practitioners to develop and maintain internal tools and solutions that support our detection engineering efforts

Requirements

  • Strong experience in Information Security centric roles, devising strategies and building controls to counter sophisticated and constantly evolving threats.

  • Ability to envision various Security Incident scenarios that could impact a customer and take an empathetic approach to developing detections to aid customers

  • Ability to query large amounts of data to investigate anomalous activity and deploy detections to surface similar activity when it occurs in other customer workspaces

  • Experience understanding Threat Actor Tactics, Techniques & Procedures (TTPs) and able to build detections to detect such TTPs

  • Experience working in a security function, particularly Digital Forensics and Incident Response (DFIR), Threat Detection and/or Threat Hunting background.

  • Expertise in high-level programming languages, particularly Python or Go. Ability to write efficient SQL queries and dig out relevant information.

*LI-Y

Accommodations

If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.

Posting Statement

At Salesforce we believe that the business of business is to improve the state of our world. Each of us has a responsibility to drive Equality in our communities and workplaces. We are committed to creating a workforce that reflects society through inclusive programs and initiatives such as equal pay, employee resource groups, inclusive benefits, and more. Learn more about Equality at www.equality.com and explore our company benefits at www.salesforcebenefits.com.

Salesforce is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Salesforce does not accept unsolicited headhunter and agency resumes. Salesforce will not pay any third-party agency or company that does not have a signed agreement with Salesforce.

Salesforce welcomes all.

Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records. For California-based roles, the base salary hiring range for this position is $176,800 to $296,400. For Minnesota based roles, the base salary hiring range for this position is $160,700 to $269,500. Compensation offered will be determined by factors such as location, level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, benefits. More details about our company benefits can be found at the following link: https://www.salesforcebenefits.com.
Applied = 0

(web-86f5d9bb6b-4zvk8)