Enterprise Security Software Architect (AI/ML)

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.

Job Category

Job Details

About Salesforce

Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn't a buzzword - it's a way of life. The world of work as we know it is changing and we're looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce's core values at the heart of it all.

Ready to level-up your career at the company leading workforce transformation in the agentic era? You're in the right place! Agentforce is the future of AI, and you are the future of Salesforce.

We're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place.

About the team
The Enterprise Security team builds and operates highly scalable, fault-tolerant, distributed systems to deliver cloud-scale security services.

Our key investments span Identity and Access Management, Identity Intelligence, and Security Data Platforms, where we design and implement consistent, scalable, and data-driven security services across Salesforce Enterprise. We integrate our IT network, public cloud infrastructure, and data centers, while increasingly leveraging AI/ML-driven insights to detect risk, automate decisions, and continuously adapt access controls-empowering engineers to operate securely at global scale.

About the position
We are seeking an experienced Security/IAM AI & ML Software Architect to lead the design and evolution of intelligent identity+security platforms powered by data, analytics, and machine learning.

This role will define how AI/ML is embedded into the Enterprise Security Technology stack, spanning identity lifecycle, authentication, access governance, PAM, continuous access evaluation, and identity threat detection. You will shape a future-ready, zero-trust-aligned security intelligence architecture that scales across a complex hybrid environment and enables proactive, risk-based, and automated access decisions.

You will work closely with Enterprise Security engineering, security data science, platform teams, compliance, infrastructure, and business stakeholders to translate security/identity signals into actionable intelligence and resilient security outcomes.

Responsibilities

• Architecture & Strategy
• Lead the architectural design for AI/ML enabled IAM capabilities, including:
• Identity lifecycle and access governance
• Risk-adaptive authentication and authorization
• Privileged Access Management (PAM) risk scoring and session analytics
• Identity threat detection and response (ITDR)
• Continuous Access Evaluation (CAE) and policy decisioning
• Define and maintain the Enterprise Identity Intelligence reference architecture, including data flows, ML pipelines, decision engines, and feedback loops.
• Align IAM AI/ML strategy with business outcomes, security posture, regulatory requirements, and AI principles.
• Data, AI & ML Enablement
• Architect scalable platforms to collect, normalize, enrich, and analyze Security/Identity data, including:
• User, device and non-human identities
• Authentication events, access requests, entitlements, sessions, and behavioral telemetry
• Partner with security data science teams to design, deploy, and operationalize ML models for: Anomaly detection and behavioral baselining, Identity risk scoring and modeling, Privilege misuse and lateral movement detection, Access recommendation, role mining, and policy optimization
• Platform & Engineering Leadership
• Partner with product management and engineering leaders to drive technical roadmaps for the Autonomous IAM platform (API-first, event driven, cloud-native)
• Define architectural guardrails for identity data usage, model governance, explainability, and auditability.
• Lead threat modeling and architecture assessments for AI-driven IAM components and their dependencies.
• Develop proof of concepts to validate ML feasibility, data quality, and performance at scale.
• Integration & Enablement
• Enable IAM administration and onboarding platforms to adopt ML-driven identity standards (for Enterprise Applications)
• Work with enterprise architects and business leaders to map identity intelligence capabilities to user journeys and business processes.
• Influence standards for identity APIs, event schemas, feature stores, and policy evaluation frameworks.

Required Skills

• 15+ years of software development experience.
• 7+ years designing and delivering enterprise-scale Security architectures in cloud and hybrid environments.
• Demonstrated experience architecting data-intensive, ML-enabled security platforms.
• Ability to collaborate with architects, engineering leads, data scientists, and product managers to define long-term architectural vision.
• Deep understanding of IAM technologies and protocols:
• IGA, SSO, RBAC/ABAC, PAM, Directory Services
• OAuth2, OIDC, SAML, SCIM, LDAP, CAEP
• Strong grasp of identity lifecycle, entitlement models, SoD, and compliance frameworks (SOX, NIST, CMMC).
• Experience with identity threat detection, continuous access evaluation, and zero trust architectures.
• Strong understanding of ML concepts as applied to security, including anomaly detection, classification and risk scoring.
• Experience designing data pipelines, feature engineering, model inference paths, and feedback loops.
• Familiarity with model governance, explainability, drift detection, and bias considerations in security contexts.
• Strong coding skills (Java or Go preferred).
• Experience with cloud platforms (AWS preferred)
• Experience with CI/CD pipelines.
• Experience with Kubernetes, Docker, Terraform.
• Experience with observability and monitoring tools

Desired Skills

• Hands-on experience with large-scale identity datasets for anomaly detection and real-time policy enforcement.
• Experience architecting risk engines, feature stores, or policy decision services.
• Experience supporting security and IAM compliance and data quality uplift campaigns
• Architect scalable solutions to collect, analyze, and act upon identity signals, risk scores, and session telemetry.
• Certifications: CISSP, CCSP, TOGAF or relevant cloud/security certifications.
  

Posting Statement
Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that's inclusive, and free from discrimination. Know your rights: workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.

Unleash Your Potential

When you join Salesforce, you'll be limitless in all areas of your life. Our benefits and resources support you to find balance and be your best, and our AI agents accelerate your impact so you can do your best. Together, we'll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future - but to redefine what's possible - for yourself, for AI, and the world.

Accommodations

If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form.

Posting Statement

Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that's inclusive, and free from discrimination. Know your rights: workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.