41 Information Security jobs in San Francisco

Information Security Engineer - Generalist About xAI xAI’s mission is to create AI systems that can accurately understand the universe and aid humanity in its pursuit of knowledge. Our team is small, highly motivated, and focused on engineering excellence. This organization is for individuals who appreciate challenging themselves and thrive on curiosity. We operate with a flat organizational structure. All employees are expected to be hands-on and to contribute directly to the company’s mission. Leadership is given to those who show initiative and consistently deliver excellence. Work ethic and strong prioritization skills are important. All engineers and researchers are expected to have strong communication skills. They should be able to concisely and accurately share knowledge with their teammates. About the Role We are seeking a versatile and proactive Security Generalist to join our security team. In this dynamic role, you will collaborate with our Detection Engineering, Application Security, Infrastructure Security, and IT teams to enhance our security posture. As a strategic unblocker and automator, you will identify bottlenecks, streamline processes, and develop tools to improve efficiency across security operations, all while supporting our cloud-native and AI-focused infrastructure. Key Responsibilities Assist Detection Engineering by monitoring security alerts, refining detection rules, and supporting incident response efforts Support Application Security by conducting code reviews, integrating security into CI/CD pipelines, and addressing AI/ML-specific vulnerabilities Collaborate with Infrastructure Security to secure cloud architectures, maintain Infrastructure as Code (IaC) templates, and perform security assessments Partner with the IT Team to ensure secure system administration, endpoint protection, and compliance with security policies Develop automation scripts and tools to streamline security workflows and reduce manual effort across teams Act as a strategic unblocker by identifying and resolving cross-team challenges, fostering collaboration, and driving security initiatives Contribute to the creation and maintenance of security documentation, playbooks, and metrics Stay current with emerging threats, security trends, and best practices in cloud-native and AI environments Requirements Bachelor's degree in Computer Science, Cybersecurity, or a related field 1-3 years of experience in cybersecurity, with exposure to detection, application, or infrastructure security Proficiency in at least one scripting language (e.g., Python, Bash, Rust) for automation and tool development Familiarity with cloud platforms (e.g., AWS, GCP, Azure) and their security features Understanding of cybersecurity principles, common vulnerabilities, and attack vectors Strong problem-solving skills and ability to prioritize tasks in a fast-paced environment Excellent communication skills, with the ability to collaborate across technical and non-technical teams Preferred Qualifications Experience working across multiple security domains (e.g., detection, application, infrastructure) Familiarity with SIEM platforms, code analysis tools, or Infrastructure as Code (e.g., Terraform) Knowledge of AI/ML security implications, such as those outlined in the OWASP LLM Top 10 Relevant security certifications (e.g., GCIH, CSSLP, CCSP) Experience with containerized environments, Kubernetes, or DevSecOps practices Bonus Skills Experience building custom security tools or integrations to enhance security operations Contributions to open-source security projects or tools Interest in leveraging AI to automate security tasks and improve threat detection Familiarity with software supply chain security or digital forensics Annual Salary Range $150,000 - $250,000 USD xAI is an equal opportunity employer and does not unlawfully discriminate based on race, color, religion, ethnicity, ancestry, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, age, disability, medical conditions, genetic information, marital status, military or veteran status, or any other applicable legally protected characteristics. Qualified applicants with arrest or conviction records will be considered for employment in accordance with all applicable federal, state, and local laws, including the San Francisco Fair Chance Ordinance, Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. For Los Angeles County (unincorporated) Candidates: xAI reasonably believes that criminal history may have a direct, adverse and negative relationship on the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: Access to information technology systems and confidential information, including proprietary and trade secret information, and/or user data; Interacting with internal and/or external clients and colleagues; and Accepted file types: pdf, doc, docx, txt, rtf Current company If you are currently employed in the field, please tell us the name of your employer. If you are currently employed in the field, please tell us your role including your seniority level (e.g. Software Engineer II). LinkedIn Profile If you have a public LinkedIn profile, please provide its URL. X Profile If you have a public X profile, please provide its URL. If you have a public GitHub profile, please provide its URL. What exceptional work have you done? * Tell us about a piece of work that you are most proud about. Voluntary Self-Identification For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file. As set forth in xAI’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law. If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows: A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability. A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service. An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense. An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985. Select. Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Voluntary Self-Identification of Disability Form CC-305 Page 1 of 1 OMB Control Number 1250-0005 Expires 04/30/2026 Why are you being asked to complete this form? We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years. Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at . How do you know if you have a disability? A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to: Alcohol or other substance use disorder (not currently using drugs illegally) Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS Blind or low vision Cancer (past or present) Cardiovascular or heart disease Celiac disease Cerebral palsy Deaf or serious difficulty hearing Diabetes Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders Epilepsy or other seizure disorder Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome Intellectual or developmental disability Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD Missing limbs or partially missing limbs Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS) Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities Partial or complete paralysis (any cause) Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema Short stature (dwarfism) Traumatic brain injury Disability Status Select. PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete. #J-18808-Ljbffr

Wells Fargo is seeking a Lead Information Security Engineer in Technology as part of the Chief Technology Office (CTO). Learn more about the career areas and lines of business at wellsfargojobs.com . The Lead Information Security Engineer will support the Digital Certificate Management Services team as part of the Technology Infrastructure group. The Certificate Management Services Engagement and Support team provides support to Certification Management Administrators using Venafi's product suite to manage Enterprise level Certificate Management and Issuance. In this role you would be responsible for Designing, Developing and deploying large scale infrastructure solutions related to Digital Certificates Lifecycle management using advanced, innovative and latest technologies in multi-platform hybrid cloud deployments. In this role, you will : Lead computer security incident response activities for highly complex events Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security Review and correlate security logs Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives Collaborate and influence all levels of professionals including managers Lead a team to achieve objectives Required Qualifications : 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following : work experience, training, military experience, education 5+ years of experience providing production support 5+ years of experience using ticket tracking tools for change management, problem and incident management, and availability management Desired Qualifications : 5+ years of demonstrated experience developing automation with infrastructure as Code (IaC) tools like Ansible, Terraform, Chef, Puppet etc. 5+ years of experience with Continuous Integration / Continuous Deployment (CI / CD) tools for automation such as Jenkins, Github, Terraform, Harness, etc. 5+ years of experience implementing or managing Certificate Lifecycle Management for a variety of certificate use cases (TLS, machine identity, Code Signing, S / MIME, SSH). 5+ years of experience with one or more certificate management tools (Venafi, DigiCert, Microsoft) 5+ years of experience developing API automation to consume REST API methods to automate client integrations. 5+ years of experience with Cloud platforms, Kubernetes container architecture and deployment services 5+ years of experience with industry standard security controls (NIST) related to digital certificates 5+ years of experience with Agile methodologies Kanban / Scrum and processing workflow using Jira tool. Self-starter with the ability to manage multiple engineering projects Cloud vendor certification such as Microsoft Azure or Google Cloud Intermediate to advanced hands-on experience in scripting, orchestration, and automation languages such as PowerShell / DSC, Python and Ansible to deploy Infrastructure as Code (IaC) Strong communication and interpersonal skills Job Expectations : Ability to work on-site at posted location This position is not eligible for Visa sponsorship Pay range : Minneapolis, MN - Pay Range : 111,100.00 - 197,500.00 USD Annual New Jersey, NJ - Pay Range : 122,200.00 - 217,200.00 USD Annually San Francisco, CA - Pay Range : 133,300.00 - 237,100.00 USD Annually Pay Range Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. 111,100.00 - $237,100.00 Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees. 401(k) Plan Paid time off Disability benefits Life insurance, critical illness insurance, and accident insurance Parental leave Critical caregiving leave Discounts and savings Posting End Date : 6 Jul 2025 Job posting may come down early due to volume of applicants. Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements : a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Create a job alert for this search Information Security Engineer SAN FRANCISCO, California, United States of America #J-18808-Ljbffr

Tides is a nonprofit and philanthropic organization committed to advancing social justice. We work across the social sector to shift power to communities of color and other groups historically denied power. Centering equity and justice in everything we do, we collaborate in deep partnership with movement leaders, nonprofits, donors, foundations, and corporations to amplify the impact of their work by providing services like fiscal sponsorship, donor advised funds, grant making, and a variety of innovative solutions. Position Overview About the Role The Information Security Engineer is responsible for designing, implementing, and maintaining security protocols, policies, and systems to protect the organization's information assets. This role involves collaborating with various departments to ensure the security of networks, applications, and data while responding to security incidents and conducting regular assessments to identify and mitigate risks. What you will Do Security Systems Management: Design, implement, and maintain security solutions such as firewalls, intrusion detection systems, VPNs, and antivirus software. Monitor security systems and networks for potential vulnerabilities and attacks. Maintain security of confidential and proprietary information. Incident Response: Respond to security incidents, conduct thorough investigations, and implement corrective actions. Develop and maintain incident response plans and procedures. Risk Assessment and Management: Perform regular security assessments and penetration tests to identify vulnerabilities. Develop and implement risk mitigation strategies to protect the organization's assets. Compliance and Audit: Ensure compliance with relevant industry regulations and standards (e.g., CIS Top Controls, NIST Cybersecurity Framework, etc.). Prepare and participate in security audits. Policy and Procedure Development: Develop, update, and enforce security policies, procedures, and guidelines. Conduct security awareness training for employees. Collaboration and Communication: Work with IT and other departments to ensure security measures are integrated into all aspects of the organization. Communicate security issues and solutions to management and stakeholders. Threat Intelligence and Vulnerability Management: Stay up-to-date with the latest threat intelligence, security patches, and advisories. Manage vulnerability scanning and patch management processes. What you will Bring In-depth understanding of information security principles and best practices Proficiency in security technologies and tools (e.g., SIEM, IDS/IPS, firewalls, encryption) Understanding of network security protocols and architecture Familiarity with security features and vulnerabilities of various operating systems (Windows, Linux, MacOS) Knowledge of regulatory and compliance standards (e.g., CIS Top Controls, NIST Cybersecurity Framework, ISO 27001, GDPR, HIPAA) Understanding of incident response processes and procedures Awareness of current cybersecurity threats, attack vectors, and threat intelligence Ability to develop and implement risk assessment and mitigation strategies Strong analytical skills for risk assessment, vulnerability analysis, and incident response Proficiency in scripting and automation (Python, PowerShell, Bash) Excellent verbal and written communication skills Strong project management and organizational skills Attention to detail to identify and address security vulnerabilities and risks Critical thinking and decision-making skills, especially under pressure Ability to work effectively with cross-functional teams and promote a security-conscious culture Adaptability to evolving cybersecurity threats and technologies Capability to respond promptly and effectively to security incidents Ideal Experience Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. 3-5 years of experience in an information security engineering or a related field. Certifications such as Certified Information Systems Security Professional (CISSP) or CompTIA Security+, CEH are highly desirable. Compensation Tides is committed to providing a competitive compensation package. We value pay equity and account for factors such as your location within the U.S., your skills and your relevant experience, and we will not ask for your salary history. Your starting salary will fall into one of three ranges: $95,300 - $19,100 (Most of the United States) 103,900 - 129,900 (Chicago, Los Angeles, Washington D.C. metro areas) 114,400 - 143,000 (New York City & San Francisco metro areas) Please note, these metro areas are examples and not a complete list. Our Talent Acquisition team will review your application and confirm your placement within this structure with you at the beginning of the interview process. Application Instructions Please submit your resume and a cover letter expressing why you are well-qualified for this role and your motivation for joining the team at Tides by Friday, November 15, 2024 at 11:59pm. Life at Tides Working at Tides connects you with world-class teammates, enduring relationships, and an inspired sense of purpose - while our employee benefits support our team’s talent and well-being. Our hybrid work model supports staff who are based across the United States, in addition to maintaining our offices in New York & San Francisco. Equal Employment Opportunity We look forward to reviewing applications from all qualified jobseekers. We strongly encourage applications from women, people of color, and bilingual and bicultural individuals, as well as members of the LGBTQIA+ communities. No applicant will be discriminated against because of their race, religion, sex, national origin, ethnicity, age, disability, political affiliation, sexual orientation, gender identity, color, marital status, or medical condition including acquired immune deficiency syndrome (AIDS) and AIDS-related conditions. Pursuant to the San Francisco Fair Chance Ordinance, we encourage and will consider qualified applicants with arrest and conviction records. Where required by state law, we utilize E-Verify as a part of our employment authorization process. Applicants with Disabilities Reasonable accommodations will be made so that all who are interested may participate in our interview process. If you are in need of an accommodation, please advise in writing at the time you apply. The salary range for the position is $9 ,300 - 143,000 USD. #J-18808-Ljbffr

About the job Equinix is the world’s digital infrastructure company, operating over 260 data centers across the globe. Digital leaders harness Equinix's trusted platform to bring together and interconnect foundational infrastructure at software speed. Equinix enables organizations to access all the right places, partners and possibilities to scale with agility, speed the launch of digital services, deliver world-class experiences and multiply their value, while supporting their sustainability goals. A leadership role at Equinix means you will drive and collaborate on work that impacts the world. We embrace diversity in thought and contribution and are committed to providing an equitable work environment that is foundational to our core values as a company and is vital to our success. Job Summary We seek a visionary and execution-focused Chief Information Security Officer (CISO) to lead Equinix’s global cyber security strategy. This role is responsible for safeguarding the organization’s systems and platforms, networks and data across all geographies, ensuring regulatory and operational compliance, and building a modern, resilient security architecture that enables innovation. The CISO will also play a strategic role in exploring opportunities to transform security into a differentiator and maybe become a potential revenue stream for Equinix in the future. This executive position will report directly to our Chief Digital and Innovation Officer (CDIO) and will be a key executive of Equinix. Responsibilities Enterprise Strategic Leadership • Define and drive the enterprise-wide information and cyber security strategy across the company, with a vision to make Equinix one of the most secure and trusted global companies • Oversee all aspects of security operations, governance, architecture, engineering and incident response to protect systems, networks, and our data • Lead the modernization and simplification of the security environment to support Equinix’s digital transformation agenda. Keep us secure but allow us to innovate • Embed “secure-by-design” principles into software development, infrastructure provisioning, and vendor management • Collaborate with technology and business leaders to integrate security considerations into digital initiatives, cloud strategies, emerging technologies, and operational processes Risk and Compliance • Fully own the global cyber risk management framework, aligning with regulatory requirements and business risk appetite • Ensure compliance with international data privacy and security regulations across all operating regions • Take leadership in policy compliance and policy setting working closely with leading regulators and authorities across the Digital industry Security Culture & Stakeholder Engagement • Champion a proactive security culture across Equinix’s global workforce, including training, education, and executive engagement • Work closely with product, engineering, legal, and operations teams to ensure security is embedded across the enterprise • Serve as a key advisor to the executive leadership team and the Board of Directors on cyber resilience and emerging threats Technology and Innovation • Build a scalable, automated, cloud-native security architecture to support Equinix’s digital and platform strategy • Partner with the CTO/CDO functions to drive DevSecOps adoption and enable secure product delivery at speed • Bring an innovation and techno-commercial mindset around security to help build our security solutions as. Platform with a potential to allow Equinix to monetise it in future, should we choose to Qualifications: Qualifications The Chief Information Security Officer must be a well-rounded, seasoned and proven strategic security leader capable of leading security in a complex, global environment with execution depth but also an innovative and techno-commercial mindset • Demonstrated experience leading transformational security programs in high-growth, cloud-first or digital businesses • Proven ability to operate at both strategic and operational levels, influencing across technical and executive audiences • Deep knowledge of global cybersecurity regulations, cloud security architecture, identity management, and data protection • Strong track record in building high-performing, globally distributed security teams. A security talent magnet! • Experience with monetization or platform-level security differentiation is a plus What Success Looks Like • Equinix has a clear, robust, and adaptive security posture aligned with its digital ambitions • Security is viewed as an enabler of innovation, not just a control function • Executive stakeholders and customers have increasing confidence in Equinix’s cyber resilience and we are considered as the safest and most trusted digital partner by our customers • Security maturity improvements are measurable, and key risks are proactively managed and amongst the best in the industry • A long-term foundation is laid for security to contribute to revenue generation via platform trust and differentiation Equinix values an open, honest, and collaborative culture and advocates teams working together to create positive change. The company promotes personal, professional, and team fulfillment while focusing on the broader community. The ideal candidate will be a team builder, player, and coach. Personal drive, passion, industriousness, results orientation, and enthusiasm are essential. The Chief Information Security Officer must bring: • Ability to anticipate the unknown by drawing on vast experiences, willingness to see past the present, and continually innovate and create new ways to remain at the forefront of security • Leadership ability that attracts talent and creates loyalty, trust, and followership. One who can energize people and teams and make cross-functional and cross-business cooperation happen. Subordinates, peers, and superiors must highly respect this individual • A combination of personality traits—collaboration, honesty, integrity, intensity, passion and a low ego—necessary to blend with the rest of the executive management team • A compelling leadership style that includes exceptional people management skills, program management, business and technology expertise with a style that inspires confidence • An effective communication style that is direct, structured, and succinct. One who can articulate complex concepts clearly and simply and can adjust communication based on the technical expertise of the audience. Must have experience effectively presenting to a seasoned audience including the senior leadership team and board of directors • A hands-on and entrepreneurial style –one that looks to become personally involved in all elements of managing their functional responsibility, and someone who seeks to develop senior managers and experts with similar capabilities • The intellect and the executive presence to become an enabler and true business partner across the corporation –someone who can contribute to broader business conversations beyond their functional expertise • Organizational savvy to solicit the involvement of others to build a sense of ownership. Must have the confidence to act quickly and decisively when the environment requires such agility Why Join Us? As the Chief Information Security Officer, you will have the opportunity to shape the future of our organization’s security landscape. You will be at the forefront of protecting our digital infrastructure and ensuring the trust of our customers and stakeholders. Join us in our mission to deliver secure and innovative digital solutions that drive growth and connectivity worldwide. Compensation: The United States targeted pay range for this position in the following location is / locations are: • San Francisco, CA / Bay Area: $332,000 to $498,000 per year Our pay ranges reflect the minimum and maximum target for new hire pay for the full-time position determined by role, level, and location. Individual pay is based on additional factors including job-related skills, experience, and relevant education and/or training. This position may be offered in other locations. Your recruiter can share more about the specific pay range for your preferred location during the hiring process. The targeted pay range listed reflects the base pay only and does not include bonus, equity, or benefits. Employees are eligible for bonus, and equity may be offered depending on the position. As an employee, you become important to Equinix’s success. Details about our company benefits can be found at the following link: We know how to fine-tune corporate security because we've led effective and efficient Fortune 500-level security programs. The SEC helps businesses find the best balance of risk mitigation, cost and innovation. Want insight delivered to your inbox? Subscribe to Security Insight newsletter. #J-18808-Ljbffr

Sr. Information Security Engineer

We have an immediate need for a Sr. Information Security Engineer to join our client for a full-time, direct hire position that will be hybrid in San Francisco. This position will lead and executive information security operations for a global company and focus on Security Operations, Incident Response, Compliance, and Governance.

Location: San Francisco, CA (Hybrid- 3 days onsite)

This job expects to pay about $120,000-135,000 benefits

What Youll Do:

• Assist with 247 security operations, ensuring continuous availability and performance of critical security systems.
• Support incident response efforts including detection, escalation, containment, and root cause analysis.
• Tune and configure IDS/IPS, antivirus, firewalls, and vulnerability management tools for optimal protection.
• Implement and maintain automated monitoring and logging processes; conduct regular log reviews.
• Manage escalations from the Security Operations Center (SOC) and ensure timely resolution of critical issues.
• Administer and support key security technologies including SIEM, intrusion detection/prevention, and encryption.
• Ensure compliance with internal policies and external regulatory frameworks (e.g., NIST, ISO).
• Monitor compliance and coordinate remediation of identified security gaps.
• Develop and maintain security metrics to inform leadership and guide strategic decisions.
• Collaborate with managed service providers (MSPs) and vendors to ensure service quality and compliance.
• Support cross-functional teams in the deployment and maintenance of security tools and services.

What Gets You the Job:

• 2-5 years of experience in enterprise information security operations, with hands-on expertise in IDS/IPS, SIEM, malware protection, firewalls, and incident response.
• Strong understanding of compliance and risk frameworks: NIST, ISO 27001.
• Demonstrated experience with security monitoring, threat detection, and forensic analysis.
• Proven ability to develop, execute, and mature operational security processes and documentation.
• Skilled in managing security vendors and third-party services, including contract and performance oversight.
• Excellent written and verbal communication skills, with the ability to present technical concepts clearly to both technical and non-technical stakeholders.
• Strong attention to detail.
• Proficient in Microsoft Office, web-based collaboration tools, and security platforms.

If we are still actively screening for this role, our AI Recruiter, Avery will email you to schedule a virtual meeting to learn more about your background.

Irvine Technology Corporation (ITC) is a leading provider of technology and staffing solutions for IT, Security, Engineering, and Interactive Design disciplines servicing startups to enterprise clients, nationally. We pride ourselves in the ability to introduce you to our intimate network of business and technology leaders bringing you opportunity coupled with personal growth, and professional development!Join us. Let us catapult your career!

Irvine Technology Corporation provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Irvine Technology Corporation complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges.

In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients including governmental agencies and private companies throughout the United States and India.

We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career.

Windows and Essential Practices (Essential Practices) - Windows and Essential Practices (Essential Practices)

Responsibilities:

Provide Subject Matter Expertise (SME) over IAM practices, policies and procedures for the Windows and Essential practices

Experience in all aspects of Identity and Access management lifecycle especially on processes for On Boarding, Off boarding, Transfers and UARs, HR driven processes, to IAM compliance issues and role engineering. Identify process automation opportunities on existing access management practices

Participate activities in Access Management to provide access management business requirements and insure compliance with industry and company security standards.

Complete access request processing as per predefined sets of procedure and within agreed Service Level Agreements (SLA), resolve problem tickets and assist other security analysts as needed

Document access management procedures for assigned platforms, databases and applications? keep the access management procedures up to date

Proactively identify audit and compliance access related issues to reduce the risk of security exposures on the support systems and applications? coordinate access management related audit and compliance tasks, such as user access reporting and other relevant research and investigation

Able to use the available tools to support, including Quest Change auditor and reporter, ARS, RMAD, RPM.

Flexibility to work after hours to accommodate when necessary.

Have a global mindset and collaborate effectively within and across different teams.

Qualifications/Requirements:

Knowledge of the security tools supported, including Quest Change auditor and reporter, ARS, RMAD, RPM products in use on Visa Windows systems and Active Directories.

Ability to write Windows & AD related scripting (eg Powershell, VB, WMI) is an added advantage

Ability to gather and document business requirements and implement solutions to address them

Good working knowledge with Excel spreadsheets, analysis of large volume of data.

Good working knowledge of Identity Access Management lifecycle and processes is a must.

Understanding of information security principles and IT infrastructure including operating systems, applications, communications and network protocols.

The ability to work effectively with other functional areas and understand the operational and cultural issues relevant to achieving superior results

Must be flexible and able to manage multiple tasks and priorities on very tight deadlines.

Be a selfmotivated and results oriented individual with an attention to driving aggressive project timelines and schedules

Ability to work independently and in collaboration with others to achieve a high level of success

Strong interpersonal and collaboration skills with the ability to develop, maintain and foster constructive relationships with others

Dynamic, hardworking and ambitious individual, with excellent oral and written communication skills

Have an attention to detail and advanced analytical and troubleshooting skills.

• Bachelor degree in computer management, information security or equivalent job experience
• CISSP, CISA, CISM and other comparative information security certifications are preferred
• 5 to 7 years computer security experience required

• Good comm skills are a big priority
• Duration: 12 months

Interview Mode- Phone and F2F

Work Location 800 Metro Center Blvd Foster City CA USA

Job Description We are looking for a Lead Information Security Architect who will be responsible for developing and maintaining a comprehensive information security architecture program. The role involves representing information security requirements across all technology solutions and business processes, covering multiple disciplines such as systems & networking infrastructure, DevOps, security, business applications, cloud security, and data architecture. The role oversees cybersecurity for our company's digital products, including software, firmware, or products containing code. This includes implementing a product security program designed to address cybersecurity throughout the product lifecycle. The role also involves identifying and mitigating technical and operational threats, analyzing the security, supportability, and feasibility of new technology, and ensuring compliance with regulatory guidelines and industry best practices. This position requires high-level analytical problem-solving skills to diagnose and resolve complex technical issues, along with excellent process management and communication skills. Note: U.S. and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor at this time. To be Successful in this Role Develop an architectural vision to support the growth of the product suite. Knowledge of Data Security Best Practices: At Rest, In Flight, In Use. Experience with privacy-enhancing technologies and encryption techniques. Understanding of cloud security architecture strategies, frameworks, and reference models. Ability to develop effective partnerships with senior management and peers, and explain technical concepts to non-technical executives. Build Risk Models and analyze security weaknesses in complex deployments. Provide security expertise on cloud architecture, design, implementation, maintenance, governance, and risk management projects. Work with governance teams to establish automated processes and best practices for AWS, Azure IAM policies, roles, federation, etc. Conduct automated or manual security validation of cloud templates and infrastructure. Collaborate with business units to ensure solutions align with organizational policies and standards. Develop and enforce standards and guidelines for infrastructure solutions, development processes, hardware, and data design. Partner with stakeholders to build scalable, agile security architecture. Assess current IT portfolios and design future strategies to meet business objectives. Make strategic technology recommendations and incorporate them into roadmaps. Ensure alignment with long-term business requirements and provide thought leadership. Optimize architectural components for cost, flexibility, reliability, and security. Balance strategic planning with urgent delivery in a fast-paced environment. Manage influence and demonstrate credibility as a thought leader. Build long-term relationships with internal customers and stakeholders. Document architecture designs and relationships comprehensively. You Will Have 8+ years of experience in information security architecture, with expertise in defense-in-depth reference architectures. Industry security certifications such as CISSP, CISM, CISA, CCSP, etc. Knowledge of information management, SDLC, ITSM, agile/lean methodologies, infrastructure, and operations. Familiarity with SaaS, IaaS, PaaS, SOA, APIs, microservices, event-driven IT, and analytics. Hands-on experience with AWS, Azure, and GCP. Understanding of security solutions like IDS, IPS, SIEM, vulnerability scanning, and compliance. Experience with attack mitigation, network protocols, OS internals, web security, penetration testing, cryptography, intrusion detection, incident response, and automation frameworks. Proven ability to manage and contribute to incident response plans. Experience in developing strategic security plans, standards, and requirements documentation. #J-18808-Ljbffr

To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts. Job Category Enterprise Technology & Infrastructure Job Details About Salesforce We're Salesforce, the Customer Company, inspiring the future of business with AI+ Data +CRM. Leading with our core values, we help companies across every industry blaze new trails and connect with customers in a whole new way. And, we empower you to be a Trailblazer, too - driving your performance and career growth, charting new paths, and improving the state of the world. If you believe in business as the greatest platform for change and in companies doing well and doing good - you've come to the right place. Salesforce Inc. seeks Information Security Senior in San Francisco, CA: Job Duties : Work on various customer-facing activities, ensuring customer understanding and accepting of the security controls and processes. Respond to security audits and risk assessments for Salesforce's systems, requested by customers in AMER/LACA region. Responsible for reviewing audit findings, addressing discrepancies, and overseeing the entire issue lifecycle from identification to resolution for accepted findings. Deliver compelling presentations and well-crafted documents on Salesforce's security and compliance controls to both internal and external stakeholders, including executives. Engage in security discussions with customers, addressing concerns and providing clear explanations, resolutions, and performing objection-handlings. Conduct security and compliance training sessions for external stakeholders and for internal teams including the Customer Success Group and Sales Engineering team. Partner with internal security tool product teams to develop and implement tools aimed at reducing the security-related workload for Salesforce's internal teams, including the Customer Success Group and Sales Engineering team. Develop and maintain documentation and evidence to support customer audits. Furthermore, he will support the Legal team in negotiating security and compliance terms for Master Services Agreements. HQ address additionally encompasses the following Salesforce locations in San Francisco: 350 Mission Street, 415 Mission Street, and 50 Fremont Street. The permanent position may be offered at any of these locations in San Francisco. Telecommuting is an option. Some travel to Salesforce offices may be required. Minimum Requirements : Master's degree (or its foreign degree equivalent) in Computer Science, Information Systems, Business Administration, Business Management, Engineering (any field), or a related quantitative discipline, and two (2) years of experience in the job offered or in any occupation in related field, OR Bachelor's degree (or its foreign degree equivalent) in Computer Science, Information Systems, Business Administration, Business Management, Engineering (any field) or a related quantitative discipline, and five (5) years of progressively responsible experience in the job offered or in any occupation in related field. Special Skill Requirements : Two (2) years of experience using these special skills: (1) Cloud security, (2) Security audit response, (3) Infrastructure security, (4) Data center physical security, (5) System high availability, (6) Web application security, (7) ISO27001/27017/27018, (8) SOC2, (9) Privacy regulation, (10) Basic programming. Any suitable combination of education, training and/or experience is acceptable. Telecommuting is an option. Some travel to Salesforce offices may be required. Salary : $184,579.00 - $76,100.00 per annum. Submit a resume using the apply button on this posting or by email at: at Job# 19-7476. Salesforce is an Equal Opportunity & Affirmative Action Employer. #LI-DNI Accommodations If you require assistance due to a disability applying for open positions please submit a request via this Accommodations Request Form. Posting Statement Salesforce is an equal opportunity employer and maintains a policy of non-discrimination with all employees and applicants for employment. What does that mean exactly? It means that at Salesforce, we believe in equality for all. And we believe we can lead the path to equality in part by creating a workplace that's inclusive, and free from discrimination. Know your rights: workplace discrimination is illegal. Any employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education. In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.For California-based roles, the base salary hiring range for this position is 184,579 to 276,100. #J-18808-Ljbffr