Key skills
AWSCloudDNSGoogle Cloud PlatformGCPGoogle CloudOAuthOktaSAMLSSOGitHubContentfulCDNCloudflarePerformance OptimizationSaaSSalesforceAtlassianAccount ManagementSalesSonarQubeOWASPPenetration TestingWAF
About this role
Role Overview
- Ensure compliance across core Salesforce products, connected SaaS platforms, and edge delivery infrastructure
- Lead the security configuration and account management for the CX SaaS stack (including Coveo, Contentful, Viamedici, Bynder)
- Manage Customer Data Architecture (CDA) SaaS integrations to ensure secure data exchange
- Lead the end-to-end setup and management of Cloudflare CDN services, overseeing WAF/WAAP, Bot Management, DDoS protection, CDN optimization, and SSL/TLS/DNS management
- Conduct deep-dive security reviews, coordinate the lifecycle of penetration testing and vulnerability remediation, and directly oversee Okta CIAM implementation, security, and permission model auditing
- Serve as the technical lead for PCI compliance across the CX ecosystem
- Successfully transition legacy security and CDN management functions from external providers to internal operations
Requirements
- Bachelor’s degree in Computer Science, Information Systems, or a relevant technical area, or equivalent demonstrated experience
- Proven experience leading teams of senior technical contributors or architects
- Minimum of 5 years of experience as a Software Solution Architect with a focus on eCommerce or Salesforce technology (Commerce, Marketing, Sales, Data 360, and CPQ)
- 8+ years of progressive experience in Information Security or Security Engineering, with specific expertise in OWASP Top 10, API security, and Edge Security (Cloudflare/CDN)
- Hands-on experience with GitHub SaaS, SonarQube, and Atlassian Tools
- Expert-level knowledge of Cloudflare CDN, including WAF/WAAP tuning, Bot Management, and performance optimization
- Deep knowledge of security principles in cloud environments (AWS/GCP) and securing complex SaaS solutions
- Hands-on experience with security testing tools (vulnerability scanners, SAST, DAST) and SSO protocols (SAML, OAuth)
- Proven experience securing headless or composable SaaS architectures like Contentful, Coveo, and Bynder
- Exceptional ability to articulate complex security and edge delivery risks to non-technical CX stakeholders
Tech Stack
- AWS
- Cloud
- DNS
- Google Cloud Platform
Benefits
- medical, dental, and vision plans
- short-term and long-term disability
- life and accidental death and dismemberment (AD&D) insurance
- Employee Assistance Program (EAP)
- pre-tax commuter transportation benefit
- parental leave
- vacation
- sick time
- floating holidays
- jury duty and funeral/bereavement leave
- paid holidays for all eligible full-time employees
- 401k plan with company matching funds
- tuition reimbursement
- discounted college tuition for eligible employees’ dependents
- Airgas Scholarship Program for dependent children