Key skills
DevSecOpsSecurity EngineeringSalesforce Platform EngineeringCI/CD PipelinesSalesforce EnvironmentsInfrastructure as Code (IaC)Environment GovernanceSalesforce Security ConfigurationIdentityAccess Management (IAM)Permission ArchitectureAPI SecurityAutomated Security ScanningSecrets ManagementPolicy-as-CodeSIEM PlatformsLog AggregationIncident ResponseSecurity FrameworksRegulatory ComplianceEnterprise Security StandardsIAMSalesforceCI/CDCloud Security
About this role
LABUR is partnering with a client to identify a Senior Salesforce DevSecOps / Security Engineer to support the design, implementation, and operation of secure, scalable Salesforce delivery pipelines and cloud security controls. This individual will play a critical role in enabling secure CI/CD, enforcing governance, and strengthening the overall Salesforce and cloud security posture.
Responsibilities:
- Design, build, and maintain Salesforce DevOps pipelines encompassing CI/CD automation, environment management, release orchestration, and deployment governance across multiple Salesforce orgs
- Develop and standardize Infrastructure as Code (IaC) practices and enforce environment governance frameworks, including configuration standards and promotion controls
- Embed DevSecOps practices within Salesforce CI/CD pipelines, including automated security scanning, secrets management, and policy-as-code enforcement, shifting security left while minimizing friction for development teams
- Own and manage Salesforce security configuration spanning Identity and Access Management (IAM), permission and role architecture, connected app governance, and API security controls
- Partner with platform and engineering teams to enforce least-privilege access across Salesforce and related cloud environments
- Operate and enhance security monitoring capabilities, including SIEM integration, log aggregation, alert triage, and end-to-end incident response
- Assess and continuously improve cloud and Salesforce security posture by aligning controls with recognized security frameworks, regulatory requirements, and enterprise security standards
Requirements:
- 7+ years of experience in DevSecOps, security engineering, or Salesforce platform engineering
- Proven experience designing and maintaining CI/CD pipelines within Salesforce environments
- Strong knowledge of Infrastructure as Code (IaC) and environment governance practices
- Deep understanding of Salesforce security configuration, including IAM, permission architecture, and API security
- Experience embedding DevSecOps practices such as automated security scanning, secrets management, and policy-as-code into delivery pipelines
- Familiarity with SIEM platforms, log aggregation, and incident response workflows
- Working knowledge of security frameworks, regulatory requirements, and enterprise compliance standards