Salesforce Senior Security Engineer to design, manage, and audit Salesforce security structures while also supporting reporting needs and collaborating wit

Contract or permanent position (depending on candidate preference)

Contract: 1 year+

Hybrid (occasional in person meeting in Markham's office)

Must Haves:

• 7+ years of experience in a security-focused role, with a minimum of 3 years working directly with Salesforce security.
• Experience with cloud-based security technologies and understanding of securing integrated systems.
• Strong track record of managing security projects in a regulated environment, especially in healthcare or other highly regulated industries.
• Demonstrated experience in incident response, risk management, and implementing proactive security measures.

JOB RESPONSIBILITIES:

Salesforce Security Governance and Controls

• Lead the design, maintenance, and enhancement of Salesforce security policies, including profiles, permission sets, role hierarchies, sharing rules, and data visibility models.
• Monitor and manage security change requests, ensuring proper access controls, user roles, and record-level security are implemented while maintaining platform integrity and reducing risk.
• Conduct quarterly audits of system access, roles, and logs to ensure alignment with internal controls and compliance standards, including Segregation of Duties (SOD).
• Support disaster recovery and business continuity planning by validating Salesforce's role in critical process workflows and system availability.

Compliance, Risk, and Internal Controls

• Ensure Salesforce security aligns with internal policies and frameworks such as ISO27001, PHIPA, and other applicable compliance requirements.
• Document and maintain internal security controls and audit trails for all roles, policies, and change activity within Salesforce.
• Vet and validate requests for new or modified security roles, profiles, permission sets, and sharing configurations to ensure adherence to security and compliance best practices.

Security Configuration and System Optimization

• Configure and maintain Salesforce’s security architecture, including profiles, permission sets, role hierarchies, sharing rules, and object/field-level access across multiple functional areas.
• Implement and support enhancements and new functionality, including security-related configurations and workflow changes.
• Coordinate and perform testing of security updates and releases in Salesforce, ensuring smooth deployment and minimal disruption to business operations.
• Respond to support requests for Salesforce-related security issues, troubleshooting access or configuration errors.

Incident Management and Risk Mitigation

• Investigate and respond to Salesforce security incidents, collaborating with diverse teams to assess risk, determine root cause, and implement corrective actions.
• Recommend enhancements or policy changes based on incident trends, audit findings, or vulnerability reports.
• Continuously assess risks related to user access, integrations, and data exposure within Salesforce and propose mitigating actions as needed.

Reporting, Stakeholder Support, and Documentation

• Design and deliver Salesforce reports and dashboards based on business needs, using client’s ticketing system to prioritize and track reporting requests.
• Work with functional stakeholders to understand their needs and provide technical solutions that support operational efficiency and data integrity.
• Maintain clear documentation on Salesforce security architecture, user procedures, and change management processes to support training, onboarding, and system governance.
• Provide guidance and support for knowledge sharing across the enterprise applications team and broader organization.