Director, Technology Risk and Controls-1
Salesforce, Inc.., New York, NY, United States
About the Role
Salesforce is seeking a
Director, Technology Risk and Controls
to architect and lead our compliance automation team within Digital Enterprise Technology (DET). This role is a unique hybrid of technical leadership and hands-on engineering, designed for a leader who views regulatory compliance and governance as a systems-engineering challenge rather than a manual checklist. As the founding leader of this function, you will define the strategic roadmap for automation across our control environment. You will execute high-impact initiatives to deliver immediate wins while simultaneously architecting and hiring a specialized team of engineers. Your primary objective is to institutionalize engineering-driven compliance, replacing traditional manual efforts with automated solutions for control execution, audit facilitation, and continuous reporting. Your Impact - Responsibilities
Strategic Roadmap:
Define and lead the vision to systematically automate manual compliance workstreams, engineering scalable processes that align with enterprise risk priorities. Team Leadership:
Recruit and lead a specialized team of compliance engineers, establishing technical standards and an engineering culture required to modernize controls within the DET environment. Agentic Ecosystem:
Architect an end-to-end agentic ecosystem to autonomously manage the compliance lifecycle, transitioning from manual evidence collection to automated, "push-button" execution. Continuous Monitoring:
Direct the design and delivery of automated workflows and real-time dashboards (Tableau) to provide leadership with data-driven visibility into control health. Audit Collaboration:
Partner with SOX teams and external auditors to ensure engineering solutions meet rigorous standards, driving formal audit reliance on automated evidence. Minimum Qualifications
Education:
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field, or comparable professional work experience. Experience:
12+ years in GRC, Cybersecurity, or Software Engineering, with at least 5+ years of experience recruiting and leading high-performing technical teams. Technical Proficiency:
Proven ability to design enterprise-level automation tools and API integrations. Proficiency in
Apex and/or Java, SQL, SOQL, and Python
is required. Audit Scrutiny:
Extensive experience evaluating security control effectiveness and translating complex data into technical requirements that satisfy
SOX, PCI, and SOC2
standards. Data Visualization:
Track record of delivering real-time dashboards that transform raw system data into an executive "source of truth." Problem Solving:
A creative, engineering-led approach to identifying high-impact automation opportunities that eliminate friction in manual processes. Emerging Tech:
Familiarity with agentic frameworks to automate workflows and synthesize unstructured data across disparate systems. Preferred Qualifications
AI/LLM:
Experience fine-tuning or prompting Large Language Models (LLMs) to automate audit inquiry responses or evidence mapping. Certifications:
Advanced technical or security certifications such as
Salesforce Certified Technical Architect (CTA) , CISSP, or CISM. Salesforce Expertise:
Deep familiarity with Salesforce platform architecture and leveraging native capabilities to scale complex processes. Analytics:
Experience with the design and development of
Tableau
dashboards to support control testing outcomes.
#J-18808-Ljbffr
Salesforce is seeking a
Director, Technology Risk and Controls
to architect and lead our compliance automation team within Digital Enterprise Technology (DET). This role is a unique hybrid of technical leadership and hands-on engineering, designed for a leader who views regulatory compliance and governance as a systems-engineering challenge rather than a manual checklist. As the founding leader of this function, you will define the strategic roadmap for automation across our control environment. You will execute high-impact initiatives to deliver immediate wins while simultaneously architecting and hiring a specialized team of engineers. Your primary objective is to institutionalize engineering-driven compliance, replacing traditional manual efforts with automated solutions for control execution, audit facilitation, and continuous reporting. Your Impact - Responsibilities
Strategic Roadmap:
Define and lead the vision to systematically automate manual compliance workstreams, engineering scalable processes that align with enterprise risk priorities. Team Leadership:
Recruit and lead a specialized team of compliance engineers, establishing technical standards and an engineering culture required to modernize controls within the DET environment. Agentic Ecosystem:
Architect an end-to-end agentic ecosystem to autonomously manage the compliance lifecycle, transitioning from manual evidence collection to automated, "push-button" execution. Continuous Monitoring:
Direct the design and delivery of automated workflows and real-time dashboards (Tableau) to provide leadership with data-driven visibility into control health. Audit Collaboration:
Partner with SOX teams and external auditors to ensure engineering solutions meet rigorous standards, driving formal audit reliance on automated evidence. Minimum Qualifications
Education:
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field, or comparable professional work experience. Experience:
12+ years in GRC, Cybersecurity, or Software Engineering, with at least 5+ years of experience recruiting and leading high-performing technical teams. Technical Proficiency:
Proven ability to design enterprise-level automation tools and API integrations. Proficiency in
Apex and/or Java, SQL, SOQL, and Python
is required. Audit Scrutiny:
Extensive experience evaluating security control effectiveness and translating complex data into technical requirements that satisfy
SOX, PCI, and SOC2
standards. Data Visualization:
Track record of delivering real-time dashboards that transform raw system data into an executive "source of truth." Problem Solving:
A creative, engineering-led approach to identifying high-impact automation opportunities that eliminate friction in manual processes. Emerging Tech:
Familiarity with agentic frameworks to automate workflows and synthesize unstructured data across disparate systems. Preferred Qualifications
AI/LLM:
Experience fine-tuning or prompting Large Language Models (LLMs) to automate audit inquiry responses or evidence mapping. Certifications:
Advanced technical or security certifications such as
Salesforce Certified Technical Architect (CTA) , CISSP, or CISM. Salesforce Expertise:
Deep familiarity with Salesforce platform architecture and leveraging native capabilities to scale complex processes. Analytics:
Experience with the design and development of
Tableau
dashboards to support control testing outcomes.
#J-18808-Ljbffr