Sr./Lead Security Software Engineer (Endpoint Automation)

## Description

About the Team:

The Enterprise Security Technology team at Salesforce builds and operates the highly scalable, fault-tolerant distributed systems that protect our global cloud infrastructure. We don’t just manage tools; we build the software and infrastructure that allow security to scale. Our Endpoint Security initiative is a high-impact investment focused on building a first-class defense-in-depth system for Salesforce’s diverse enterprise workloads.

The Role:

We are looking for a Security Engineer with a Developer mindset to lead the automation and evolution of our endpoint security posture. In this role, you won’t just click buttons in a console—you will treat security as an engineering problem. You will be primarily involved in building solutions for our CrowdStrike ecosystem, leveraging Python to implement automated deployment pipelines, custom API integrations, and self-healing configurations across macOS, Windows, and Linux.

Key Responsibilities:

• Engineer at Scale: Design and implement robust automation pipelines (Python) to deploy and manage endpoint security tools across a fleet of 100,000+ systems.
• Configuration as Code (CaC): Lead the transition to managing security policies via CI/CD pipelines, ensuring every change is version-controlled, tested, and audited.
• Innovation & PoCs: Participate in the Proof-of-Concept (PoC) evaluations of emerging technologies, performing threat modeling to ensure our stack stays ahead of evolving risks.
• Reliable Change Management: Operate with high discipline within a regulated environment, utilizing canary rollouts and automated testing to ensure security never compromises system availability.
• Collaborative Leadership: Partner with Product Management and Architects to align security engineering goals with enterprise business needs.

Required Skills/Experience:

*Sr./Lead leveling will be determined by skills/experience and performance in the interview process*

• Software DNA: 5+ years of software development experience, specifically within the security domain.
• CrowdStrike Expertise: 3-5+ years of hands-on engineering with the CrowdStrike Falcon platform, with a strong preference for candidates who have interacted with its APIs (e.g., FalconPy).
• Automation Bias: Continuous, hands-on experience with Python for building production-grade automation.
• Infrastructure as Code: Familiarity with tools like Terraform, Ansible, Chef, or Puppet to manage configurations at scale.
• Systems Mastery: Deep understanding of the security nuances across macOS, Windows, and Linux platforms.
• Enterprise Experience: Proven track record of managing security for 1,000+ endpoints in a regulated environment with formal change management processes.
• A related technical degree required.

For roles in San Francisco and Los Angeles: Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.