Incident Handler

As a key member of our growing GovCloud CSIRT, Incident Handlers will work on the ‘front lines’ of the Salesforce Government Cloud environment, leading a team that protects our critical infrastructure and our customers’ data from the latest information security threats.

The Incident Handler is responsible for security operations, including real-time analysis of security alert data and leading the response to potential security incidents. Incident Handlers will also work on compliance projects, and enhancements to detection and incident response capabilities. We have a strong team environment where knowledge sharing is encouraged.
This position is based in our 24×7 operations center. As a result, shift work (including on weekends, as needed) is required.


  • 6+ years experience in the Information Security field.

  • Prior experience in a fast paced operational environment

  • Professional demeanor even in high stress situations

  • Ability to manage time and professional interactions well

  • Ability to deliver quality work products with aggressive deadlines while balancing multiple priorities

  • Strong problem solving ability to identify solutions to encountered or anticipated challenges

  • Strong interpersonal and communication skills required for coordinating responses to complex incidents across the organization with many stakeholders

  • Drive incidents to resolution with an appropriate sense of urgency

  • Must have strong verbal and written communication skills; ability to communicate effectively and clearly to both technical and non-technical staff.

  • Technical security background and understanding of network fundamentals and common Internet protocols.

  • Strong technical understanding of the information security threat landscape (attack vectors and tools, best practices for securing systems and networks, etc.).

  • Technical understanding of Mac OSX, Microsoft Windows, and Linux/Unix system administration and security controls.

  • Familiarity with incident response and security operations within public cloud environments (e.g. AWS)

  • The ability to manage the response to high priority, high visibility operational security issues.

  • U.S. citizen (U.S. born or naturalized) who does not hold dual citizenship. You agree to complete a Minimum Background Investigation (MBI) for a Moderate Public Trust position with the U.S. federal government or other clearances as deemed appropriate for the role.

Posted: January 13, 2022
<< Back to Job-Board