Description
The Security Governance, Risk, and Compliance (GRC) Senior Lead role is part of Salesforce's Security and Compliance organization, sitting at the forefront of our expanding global Contact Center as a Service (CCaaS) platform. Our team works to ensure that Salesforce's cloud products meet the regulatory and compliance standards required to operate in markets around the world.
We are looking for a Security GRC Senior Lead to serve as a principal compliance strategist, bridging the gap between traditional cloud security frameworks and complex global telecommunications regulations. You will be responsible for translating emerging regulatory requirements into actionable compliance guardrails and overseeing our broader telecom reporting strategy.
Responsibilities:
- Lead the compliance strategy for our global CCaaS initiatives, translating regulatory guidance into high-level business and product strategy, and overseeing mandatory regulatory filings to governing bodies such as the Federal Communications Commission (FCC) and the Canadian Radio-television and Telecommunications Commission (CRTC).
- Actively monitor the global telecom and security landscape for new and evolving regulations, proactively assessing their impact on our product roadmap and global compliance posture.
- Act as a key GRC liaison to Product Management and business leadership, ensuring "compliance by design" is embedded in the product lifecycle and overseeing engagements with external advisory partners to drive global regulatory and compliance analyses.
- Define and manage the shared responsibility model, clearly delineating telecom and compliance liabilities between our platform, underlying carrier partners, and customers across both reseller and Bring Your Own Carrier (BYOC) architectures.
Required Qualifications:
- 8+ years of experience in Security GRC, Legal, or Regulatory Affairs with strong working knowledge of international telecommunications regulations and compliance frameworks across North America, Europe, and other global markets.
- Experience managing formal regulatory reporting and filing processes at an enterprise level, with a proven ability to translate complex legal and regulatory text into clear requirements for product and business teams.
- Exceptional executive communication skills with the ability to present risk scenarios and compliance strategy to senior leadership.
- Strong understanding of cloud compliance principles and risk management across enterprise environments.
Preferred Qualifications:
- Experience within the Software as a Service (SaaS), CCaaS, or Unified Communications as a Service (UCaaS) space.
- Familiarity with emerging global telecom regulatory markets beyond North America and Europe.
- Experience with GRC tooling and project management in a fast-paced, cross-functional environment.
Pursuant to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants with arrest and conviction records.
In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: https://www.salesforcebenefits.com.
