Mission freelance [FBO] Cybersécurité Salesforce Consulting - Paris - 821

Contexte de la mission

MHIS is seeking a highly skilled and experienced Salesforce Cybersecurity Consulting to join the team. This critical role will be responsible for ensuring the security and the integrity, protecting sensitive customer and business data and maintaining compliance with relevant security measures and best practices.

The ideal candidate will possess a deep understanding of Salesforce security best practices, excellent problem-solving skills, and passion for cybersecurity.
Security Design and Implementation:

Design, Implement, and maintain security measures within the Salesforce environment, including but not limited to:

Security policies implementation on SF Core.
Role based access controls and permissions managements (Federation, review Local Accounts and Reduce privilege account)
Review and Harden Salesforce Technical Accounts for the 7 SF Orgs.
Maintain and audit exports permissions.
Maintain and Audit Configuration related to Connected Apps and API Access Controls.
Monitoring and Logging:

Implement and maintain security monitoring and logging systems to detect and respond to security threats.

Transaction security implementation.
Event Monitoring implementation on our 7 Orgs.
Splunk configuration for security alerts and security threats follow-up.
Prevent data export by implementing the right alerts and reporting for monitoring.
Disaster Recovery Plan (DRP) and data Loss Prevention (DLP) :

Develop and implement DLP strategies to prevent sensitive data from leaving the Salesforce environment.
Develop and implement DRP strategies for the 7 Salesforce orgs, by definition of the RTO and RPO with business and platform team.
Test and simulation of recovery strategies based on Own solution.
Collaboration with Salesforce and Own TAM.
Vulnerability Management :

Conduct security assessments and audit with MH Cybersecurity team and support to platforms team.

Incident response:

Participate in incident response activities related to Salesforce security breaches or incidents. Investigate security events, contain threats, and implement corrective actions.

Security Awareness and Training:

Promote and secure practices and reduce the risk of security incidents.

Documentation:

Create and maintain comprehensive documentation of Salesforce security configurations, policies and procedures.

Qualifications:

More than 7-10 years of experience in Salesforce ecosystem.
Strong understanding and implementation of Salesforce security concepts.
Familiarity with relevant security standards (MFA, OAuth,
Experience with security tools:
Mandatory: Salesforce Shield Event Monitoring, Own by Salesforce.
Ideals: Splunk, SSPM (SaaS Security Posture Management)

The candidate will collaborate with several teams based in USA, Europe and APAC regions, but also with MH Cybersecurity team and LVMH SF COE team.