Director - Security Operations
Ohio - Columbus
Applications have closed
Veeva Systems
Veeva Systems Inc. is a leader in cloud-based software for the global life sciences industry. Committed to innovation, product excellence, and customer success, Veeva has more than 1,100 customers, ranging from the world's largest...We are the first public company to become a Public Benefit Corporation. As a PBC, we are committed to making the industries we serve more productive, and we are committed to creating high-quality employment opportunities.
Veeva is a Work Anywhere company which means that you can choose to work in the environment that works best for you - on any given day. Whether you choose to work remotely from home or work in an office - it’s up to you.
Veeva was recently named the #1 Best Place to Work in Central Ohio by Columbus Business First.
The Role
As Director - Security Operations, you’ll report to the CISO. Your role will primarily be responsible for guiding the design, implementation, and maintenance of the detection, response, and threat intelligence processes at Veeva. This will be useful in ensuring the safety of customer data by addressing attacks against Veeva customer facing solutions, Veeva infrastructure and employees.
What You'll Do
- Establish 1, 3 & 5-year strategic plans along with tactical execution requirements
- Partner with key Veeva stakeholders to align Security Operations capabilities with their requirements with a service-oriented approach
- Coordinate threat intelligence management and security incident handling
- Guide the continuous improvement of Security Operations capabilities; centralized security logging, threat intelligence ingestion, vulnerability reporting, incident response, system forensics
- Organize the security operations team to provide a 24/7 security incident response capability
- Design a process that ensures all SecOps processes have runbooks and a continuous improvement process is in place with a preference for automation
- Build a framework to support continuous auditing of compliance with security policies & responsibilities
- Maximize SecOps time spent on threat hunting and process improvement by leveraging automation, minimizing false positives.
- Support of client and external certification audits, including evidence narratives, and presentations
Requirements
- A bachelor’s degree in computer science, business, information systems (or equivalent)
- 10+ years of experience in Information Security, Security Operations, or IT Operations
- Prior technical leadership and management, 3 years of experience demonstrating skills in leading and managing technical engineers
- Experience in a regulated industry and building processes that result in auditable evidence
- Collaboration and relationship building: Building relationships with other stakeholders across Veeva. Strong partnerships with Product Engineering, Technical Operations, and IT will be key to success
- Demonstrated experience in comparative technology reviews and analysis
- Proven ability to work within a team environment, serving as a mentor and coach to develop strong security operations engineers and leaders
- Experience with intrusion detection, network security, multiple operating systems (Windows, Linux, etc.), Security Information and Event Management (SIEM) tools and log management, web application firewalls, vulnerability management, and endpoint protection
- Solid background with Linux (AWS Linux 2) and Windows (2016) operating systems
- Firm understanding of standard protocols, and their expected behavior (DNS, HTTP/S, FTPS, TCP, UDP, etc.)
- A passion for eliminating manual work and promoting robust automated processes
- Excellent written visualization and verbal communication skills
- This position can be work from home, but candidates should live reasonably close to Columbus, OH
Nice to Have
- Prior experience in a technology company working closely with product and DevOps engineers on security requirements
- Experience with DevOps environments, Docker containers, Kubernetes orchestration and AWS security controls a strong plus
- Familiarity and experience with standards and compliance frameworks including HIPAA, PCI, ISO27001/18, SOC1/2, NIST, CIS
- Knowledge of various Security Development Lifecycle approaches
- CISSP certified
Perks & Benefits
- Flexible PTO
- Healthy, free lunches and snacks every day
- Allocations for continuous learning & development
- Discounted gym membership
Veeva’s headquarters is located in the San Francisco Bay Area with offices in more than 15 countries around the world.
Veeva is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity or expression, religion, national origin or ancestry, age, disability, marital status, pregnancy, protected veteran status, protected genetic information, political affiliation, or any other characteristics protected by local laws, regulations, or ordinances. If you need assistance or accommodation due to a disability or special need when applying for a role or in our recruitment process, please contact us at talent_accommodations@veeva.com.
Tags: Audits Automation AWS CISSP Cloud Compliance Computer Science DevOps DNS Docker Firewalls Forensics HIPAA Incident response Intrusion detection ISO 27001 Kubernetes Linux Network security NIST SecOps SIEM SOC 1 Threat intelligence Vulnerability management Windows
Perks/benefits: Career development Fitness / gym Flex hours Flex vacation
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs