Contact

Director of Security Operations

Veeva Systems

Remote

Job Description

Veeva [NYSE: VEEV] is the leader in cloud-based software for the global life sciences industry. Committed to innovation, product excellence, and customer success, our customers range from the world’s largest pharmaceutical companies to emerging biotechs. Veeva’s software helps our customers bring medicines and therapies to patients faster.

We are the first public company to become a Public Benefit Corporation. As a PBC, we are committed to making the industries we serve more productive, and we are committed to creating high-quality employment opportunities.

Veeva is a Work Anywhere company which means that you can choose to work in the environment that works best for you – on any given day. Whether you choose to work remotely from home or work in an office – it’s up to you.

Veeva was recently named the #1 Best Place to Work in Central Ohio by Columbus Business First.

The Role

As Director – Security Operations, you’ll report to the CISO. Your role will primarily be responsible for guiding the design, implementation, and maintenance of the detection, response, and threat intelligence processes at Veeva. This will be useful in ensuring the safety of customer data by addressing attacks against Veeva customer facing solutions, Veeva infrastructure and employees.

What You’ll Do

-Establish 1, 3 & 5-year strategic plans along with tactical execution requirements -Partner with key Veeva stakeholders to align Security Operations capabilities with their requirements with a service-oriented approach -Coordinate threat intelligence management and security incident handling -Guide the continuous improvement of Security Operations capabilities; centralized security logging, threat intelligence ingestion, vulnerability reporting, incident response, system forensics -Organize the security operations team to provide a 24/7 security incident response capability -Design a process that ensures all SecOps processes have runbooks and a continuous improvement process is in place with a preference for automation -Build a framework to support continuous auditing of compliance with security policies & responsibilities -Maximize SecOps time spent on threat hunting and process improvement by leveraging automation, minimizing false positives. -Support of client and external certification audits, including evidence narratives, and presentations

Requirements

-A bachelor’s degree in computer science, business, information systems (or equivalent) -10+ years of experience in Information Security, Security Operations, or IT Operations -Prior technical leadership and management, 3 years of experience demonstrating skills in leading and managing technical engineers -Experience in a regulated industry and building processes that result in auditable evidence -Collaboration and relationship building: Building relationships with other stakeholders across Veeva. -Strong partnerships with Product Engineering, Technical Operations, and IT will be key to success -Demonstrated experience in comparative technology reviews and analysis -Proven ability to work within a team environment, serving as a mentor and coach to develop strong security operations engineers and leaders -Experience with intrusion detection, network security, multiple operating systems (Windows, Linux, etc.), Security Information and Event Management (SIEM) tools and log management, web application firewalls, vulnerability management, and endpoint protection -Solid background with Linux (AWS Linux 2) and Windows (2016) operating systems -Firm understanding of standard protocols, and their expected behavior (DNS, HTTP/S, FTPS, TCP, UDP, etc.) -A passion for eliminating manual work and promoting robust automated processes -Excellent written visualization and verbal communication skills -This position can be work from home, but candidates should live reasonably close to Columbus, OH

Nice to Have

-Prior experience in a technology company working closely with product and DevOps engineers on security requirements -Experience with DevOps environments, Docker containers, Kubernetes orchestration and AWS security controls a strong plus -Familiarity and experience with standards and compliance frameworks including HIPAA, PCI, ISO27001/18, SOC1/2, NIST, CIS -Knowledge of various Security Development Lifecycle approaches -CISSP certified

Perks & Benefits

-Flexible PTO -Healthy, free lunches and snacks every day -Allocations for continuous learning & development -Discounted gym membership

Veeva’s headquarters is located in the San Francisco Bay Area with offices in more than 15 countries around the world.

Veeva is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity or expression, religion, national origin or ancestry, age, disability, marital status, pregnancy, protected veteran status, protected genetic information, political affiliation, or any other characteristics protected by local laws, regulations, or ordinances. If you need assistance or accommodation due to a disability or special need when applying for a role or in our recruitment process, please contact us at talent_accommodations@veeva.com.