Senior Security Engineer

Veeva Systems Columbus , OH 43216

Posted 3 months ago

At Veeva, we build enterprise cloud technology that powers the biggest names in the pharmaceutical, biotech, consumer goods, chemical & cosmetics industries. Our customers make vaccines, life-saving medicines, and life-enhancing products that make a difference in everyday lives. Our technology has transformed these industries; enabling them to get critical products and services to market faster. Our core values, Do the Right Thing, Customer Success, Employee Success, and Speed, guide us as we make our customers more efficient and effective in everything they do.

The Role

Veeva's Security Engineering Team is seeking Security Engineers with a wide range of technology experience to help keep Veeva secure and safe from attackers. Our team in Columbus is growing, and we want you to join us!

This role has a broad scope, ranging from Veeva's AWS services, infrastructure and processes, discovering weaknesses in Veeva's architecture, and working with various platform teams, third party testers and researchers to sharpers our detective and preventative capabilities. This role presents an ultimate test of one's security knowledge and ability, along with the support of a team of highly skilled individuals.

What You'll Do

  • A Security Engineer at Veeva is expected to be strong in multiple domains. Engineers in this role work closely with teams throughout Security, such as the Threat Intelligence, Application Security and Security Operations teams, as well as provide technical leadership and advice to teams and leaders throughout Veeva. You will be in direct contact with numerous teams in a variety of business platforms, giving you firsthand knowledge about how Veeva is built and how it operates at a deep, technical level. Additionally, you will leverage the knowledge you gain about Veeva to find new ways to break software and processes throughout the company.

  • Engineers in this role must show exemplary judgment in making technical trade-offs between short-term fixes and long-term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. Individuals in this role will be expected to provide thought leadership for the organization as you discover, invent and innovate throughout the course of their duties. Above all else, a strong sense of customer obsession is necessary to focus on the ultimate goal of keeping Veeva and its customers secure.

  • Participate in the deployment, design and configuration of security tools throughout Veeva with few limits and restrictions.

  • Conduct full cycle engagements with Veeva's platform teams independently, or as part of a team.

  • Tune and configure security tools to drive out the noise for reliable security information.

  • Participate in mitigation of active security incidents.

  • Communicate findings and discoveries to prioritize and execute remediation plans.

  • Coordinate with new platform teams with the automation of security tools.

  • Maintain security's AWS VPC, EC2 or other platforms.

  • Work with systems such as WAF, IDS/IPS, Cryptographic Management, DLP, AD, VMWare, Docker, IAM, RBAC, SSO, O-Auth, Carbon Black, Rapid 7, and other security tools.

Requirements

  • BS in Computer Science or related field, or equivalent work experience

  • 6+ years in an Information Security role, engineering, cryptographic, or similar

  • Advanced knowledge and understanding in various disciplines such as security engineering, system and network security, authentication and security protocols, cryptography, and application security

  • Experience with interpreted or compiled languages: PowerShell, Python, Ruby, Perl, PHP, C/C++, Java, C#

  • Experience with Redhat, AWS Linux, AWS Linux 2, Windows Server 2008, 2012, 2016 and 2019 etc.

  • Understanding of one or more standards: SANS Top 20, NIST 800-53, CIS, CSC and other security standards

Nice to Have

  • Master of Science in Cyber Security, Information Security, MIS or equivalent

  • Experience with cloud service providers and their offerings, preferably AWS and its various technologies and APIs

  • Industry security certifications such as CISSP, CEH or others

  • Experience in Wireless and Network assessment in enterprise infrastructure

  • Experience with HSM's, CA Root Authority, Certificate Management

  • Experience in Active Directory, Federated LDAP and SSO

  • Experience with Web Application Firewalls (WAF), IDS/IPS or other security platforms

  • Experience providing training and mentorship

  • Demonstrable teamwork skills and resourcefulness

  • Ability to make concrete progress in the face of ambiguity and imperfect knowledge

Perks & Benefits

  • Flexible PTO

  • Allocations for continuous learning & development

  • Health & wellness programs

#LI-DNP

Veeva's headquarters is located in the San Francisco Bay Area with offices in more than 15 countries around the world.

Veeva is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity or expression, religion, national origin or ancestry, age, disability, marital status, pregnancy, protected veteran status, protected genetic information, political affiliation, or any other characteristics protected by local laws, regulations, or ordinances.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cloud & Security Engineer Hashicorp Vault

Pwc

Posted 1 week ago

VIEW JOBS 8/9/2019 12:00:00 AM 2019-11-07T00:00 A career in Information Technology, within Internal Firm Services, will provide you with the opportunity to support our core business functions by deploying applications that enable our people to work more efficiently and deliver the highest levels of service to our clients. You'll focus on managing the design and implementation of technology infrastructure within PwC, developing and enhancing both client and internal facing applications within PwC, and providing technology tools that help create a competitive advantage for the Firm to drive strategic business growth. Our System Architecture team helps build customisable specific system solutions that enhance PwC's system capabilities to appropriately serve all client needs. As part of the team, you'll use enterprise architecture across application areas to build delivery models that map PwC capabilities to business needs outlined by clients. To really stand out and make us ?t for the future in a constantly changing world, each and every one of us at PwC needs to be an authentic and inclusive leader, at all grades/levels and in all lines of service. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. As a Senior Manager, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: * Take action to ensure everyone has a voice, inviting opinion from all. * Establish the root causes of issues and tackle them, rather than just the symptoms. * Initiate open and honest coaching conversations at all levels. * Move easily between big picture thinking and managing relevant detail. * Anticipate stakeholder needs, and develop and discuss potential solutions, even before the stakeholder realises they are required. * Develop specialised expertise in one or more areas. * Advise stakeholders on relevant technical issues for their business area. * Navigate the complexities of global teams and engagements. * Build trust with teams and stakeholders through open and honest conversation. * Uphold the firm's code of ethics and business conduct. This role will be responsible for operations of multiple complex stage and production data lake environments. While they do not do development work on the platforms, they perform code release deployments and technology upgrades to these environments and will be required to troubleshoot and monitor issues that require knowledge of development languages, COTS applications, and infrastructure (cloud and on prem). Job Requirements and Preferences: Basic Qualifications: Minimum Degree Required: High School Diploma Minimum Years of Experience: 6 year(s) of progressive roles managing IT architecture and engineering designs and domains. Preferred Qualifications: Degree Preferred: Bachelor Degree Preferred Fields of Study: Information Technology, Computer Systems Analysis, Management Information Systems, Computer Applications, Computer Engineering, Computer Programming, Engineering Certification(s) Preferred: ISC2 CCSP Certified Cloud Security Professional, ITIL Certification(s), or CCNA/P Preferred Knowledge/Skills: Demonstrates intimate abilities and/or a proven record of success as a team leader in: * Using tools like Azure DevOps/VSTS, validate requirements, deploy, and troubleshoot deployments of code and technologies in stage and production environments; * Demonstrating leadership, influencing and communication skills, as well as the ability to drive continuous performance improvements with the stakeholders, vendors and technology subject matter specialists; * Establishing a stable, reliable secure and high performing data platform; * Building, maintaining and controlling stage and production environments; * Troubleshooting complex incidents in stage and production environments; * Establishing proactive monitoring and alerting capabilities exist for all components of the platform; * Establishing system health and capacity is reviewed and enhanced as needed; * Documenting SOPs, and perform knowledge transfer to others; * Leading knowledge management initiatives across a global DevOps team; * Possessing experience with Hadoop administration; * Demonstrating fluency in at least two development languages such as Java, Perl, PHP or Python; * Managing Azure, AWS, GCP or distributed VMware environments; * Demonstrating knowledge of one container technology such as Docker, and at least two database technologies such as. MySQL, MS-SQL, or Postgresql; * Working with code management tooling such as Github / Gitlab; * Working with CI/CD pipeline tooling and deployments; * Possessing experience with Linux and Windows administration; and, * Demonstrating experience in configuration management across a multi-platform estate such as Ansible, Puppet or Salt. All qualified applicants will receive consideration for employment at PwC without regard to race; creed; color; religion; national origin; sex; age; disability; sexual orientation; gender identity or expression; genetic predisposition or carrier status; veteran, marital, or citizenship status; or any other status protected by law. PwC is proud to be an affirmative action and equal opportunity employer. For positions based in San Francisco, consideration of qualified candidates with arrest and conviction records will be in a manner consistent with the San Francisco Fair Chance Ordinance. Pwc Columbus OH

Senior Security Engineer

Veeva Systems