Senior Security Engineer

Summary

Join Veeva Systems, a leading life sciences industry cloud company, as a Security Engineer. You will play a key role in onboarding and optimizing security solutions for Veeva's product teams. This involves collaborating with development teams to implement and tune security tools, analyze alerts, and develop custom tools using Python. You will also participate in evaluating new security tools and ensuring they meet Veeva's needs. The role requires strong security engineering expertise, software development skills, and experience with cloud services. Veeva offers a flexible work environment and a comprehensive benefits package.

Requirements

• 5+ years in an Information Security role managing security tools and infrastructure
• Experience maintaining automation scripts to streamline security processes
• Software development experience using Python
• Experience with cloud service providers, preferably AWS and its various technologies and APIs
• Advanced knowledge and understanding in various disciplines such as security engineering, system and network security, authentication, and security protocols
• Understanding of OSWAP Top 10, SANS Top 20, NIST 800-53, CIS, CSC, or other security standards
• Technical skills to translate business requirements into terms that developers can understand
• Bachelor’s degree or higher in a relevant field

Responsibilities

• Work with development teams to implement security tools such as IDS, IPS, FIM, and WAF
• Analyze security tool alerts and work with teams to tune the alerts to eliminate false positives
• Write code supporting data lake, data warehouse collection, and data transformation processes
• Perform code reviews on code written by the security team
• Application development/scripting with Python, or another language
• Maintain security infrastructure, tools, and systems
• Document best practices, user/process/implementation guides, etc
• Mentor other security engineers

Preferred Qualifications

• Master of Science in Cyber Security, Information Security, MIS, or equivalent
• Certifications: CISSP, CCSP, AWS Solutions Architect/Security
• Hands-on cloud security experience (IAM permissions and infrastructure security)
• Hands-on network security experience (firewalls, runtime application self-protection, NAC, 802 .1x, IPS, malware detection, etc. )
• Experience with incident response technologies, signature development & analysis of false positive alerts
• Experience with web application security testing tools and techniques (SAST, DAST, SCA, fuzzing, etc.)

Benefits

• Medical, dental, vision, and basic life insurance
• Flexible PTO and company paid holidays
• Retirement programs
• 1% charitable giving program