empty

Engineering Security Manager

Veeam

Job Description

Posted on: 
November 24, 2024

Summary and company overview

Veeam®, the #1 global market leader in data protection and ransomware recovery, is on a mission to empower every organization to not just bounce back from a data outage or loss but bounce forward.

With Veeam, organizations achieve radical resilience through data security, data recovery, and data freedom for their hybrid cloud.Â

The Veeam Data Platform delivers a single solution for cloud, virtual, physical, SaaS, and Kubernetes environments that gives IT and security leaders peace of mind that their appsÂ

and data are protected and always available.

Headquartered in Seattle with offices in more than 30 countries, Veeam protects over 450,000 customers worldwide, including 74% of the Global 2000, who trust Veeam to keep their businesses running.

Responsibilities

  • Lead application and operational security efforts within VDC engineering, ensuring alignment with industry best practices and regulatory requirements.
  • Collaborate with engineering teams to integrate secure design and development practicesÂ
  • Work with senior engineers to drive threat modeling activities and suggest improvements to the security of the system
  • Establish and monitor internal SLAs for vulnerability remediation
  • Work in close partnership with the corporate Security and GRC team to ensure a unified security posture.
  • Ensure that all engineering teams are following established controls so that when internal and external audits are conducted it requires little-to-no effort from Engineering teams.
  • Partner with the corporate Security and GRC team to prepare for audits and track compliance requirements.
  • Work with product management to ensure the roadmap and priorities include appropriate focus on compliance initiatives.

Job Requirements

Required Qualifications:

  • 7+ years of experience in security, compliance with at least 3 years in a management or leadership position.
  • Strong knowledge of security best practices and compliance frameworks (e.g., SOC 2, ISO 27001, FedRamp, etc.)
  • In-depth understanding of Common Vulnerabilities and Exposures (CVEs) and experience with NIST frameworks, including NIST 800-160 for systems security engineering and secure development practices.
  • Experience working with or within large-scale corporate Security and GRC teams.
  • Proficiency in security management tools and vulnerability scanning software.
  • Familiarity with cloud platforms (e.g., AWS, Azure), containerization, and DevSecOps principles.
  • Experience with compliance tools and processes, as well as audit preparation and response.
  • Excellent problem-solving skills, with a strategic mindset and attention to detail.
  • Strong communication and collaboration skills, with the ability to work across technical and non-technical teams.
  • Proven leadership skills, with a track record of building and mentoring high-performing teams.
  • Ability to thrive in a fast-paced, dynamic environment with shifting priorities.
  • Bachelor’s degree in Computer Science, Information Security, or a related field (Master’s degree preferred).

Additional commentary

Due to the fact that this position will deal with highly sensitive data and will support federal customers, we are only considering US citizens at this time. Security clearance is not required, but there is a slight chance it may be requested in the future.

The salary range posted is On Target Earnings (OTE), which is inclusive of base and variable pay. When making an offer of employment, Veeam will take into consideration the candidate’s expectations, experience, education, scope of responsibility for the role, and the current market demands.

United States of America Pay Range

$190,700 — $272,400 USD

Veeam Software is an equal opportunity employer and does not tolerate discrimination in any form on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. All your information will be kept confidential.

Please note that any personal data collected from you during the recruitment process will be processed in accordance with our Recruiting Privacy Notice.

The Privacy Notice sets out the basis on which the personal data collected from you, or that you provide to us, will be processed by us in connection with our recruitment processes.Â

By applying for this position, you consent to the processing of your personal data in accordance with our Recruiting Privacy Notice.

Summary and company overview

Veeam®, the #1 global market leader in data protection and ransomware recovery, is on a mission to empower every organization to not just bounce back from a data outage or loss but bounce forward.

With Veeam, organizations achieve radical resilience through data security, data recovery, and data freedom for their hybrid cloud.Â

The Veeam Data Platform delivers a single solution for cloud, virtual, physical, SaaS, and Kubernetes environments that gives IT and security leaders peace of mind that their appsÂ

and data are protected and always available.

Headquartered in Seattle with offices in more than 30 countries, Veeam protects over 450,000 customers worldwide, including 74% of the Global 2000, who trust Veeam to keep their businesses running.

Apply now