- Plan annual ISO, SOC 2, and other third-party audits from start to finish; perform gap assessments and advise on gap closure; collect, review and catalog evidence; present evidence to auditors to make the case for compliance; and manage the overall interactions with external auditors
- Serve as an advisor to engineering, IT, and business process teams to assist them in supporting compliance efforts
- Advise management on risk and control issues, provide practical recommendations to ensure that risks are properly managed
- Collaborate with senior leaders to determine audit scope
- Monitor compliance with Veeva policies and procedures
- Communicate status with senior leaders and other stakeholders
- Analyze and evaluate other audit frameworks to determine applicability and compliance resource requirements
- Identify policy and process improvement opportunities, automation opportunities, develop recommendations, and communicate with stakeholders collaboratively
- At least five years of experience leading organizations to obtain or retain ISO 27001 certification, or at least five years of experience leading organizations to achieve a “clean” SOC 2 Type 2 report. This includes:
- Mastery of the requirements for all the controls in the ISO 27001 and/or SOC 2 standards.
- Engaging stakeholders (internal customers, executive leadership, technology and business teams) to motivate and influence behaviors and decisions in support of compliance.
- Deep experience in assessing control gaps and advising engineering and business process teams on closing those gaps.
- Generating and collecting evidence necessary to demonstrate adherence to the ISO 27001 and SOC 2 standards.
- Reviewing and organizing evidence to ensure that it can be used to demonstrate standards compliance.
- Managing the audit process to ensure that auditors receive the necessary information and adhere to the correct audit scope
- At least two years technical or compliance experience with services built and implemented in a public cloud service (eg, AWS, Azure, Google Cloud)
- Demonstrated experience and track record of success working in a team-oriented, collaborative environment
- Demonstrated ability to lead and work independently
- Highly attentive to details
- Strong verbal and written communication skills
- Experience with FISMA, FedRAMP, SOX, HIPAA regulations/compliance frameworks
- Relevant certifications such as CISSP, CISA, CRISC, CIPP, CIPM, CIPT
- Technical experience in an engineering, software development, or technical support role
- Bachelor’s degree in computer science, information security, or other related discipline
- Medical, dental, vision, and basic life insurance
- Flexible PTO and company paid holidays
- Retirement programs
- 1% charitable giving program
- Base pay: $70,000 - $120,000
- The salary range listed here has been provided to comply with local regulations and represents a potential base salary range for this role. Please note that actual salaries may vary within the range above or below, depending on experience and location. We look at compensation for each individual and base our offer on your unique qualifications, experience, and expected contributions. This position may also be eligible for other types of compensation in addition to base salary, such as variable bonus and/or stock bonus.
Work Where It’s Best for You
Work Anywhere means you can work in an office or at home on any given day. It’s about getting the work done in the way and place that works best for each person. This applies across all locations and departments.
Work Anywhere does not mean work at any time. We have predictable core hours where employees are generally available for meetings and collaboration. Employees are focused and available during core hours.
We invest in our offices to make them places where our employees like to go. If you work in the office three or more days a week, you will have a dedicated office workspace. Our offices function as hubs to draw people in, create social bonds, and where random connections and mixing of ideas happen. We’re investing more in offices, culture, and offsite meetings, not less.
Product teams are organized in regional product hubs for optimal collaboration and live within a time zone of their hub. Our current product hubs are located in Pleasanton, Columbus, Boston, Kansas City, New York City, Raleigh, and Toronto. We create opportunities for teams to get together in person regularly.
Customer-facing roles, such as Sales and Professional Services, live near and/or travel to their customers.
When an employee moves within a country it does not cause a change in salary. Where you live impacts you and your family. Not knowing if your compensation will change if you move can cause stress and uncertainty for everyone. We wanted to eliminate that.
Work at Veeva. Work where it’s best for you.
A different kind of company. A Public Benefit Corporation.
Unlike a traditional corporation, whose only legal duty is to maximize shareholder value, PBCs consider their public benefit purpose and the interests of those materially affected by the corporation’s conduct—including customers, employees, and the community—in addition to shareholders’ interests.
What sets us apart
In February 2021, Veeva became the first public company to convert to a Public Benefit Corporation (PBC).
Unlike a traditional corporation, whose only legal duty is to maximize shareholder value, PBCs consider their public benefit purpose and the interests of those materially affected by the corporation’s conduct—including customers, employees, and the community—in addition to shareholders’ interests.
Veeva’s public benefit purpose is to help make the industries we serve more productive and create high-quality employment opportunities.
Work Anywhere means you can work in an office or at home on any given day. It’s about getting the work done in the way and place that works best for you.
We invest in our offices to make them places where our employees like to go. If you work in the office three or more days a week, you will have a dedicated office workspace.
Product teams are organized in regional product excellence hubs for optimal collaboration and live within a time zone of their hub. Our current product hubs are located in Pleasanton, Columbus, Boston, Kansas City, New York City, Raleigh, and Toronto. We create opportunities for teams to get together in person regularly.
Customer-facing roles, such as Sales and Professional Services, live near and/or travel to their customers.
At Veeva, we believe in giving back. Veeva’s support for charitable causes is entirely employee driven because we think giving is personal and should be directed by the individual. With our 1% Veeva Giving program, each employee receives an amount equivalent to 1% of their base salary annually to support the non-profit(s) of their choice. We don’t dictate favored corporate causes or ask employees to donate to specific non-profits. We never support a charitable cause in exchange for commercial advantage or preferential treatment.
Veeva’s core values — do the right thing, customer success, employee success, and speed — guide our decision making and define our culture. Doing the right thing means that we are concerned about more than just financial success and return to shareholders. We recognize a responsibility to customers, employees, environment, and society.As individuals, we pride ourselves on being good people who are honest, fair, and direct. We treat others with respect. As a company, we strive to be a good corporate citizen, a positive force in the business community, active in our communities, and an example to others.
Our equity program is designed to enable the vast majority of our employees to participate. Our unique approach to awarding equity grants allows our employees to be shareholders so they can benefit financially in the company’s growth.
Veeva has taken a strong stance against the use of non-compete agreements that can limit employee opportunities. We do not require our employees to sign non-compete agreements, and we have taken legal action to fight the unfair use of these agreements by other companies because we believe such agreements limit an employee’s fundamental right to work where they choose. We believe in our people and want them to be successful here at Veeva or wherever their careers take them.
News and recognition
Grow, contribute and be recognized
“Veeva’s engineering teams take a pragmatic approach to software development. We offer an ideal environment for engineers who value focus, speed and integrity in their work.”
—Jacob Marcus
VP, Engineering
“I appreciate that Veeva values autonomy over alignment. As a result, we get to make decisions as a small team and ship products faster.”
—Shilpa Chandermohan
Software Engineer
“As a software engineer at Veeva, I’m proud to be doing meaningful work building clinical trial software that will benefit so many people.”
—Durward Denham
Software Engineer