- Build strong relationships and effectively influence Veeva’s product and IT engineering
- Translate security risks to business impact
- Research, prioritize, coordinate, and communicate security solution recommendations
- Provide security architecture advice in support of product application development, cloud infrastructure, and enterprise technology projects
- Perform code analysis, application security reviews, and contribute to the application security training program
- Stay current with security technologies and make usage recommendations
- Maintain an expert knowledge level of Information Security and the related issues, systems, processes, products, and services.
- Excellent written and verbal communication
- Ability to evangelize technical security needs to product leadership and engineers
- Broad experience with information, system, and network security concepts and components
- Demonstrated experience with architecture and security reviews, threat modeling applications and identifying areas of risk
- Experience implementing strategies to support secure and compliant architectures
- Deep understanding of the OWASP Top 10 application security risks and how to address them
- Expert knowledge of Amazon AWS, Microsoft Azure or other cloud computing platform offerings and security related services
- Experience with web application security scanning software and related assessment tools such as SAST/DAST/SCA
- Working knowledge of encryption, hashing, secure random number generation, key derivation, key management, digital signatures
- Understanding of internet-scale, distributed, multi-tenant architecture and services.
- Knowledge of Java and the Java Ecosystem. Proficiency with Python, JavaScript and other scripting languages
- BS in Computer Science or equivalent with 10+ years of experience
- Experience with assessing and providing recommendations for securing generative AI solutions
- Working knowledge of the Microsoft Security Development Lifecycle (SDL), OWASP Software Assurance Maturity Model (SAMM), or Building Security in Maturity Model (BSIMM).
- Familiar with compliance regulations like; ISO, GDPR, SOC2, SOX
- MS in Cyber Security, Information Security, MIS or equivalent
- Industry security certifications such as CISSP or others
- Experience in Application penetration testing, CTF competitions, CVE research and/or Bug Bounty recognition
- Experience in Web and Mobile (Android/iOS) based application/service assessment
Work Where It’s Best for You
Work Anywhere means you can work in an office or at home on any given day. It’s about getting the work done in the way and place that works best for each person. This applies across all locations and departments.
Work Anywhere does not mean work at any time. We have predictable core hours where employees are generally available for meetings and collaboration. Employees are focused and available during core hours.
We invest in our offices to make them places where our employees like to go. If you work in the office three or more days a week, you will have a dedicated office workspace. Our offices function as hubs to draw people in, create social bonds, and where random connections and mixing of ideas happen. We’re investing more in offices, culture, and offsite meetings, not less.
Product teams are organized in regional product hubs for optimal collaboration and live within a time zone of their hub. Our current product hubs are located in Pleasanton, Columbus, Boston, Kansas City, New York City, Raleigh, and Toronto. We create opportunities for teams to get together in person regularly.
Customer-facing roles, such as Sales and Professional Services, live near and/or travel to their customers.
When an employee moves within a country it does not cause a change in salary. Where you live impacts you and your family. Not knowing if your compensation will change if you move can cause stress and uncertainty for everyone. We wanted to eliminate that.
Work at Veeva. Work where it’s best for you.
A different kind of company. A Public Benefit Corporation.
Unlike a traditional corporation, whose only legal duty is to maximize shareholder value, PBCs consider their public benefit purpose and the interests of those materially affected by the corporation’s conduct—including customers, employees, and the community—in addition to shareholders’ interests.
What sets us apart
In February 2021, Veeva became the first public company to convert to a Public Benefit Corporation (PBC).
Unlike a traditional corporation, whose only legal duty is to maximize shareholder value, PBCs consider their public benefit purpose and the interests of those materially affected by the corporation’s conduct—including customers, employees, and the community—in addition to shareholders’ interests.
Veeva’s public benefit purpose is to help make the industries we serve more productive and create high-quality employment opportunities.
Work Anywhere means you can work in an office or at home on any given day. It’s about getting the work done in the way and place that works best for you.
We invest in our offices to make them places where our employees like to go. If you work in the office three or more days a week, you will have a dedicated office workspace.
Product teams are organized in regional product excellence hubs for optimal collaboration and live within a time zone of their hub. Our current product hubs are located in Pleasanton, Columbus, Boston, Kansas City, New York City, Raleigh, and Toronto. We create opportunities for teams to get together in person regularly.
Customer-facing roles, such as Sales and Professional Services, live near and/or travel to their customers.
At Veeva, we believe in giving back. Veeva’s support for charitable causes is entirely employee driven because we think giving is personal and should be directed by the individual. With our 1% Veeva Giving program, each employee receives an amount equivalent to 1% of their base salary annually to support the non-profit(s) of their choice. We don’t dictate favored corporate causes or ask employees to donate to specific non-profits. We never support a charitable cause in exchange for commercial advantage or preferential treatment.
Veeva’s core values — do the right thing, customer success, employee success, and speed — guide our decision making and define our culture. Doing the right thing means that we are concerned about more than just financial success and return to shareholders. We recognize a responsibility to customers, employees, environment, and society.As individuals, we pride ourselves on being good people who are honest, fair, and direct. We treat others with respect. As a company, we strive to be a good corporate citizen, a positive force in the business community, active in our communities, and an example to others.
Our equity program is designed to enable the vast majority of our employees to participate. Our unique approach to awarding equity grants allows our employees to be shareholders so they can benefit financially in the company’s growth.
Veeva has taken a strong stance against the use of non-compete agreements that can limit employee opportunities. We do not require our employees to sign non-compete agreements, and we have taken legal action to fight the unfair use of these agreements by other companies because we believe such agreements limit an employee’s fundamental right to work where they choose. We believe in our people and want them to be successful here at Veeva or wherever their careers take them.
News and recognition
Grow, contribute and be recognized
“Veeva’s engineering teams take a pragmatic approach to software development. We offer an ideal environment for engineers who value focus, speed and integrity in their work.”
—Jacob Marcus
VP, Engineering
“I appreciate that Veeva values autonomy over alignment. As a result, we get to make decisions as a small team and ship products faster.”
—Shilpa Chandermohan
Software Engineer
“As a software engineer at Veeva, I’m proud to be doing meaningful work building clinical trial software that will benefit so many people.”
—Durward Denham
Software Engineer