Veracode: Sr. Director, Information Security

Our Mission Securing the software that powers your world. At Veracode, we are focused on that mission every day. Veracode is recognized as a premier provider of SaaS-based application security solutions, transforming the way companies secure applications in todays software driven world. We provide our customers with a solid foundation on which to build security into their modern agile development processes.

Overview

Veracode is seeking an experienced, energetic, engaging and visionary leader who wants to become part of a dedicated and high performing team of compliance and information security professionals. In this role, you will have the opportunity to lead the team that makes our corporate and SaaS infrastructure and customer data more secure. A key element of this role is working with executive management to determine acceptable levels of risk for the organization. This position is responsible for establishing and maintaining a corporate-wide information security management program to ensure that information assets are adequately protected. The position will report to the Veracode CTO, who is on the Veracode executive team.

The role of Sr. Director of Information Security will include the following responsibilities:

  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program
  • Lead the identification, reporting, and response to information security incidents.
  • Responsible for staying abreast of the changing threat landscape of internal and external cyber security threats and appropriately responding to them
  • Work directly with the business units to facilitate risk assessment and risk management processes
  • Develop and enhance an information security management framework
  • Provide leadership to the enterprise's information security organization
  • Partner with business stakeholders across the company to raise awareness of risk management concerns
  • Assist with the overall business technology planning, providing a current knowledge and future vision of technology and systems
  • Develop metrics for measuring and improving the effectiveness of the overall information security plan. Report to the executive team and board.

Required Skills/Experience:

  • BS or MS in Computer Science, Engineering, or Information Security
  • Minimum of eight to 12 years of experience in a combination of risk management, information security and IT jobs
  • Familiarity with some relevant security frameworks such as FedRAMP, ISO 27001, GDPR, PCI, etc.
  • Excellent written and verbal communication skills and high level of personal integrity
  • Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams
  • Experience with contract and vendor negotiations and management including managed services.
  • Specific experience in DevOps or other best in class development practices.
  • Experience with AWS computing across virtualized environments.
  • Ability to prioritize and multitask. Flexibility and adaptability in work approach

The Veracode Way:

We Have a Passion and Commitment for Security
We consider security in everything we do. We act to preserve the trust our customers place in us.

We Help Our Customers Change the World
We deliver peace of mind to our customers so they can focus on the pursuit of their missions.

We Have Big Goals and Expect Big Outcomes
We are results driven. We take risks, compete boldly, and deliver valuable outcomes to our customers.

We Are Committed to Making Progress Together
We collaborate with each other, our user communities, our industry and together lead the world forward.

We Value Each Other
We value diversity. We have empathy for each other and assume positive intent.

We Are Proud to be Veracode
We have fun together. We honor who we are and work hard to achieve our potential.

More About Working at Veracode:

Veracode, is a leader in helping organizations secure the software that powers their world. Veracodes SaaS platform and integrated solutions help security teams and software developers find and fix security-related defects at all points in the software development lifecycle, before they can be exploited by hackers. Our complete set of offerings help customers reduce the risk of data breaches, increase the speed of secure software delivery, meet compliance requirements, and cost effectively secure their software assets- whether thats software they make, buy or sell.

Veracode serves more than 1,400 customers across a wide range of industries, including nearly one-third of the Fortune 100, three of the top four U.S. commercial banks and more than 20 of Forbes 100 Most Valuable Brands. Learn more at www.veracode.com, on the Veracode blog, on Twitter and in the Veracode Community.

At Veracode youll have the opportunity to eliminate barriers for our customers and earn a competitive compensation and total rewards package all while pushing the boundaries of whats possible by collaborating with a diverse team of global innovators. In short, Veracodes fun, diverse, and fast-paced culture has put us on the map as one of the best employers in Information Technology.

We offer competitive salary, company-sponsored premium Medical/Prescription & Dental Plans, company-paid Holidays, Vacation, Anniversary Service and Sick Days, 401(k) Plan, Education/Training Reimbursement, Charitable Gift Program, Adoption Assistance Program.

We are equal opportunity employers. As such, it is our corporate policy to fill positions with qualified candidates regardless of the candidates race, color, sex, age, religion, ancestry, national origin, citizenship status, marital status, sexual orientation, gender identity, genetic information, disability, pregnancy, military status, veteran status or any other protected group status.

Privacy: https://www.veracode.com/legal-privacy

Full-time