Engineering Security Manager

The Veeam Data Cloud team is seeking a strategic and experienced manager to lead our Engineering team’s Security and Compliance functions. As the Engineering Security Manager of Security for VDC, you will build and guide a team of security-focused engineers. This role is essential in strengthening our security posture and advancing compliance readiness. You will collaborate with engineering teams to implement robust security and compliance practices. You will also work closely with the Veeam Security and GRC team to ensure alignment on security and compliance initiatives. This role is remote anywhere within the US.

Your tasks will include:  

• Lead application and operational security efforts within VDC engineering, ensuring alignment with industry best practices and regulatory requirements. 

• Collaborate with engineering teams to integrate secure design and development practices  

• Work with senior engineers to drive threat modeling activities and suggest improvements to the security of the system 

• Establish and monitor internal SLAs for vulnerability remediation 

• Work in close partnership with the corporate Security and GRC team to ensure a unified security posture.

• Ensure that all engineering teams are following established controls so that when internal and external audits are conducted it requires little-to-no effort from Engineering teams. 

• Partner with the corporate Security and GRC team to prepare for audits and track compliance requirements. 

• Work with product management to ensure the roadmap and priorities include appropriate focus on compliance initiatives. 

What we expect from you:  

• 7+ years of experience in security, compliance with at least 3 years in a management or leadership position. 

• Strong knowledge of security best practices and compliance frameworks (e.g., SOC 2, ISO 27001, FedRamp, etc.) 

• In-depth understanding of Common Vulnerabilities and Exposures (CVEs) and experience with NIST frameworks, including NIST 800-160 for systems security engineering and secure development practices. 

• Experience working with or within large-scale corporate Security and GRC teams. 

• Proficiency in security management tools and vulnerability scanning software 

• Familiarity with cloud platforms (e.g., AWS, Azure), containerization, and DevSecOps principles. 

• Experience with compliance tools and processes, as well as audit preparation and response. 

• Excellent problem-solving skills, with a strategic mindset and attention to detail. 

• Strong communication and collaboration skills, with the ability to work across technical and non-technical teams. 

• Proven leadership skills, with a track record of building and mentoring high-performing teams. 

• Ability to thrive in a fast-paced, dynamic environment with shifting priorities. 

• Bachelor’s degree in Computer Science, Information Security, or a related field (Master’s degree preferred). 

Due to the fact that this position will deal with highly sensitive data and will support federal customers, we are only considering US citizens at this time. Security clearance is not required, but there is a slight chance it maybe requested in the future.

#LI-MM1

#LI-REMOTE