Back to jobs

Director, Security

Remote, US

About the Opportunity

The Director of Security will report directly to the Chief Security & Trust Officer and focus on safeguarding the company, its assets, and its platform. This role is critical in ensuring the security and integrity of Veza's assets, platform and products and maintaining customer trust. This position requires a strategic thinker with strong leadership skills and a deep understanding of the ever-evolving cybersecurity landscape.

You will:

  • Product Security and Platform Integrity
    • Collaborate with product and engineering teams to embed security and privacy by design principles into Veza's offerings.
    • Ensure the protection of customer data and maintain a resilient customer experience.
    • Conduct regular security audits and assessments of Veza's platform to identify and mitigate potential vulnerabilities.
    • Drive the "Veza on Veza" initiative to showcase the company's internal use of its own products.
  • Risk Management and Compliance
    • Develop and implement internal security policies, procedures, and controls.
    • Oversee ongoing compliance with industry standards such as SOC2 and ISO27001, and prepare for future certifications like GDPR and FedRAMP.
    • Manage third-party and supply chain security risks, ensuring compliance with Veza's security standards.
    • Conduct regular risk assessments, penetration testing, and manage incident response processes.
  • Security Training and Awareness
    • Develop and deliver comprehensive security training programs for employees, contractors, and partners.
    • Foster a culture of security awareness and vigilance throughout the organization.
    • Keep abreast of the latest security trends, threats, and best practices, and share insights with relevant stakeholders.
  • Customer Trust and Support
    • Address advanced-level security-related customer queries and concerns, providing expert guidance and solutions.
    • Collaborate with the Customer Success team to ensure customer security needs are met and to build long-term trust.
    • Contribute to the development of security-related content and resources for customers.
  • Technology and Infrastructure Security
    • Ensure the resilience and operational stability of Veza's IT systems, applications, data, and technology platforms.
    • Collaborate with IT and infrastructure teams to implement and maintain robust security controls.
    • Monitor and analyze security logs and events to detect and respond to potential threats.

You have:

  • Education:
    • Bachelor's degree in Computer Science, Cybersecurity, or a related field; Master's degree preferred.
  • Experience:
    • Minimum of 10 years of experience in information security, with at least 5 years in a leadership role.
    • Deep understanding of security principles, frameworks, and best practices (e.g., NIST, ISO27001, OWASP).
    • Strong knowledge of identity and access management, data protection, and cloud security.
    • Experience with security audits, risk assessments, and compliance management.
    • Excellent communication and interpersonal skills, with the ability to engage with diverse stakeholders.
    • Proven track record of building and leading high-performing security teams.
    • Relevant security certifications such as CISSP, CISM, or CISA are highly desirable.

 

Our Culture 

We’re driven to build a strong company culture and are looking for individuals with solid alignment with the following:

  • Ownership Mindset
  • Act with Integrity
  • Guardians of our Customers
  • Opinionated Humility
  • Build Trust, Earn Trust

At Veza, your base pay is one part of your total compensation package. For this position, the reasonably expected pay range can be discussed with your recruiter for the level at which this job has been scoped. Your base pay will depend on several factors, including your experience, qualifications, education, location, and skills. In the event that you are considered for a different level, a higher or lower pay range would apply. This position is also eligible for equity and a competitive benefits package.

Veza is proud to be an equal opportunity employer. We are committed to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, or other applicable legally protected characteristics. We also consider qualified applicants according to applicable federal, state, and local laws. If a candidate with a disability requires an accommodation during the recruitment process, please email recruiting@veza.com

About Veza

Veza is the identity security company. Identity and security teams use Veza to secure identity access across SaaS apps, on-prem apps, data systems, and cloud infrastructure. Veza solves the blind spots of traditional identity tools with its unique ability to ingest and organize permissions metadata in the Veza Authorization Graph. Global enterprises like Blackstone, Wynn Resorts, and Expedia trust Veza to visualize access permissions, monitor permissions activity, automate access reviews, and remediate privilege violations. Founded in 2020, Veza is headquartered in Redwood City, California, and is funded by Accel, Bain Capital, Ballistic Ventures, GV, Norwest Venture Partners, and True Ventures. Visit us at veza.com and follow us on LinkedIn, Twitter, and YouTube.

Apply for this job

*

indicates a required field

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf


Education

Select...
Select...
Select...

Select...
Select...

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Veza Technologies, Inc. ’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Select...
Select...
Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Select...

Voluntary Self-Identification of Disability

Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury
Select...

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.