Senior Cybersecurity Engineer

About Veeco
You probably don’t realize it, but what we do at Veeco touches the lives of every person, every day. It’s a bold statement, but it’s true. From the smartphones in our pockets that access the world’s collective knowledge, to the cloud-based services where all that information lives, to high-speed wireless communication and computing power needed to drive artificial intelligence, augmented and virtual reality, gaming and so much more, our technology is all around us. 
 

We design, develop, manufacture, and service highly complex, cutting-edge machines used by our customers to create the essential devices that drive the digital age, connect the world, and improve the human experience. Along with the world’s leading technology companies, many of which are household names, we help solve their most difficult material science challenges, enabling technologies for a more connected, sustainable, and convenient world.
 

We’re looking for material difference-makers to join our growing team. Interested? Learn more at www.veeco.com/careers.

Overview:

Veeco Instruments is seeking a Senior Cybersecurity Engineer to shape the future of risk management at Veeco.  This position will play a crucial role in ensuring the holistic security and integrity of Veeco’s systems, networks, and data. Specifically, you will be responsible for overseeing risk management and security assessment processes and implementing strategies to prioritize and mitigate potential cyber threats effectively.

The role will be responsible for:

• Develop and maintain a comprehensive view of enterprise risk incorporating vulnerabilities, security assessment results, and newly identified program gaps. 
• Conduct control assessments to identify and prioritize potential security gaps in processes, systems, networks, and applications.
• Lead all external security assessments of Veeco’s environment including vendor selection, budgeting, scheduling, and driving remediation activities.
• Establish threat modeling processes to identify and prioritize potential attacks and recommend the necessary defense measures.
• Monitor and analyze threat intelligence sources to proactively identify changes to Veeco’s threat landscape and recommend appropriate countermeasures.
• Collaborate with cross-functional teams to develop risk mitigation strategies and recommend appropriate compensating controls to minimize risk.
• Prepare and present reports to management highlighting identified risks, vulnerabilities, recommended actions, and remediation progress.
• Mentor and provide guidance to junior cybersecurity team members fostering their professional development.
• Stay current on the latest technologies, trends, and practices in cybersecurity, risk management, and relevant regulations to continuously improve our risk management program.

Desired Qualifications (not all are necessary):

• • Bachelor’s degree in computer science, Computer Information Systems, Cybersecurity, or other applicable fields with 8 or more years of experience working in security controls, risk assessment, or other applicable cybersecurity fields.
  • Relevant risk management or cybersecurity certifications (CISSP, CISM, CISA, CRISC)
  • In-depth knowledge of and related experience in applying security risk assessment methodologies and control frameworks in an enterprise environment, including NIST CSF and NIST RMF.
  • Strong understanding of threat modeling techniques and tools.
  • Familiarity with security technologies used to implement security controls, including firewalls, intrusion detection and prevention systems, endpoint protection, data loss prevention, and SIEM solutions.
  • Exceptional analytical, problem-solving, and critical thinking skills to identify and assess potential risks and develop effective mitigation strategies.

We'll Expect You To:

• Implement best practices, strategies, methodologies, and approaches to all assigned tasks and complex projects
• Speak your mind when you find opportunities for technology or process improvement.
• Develop repeatable standards and processes to ensure process uniformity and quality
• Document, deploy, and improve risk management processes
• Work well in cross-team troubleshooting efforts.
• Push your knowledge through Veeco-funded advanced training opportunities
• Be comfortable saying, “I don’t know.”

Up to 10% travel is required.

The expected salary range for this position is $114,949 - $137,938 + bonus + benefits. When determining your pay, we will consider your location, experience, and other job-related factors. If your salary requirements exceed the advertised range and you remain interested in career opportunities with Veeco, we encourage you to apply or email your resume to recruiting@veeco.com.

Veeco is an Equal Opportunity/Affirmative Action Employer. Applicants will be considered for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, protected veteran status, disability, or any other characteristics protected by applicable federal, state or local law.