M+E Technology Job Board
Sr. Director, Information Security
Veritone
WE ARE VERITONE
We are driven by the belief that Artificial Intelligence is mankind’s greatest invention. It is the key to building a safer, more vibrant, transparent, and empowered society. We are determined to be an active contributor to shaping our future for the better. We care about the ethical implications of AI and the prosperity and well-being of all individuals, as well as the growth and continued successes of our employees, customers, and partners.
Veritone’s mission today is more important than ever. We’re here to democratize AI and enable every organization and every person with the power of AI. What started in 2014 with the idea of providing unified access to hundreds of cognitive engines through one common software infrastructure, evolved to the world’s first AI operating system, aiWARE, which orchestrates a diverse ecosystem of cognitive engines to power intelligent automation for both commercial and government organizations. As we progress, we will continue to move humans from “in” to “on” to “out of the loop” to help them accelerate workflows, save time and costs, and uncover new insights and opportunities. You can view us at: www.veritone.com / www.veritoneone.com
WHAT YOU’LL DO
As a Senior Director of Information Security, you’ll be the highest level leader fully accountable for IT cybersecurity, compliance and disaster recovery programs. You will lead the information security and compliance team to support Veritone’s employees and customers worldwide. You’ll be responsible for strategic planning and day-to-day operational oversight of information security programs, operations and compliance, creating and maturing processes, and driving effectiveness in the cybersecurity space across Veritone.
This position will report to the CIO and have company wide visibility. Veritone is a Remote First company.
Responsibilities
Oversee Veritone’s Security team to ensure coordination with interdepartmental partners to provide intelligence, coordination, and communications on availability and security-related matters.
Develop, in conjunction with a wide range of stakeholders, an effective and practical cyber security strategy, then optimize security programs and manage security operations.
Lead Veritone’s compliance teams to ensure security and compliance are aligned and mutually beneficial.
Manage security operations team and activities include identity and access management, vulnerability management, logging and monitoring, network and system security, threat modeling and protection, incident response.
Assess the effectiveness of existing processes, procedures, controls and safeguards to prevent cyber-security breaches.
Partnering with software development teams to manage application security, give actionable recommendations to software development teams.
Identify, evaluate and report on information security risks, practices and projects to the executive team
Provide subject matter expertise and leadership on security and compliance standards and best practices (e.g. SOX, SOC2, NIST, ISO27001, etc.)
Manage internal and external audits, maintain or optimize annual attestation or certifications
Business continuity and disaster recovery
Facilitate the development of enterprise security services such as insider threat, travel security, and security awareness training
Development and execution of a security metric reporting to ensure business and senior leadership have a proper view of the current security state
Remain up-to-date on emerging security trends that may impact Veritone
WHAT YOU’LL NEED
10+ years of progressive leadership experience in computing and information security, including experience with cloud environments and application security.
Experience as a security or IT engineer, preferably at a late-stage startup or publicly traded company with a combination of 5+ years of experience managing teams of varying sizes and timezones
A proven track record in developing information security policies and procedures, and successful execution.
Extensive knowledge of business risk, risk assessment and risk-based decision making.
Able to communicate security and risk-related concepts to both technical and non-technical audiences (in business terms), including board level.
A natural influencer and coalition builder; passionate about building high performing teams.
Ability to inspire and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals; an innovative leader, problem solver and consultant.
Ability to evangelize IT security to make it a critical part of business operations; build trust and respect for the security function.
Good understanding of ITIL/ITSM and its practical application to security
Experience in incident handling, forensic analysis, system administration, vulnerability management, system and network architecture, threat intelligence
Strong leadership skills
Strong problem solving skills
Strong project management skills – demonstrated ability to manage multiple projects and priorities
Strong communication skills
Strong customer service skills
Ability to handle high pressure situations in a productive and professional manner
BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field
Applicants without a degree but with relevant military or work experience and/or training will be considered, and should apply their previous experience to the qualification areas above
Passion for developing great people
One or more of industry-leading cybersecurity professional certifications: Cisco CCNP (Routing & Switching or Security), Certified Information Systems Security Professional (CISSP), GIAC Security Expert (GSE) certification
Bonus Points
Established proficiency with common SIEM and logging platforms (e.g., Splunk, ELK, FireEye)
Experience in MDR solutions
Familiarity with zero-trust infrastructure
Investigation / Clearance
Must be a U.S. Citizen with the potential ability to obtain a Public Trust investigation (Tier 2) and / or Secret Clearance.
Current or Past Active Clearance is highly desirable.
Veritone
WE ARE VERITONE
We are driven by the belief that Artificial Intelligence is mankind’s greatest invention. It is the key to building a safer, more vibrant, transparent, and empowered society. We are determined to be an active contributor to shaping our future for the better. We care about the ethical implications of AI and the prosperity and well-being of all individuals, as well as the growth and continued successes of our employees, customers, and partners.
Veritone’s mission today is more important than ever. We’re here to democratize AI and enable every organization and every person with the power of AI. What started in 2014 with the idea of providing unified access to hundreds of cognitive engines through one common software infrastructure, evolved to the world’s first AI operating system, aiWARE, which orchestrates a diverse ecosystem of cognitive engines to power intelligent automation for both commercial and government organizations. As we progress, we will continue to move humans from “in” to “on” to “out of the loop” to help them accelerate workflows, save time and costs, and uncover new insights and opportunities. You can view us at: www.veritone.com / www.veritoneone.com
WHAT YOU’LL DO
As a Senior Director of Information Security, you’ll be the highest level leader fully accountable for IT cybersecurity, compliance and disaster recovery programs. You will lead the information security and compliance team to support Veritone’s employees and customers worldwide. You’ll be responsible for strategic planning and day-to-day operational oversight of information security programs, operations and compliance, creating and maturing processes, and driving effectiveness in the cybersecurity space across Veritone.
This position will report to the CIO and have company wide visibility. Veritone is a Remote First company.
Responsibilities
Oversee Veritone’s Security team to ensure coordination with interdepartmental partners to provide intelligence, coordination, and communications on availability and security-related matters.
Develop, in conjunction with a wide range of stakeholders, an effective and practical cyber security strategy, then optimize security programs and manage security operations.
Lead Veritone’s compliance teams to ensure security and compliance are aligned and mutually beneficial.
Manage security operations team and activities include identity and access management, vulnerability management, logging and monitoring, network and system security, threat modeling and protection, incident response.
Assess the effectiveness of existing processes, procedures, controls and safeguards to prevent cyber-security breaches.
Partnering with software development teams to manage application security, give actionable recommendations to software development teams.
Identify, evaluate and report on information security risks, practices and projects to the executive team
Provide subject matter expertise and leadership on security and compliance standards and best practices (e.g. SOX, SOC2, NIST, ISO27001, etc.)
Manage internal and external audits, maintain or optimize annual attestation or certifications
Business continuity and disaster recovery
Facilitate the development of enterprise security services such as insider threat, travel security, and security awareness training
Development and execution of a security metric reporting to ensure business and senior leadership have a proper view of the current security state
Remain up-to-date on emerging security trends that may impact Veritone
WHAT YOU’LL NEED
10+ years of progressive leadership experience in computing and information security, including experience with cloud environments and application security.
Experience as a security or IT engineer, preferably at a late-stage startup or publicly traded company with a combination of 5+ years of experience managing teams of varying sizes and timezones
A proven track record in developing information security policies and procedures, and successful execution.
Extensive knowledge of business risk, risk assessment and risk-based decision making.
Able to communicate security and risk-related concepts to both technical and non-technical audiences (in business terms), including board level.
A natural influencer and coalition builder; passionate about building high performing teams.
Ability to inspire and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals; an innovative leader, problem solver and consultant.
Ability to evangelize IT security to make it a critical part of business operations; build trust and respect for the security function.
Good understanding of ITIL/ITSM and its practical application to security
Experience in incident handling, forensic analysis, system administration, vulnerability management, system and network architecture, threat intelligence
Strong leadership skills
Strong problem solving skills
Strong project management skills – demonstrated ability to manage multiple projects and priorities
Strong communication skills
Strong customer service skills
Ability to handle high pressure situations in a productive and professional manner
BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field
Applicants without a degree but with relevant military or work experience and/or training will be considered, and should apply their previous experience to the qualification areas above
Passion for developing great people
One or more of industry-leading cybersecurity professional certifications: Cisco CCNP (Routing & Switching or Security), Certified Information Systems Security Professional (CISSP), GIAC Security Expert (GSE) certification
Bonus Points
Established proficiency with common SIEM and logging platforms (e.g., Splunk, ELK, FireEye)
Experience in MDR solutions
Familiarity with zero-trust infrastructure
Investigation / Clearance
Must be a U.S. Citizen with the potential ability to obtain a Public Trust investigation (Tier 2) and / or Secret Clearance.
Current or Past Active Clearance is highly desirable.