Sr. Cybersecurity Engineer

Veeco

23h•$121,568 - $153,987•Remote

About The Position

At Veeco Instruments, cybersecurity isn’t a support function—it’s a strategic capability that enables innovation, protects what matters most, and shapes how the business operates. We’re looking for a Senior Cybersecurity Engineer who wants to leave their mark by building and evolving meaningful security programs, influencing how risk is understood across the enterprise, and raising the bar for how security is practiced. This role is ideal for a seasoned, hands-on security professional who values ownership, autonomy, and impact. You’ll work as a trusted partner with engineering, IT, and business leaders—designing scalable solutions, tackling complex challenges, and helping leaders make confident, risk‑informed decisions. This is a senior individual contributor role with real influence and visibility, where your judgment and expertise will directly shape Veeco’s security and risk posture. This position may be remote from any location within the United States.

Requirements

A bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field
Minimum 8 years of progressive experience in cybersecurity, including demonstrated ownership of enterprise security programs and risk management initiatives.
One or more professional certifications such as CISSP, CISM, CISA, or CRISC.

Nice To Haves

A track record as a senior individual contributor who takes responsibility for outcomes—not just tasks.
The ability to communicate security risks in a way that resonates with executive and non‑technical audiences.
Experience defining and applying security governance frameworks and operating models in complex environments.
Hands‑on leadership of risk assessments, audits, and penetration testing efforts.
Practical experience applying NIST CSF and NIST RMF.
Strong understanding of threat modeling, threat intelligence, and risk prioritization.
Familiarity with core security technologies (e.g., firewalls, IDS/IPS, endpoint protection, DLP, SIEM).
Strong analytical thinking, sound judgment, and the ability to make decisions with incomplete information.
The confidence and credibility to influence stakeholders at all levels.
A growth mindset and a genuine desire to continuously improve how security is done.

Responsibilities

Build, own, and mature enterprise cybersecurity programs—defining operating models, governance, policies, standards, and scalable processes that support business goals.
Take ownership of Veeco’s enterprise cybersecurity risk posture by designing and running a comprehensive risk management program that brings together assessments, vulnerability management, threat intelligence, and remediation.
Lead internal and third‑party security assessments (including penetration tests and audits), serving as the primary point of accountability from scoping through remediation and closure.
Develop and operationalize threat modeling and threat intelligence practices that anticipate emerging risks—not just react to them.
Partner closely with engineering, IT, legal, compliance, and business leaders to design practical, risk‑based mitigation strategies that work in the real world.
Translate complex technical risks into clear, actionable insights that enable confident decision‑making at the executive level.
Influence how security is embedded into architecture, operations, and day‑to‑day business processes across the organization.
Operate with a high degree of independence, driving outcomes end‑to-end and exercising sound judgment in ambiguous situations.
Mentor and support junior team members, helping to elevate security capability across the organization.
Stay current on evolving threats, technologies, and best practices, and thoughtfully apply what’s relevant to Veeco.
Occasional travel (up to 10%) may be required.