The Role

TripleLift is actively seeking an expert Lead Cloud Engineer, with an in-depth understanding of cloud technologies, to enrich our dedicated team on a full-time basis. As a pioneer in the advertising technology sector, we are relentless in our pursuit to resolve the most complex challenges within the industry.

In this role, you will be integral to a fast-paced and complex environment, collaborating with a nimble team. Your core responsibilities will encompass the design, advocacy, and realization of our cloud and security roadmaps. Through your proactive involvement in enhancing our cloud capabilities, you will be pivotal to the success of crucial projects aimed at fortifying our overarching security framework.

Responsibilities

• Cloud Infrastructure Management: Oversee and manage cloud infrastructure components, ensuring proper configuration, resource provisioning, and adherence to security best practices for AWS. Collaborate with development teams to define infrastructure requirements and implement scalable and secure cloud architectures.
  
  

• DevOps Integration and Automation: Collaborate with engineering teams to integrate security into CI/CD pipelines, version control systems, and infrastructure as code practices. Develop automation scripts and tools to streamline security controls and ensure consistent deployment of secure cloud resources.

• Network and Infrastructure Security: Design and implement secure network architectures, including firewalls, VPNs, and intrusion detection/prevention systems. Collaborate with network engineers and developers to implement secure network configurations and protocols.

• Identity and Access Management (IAM): Develop and maintain robust IAM policies, roles, and permissions, implementing least privilege access controls, multi-factor authentication, and identity federation across cloud platforms.

• Security Monitoring and Incident Response: Establish and manage security monitoring tools, SIEM systems, and incident response processes to detect, respond, and mitigate security incidents in cloud environments. Develop and enhance incident response playbooks and implement automated incident response and alerting mechanisms.

• Compliance and Governance: Implement and maintain compliance controls, ensuring adherence to industry regulations and cloud-specific compliance requirements. Conduct regular audits, prepare reports, and actively manage governance processes.

• Problem Solving and Risk Analysis: Assess security risks, identify vulnerabilities, and propose effective solutions to mitigate risks within cloud environments.

• Cloud Security Best Practices: Stay up-to-date with cloud security best practices, emerging trends, and technologies.

• Communication and Collaboration: Collaborate effectively with cross-functional teams and stakeholders to communicate security requirements, provide guidance on secure cloud practices, and ensure alignment with organizational objectives. Work closely with developers to promote a culture of security awareness and knowledge sharing.

Desired Skills and Attributes

• Minimum of 8 years of experience in a cloud engineering role or similar capacity.

• Demonstrable proficiency in programming with a strong emphasis on secure coding standards.

• 5+ years of experience with GoLang and/or Python or similar object oriented language is a must

• Proven ability to lead and execute technical projects.

• Ability to provide effective technical mentorship to team members, guiding them towards successful project execution.

• In-depth knowledge of AWS cloud services backed by practical experience.

• Proficient in the use of SIEM systems, IDS/IPS, vulnerability scanning, and penetration testing tools.

• Comprehensive understanding of cloud networking, including VPC, routing, and security controls.

• Proven ability to analyze and effectively address security issues and incidents.

• Understanding of security fundamentals with relation to various cybersecurity and compliance frameworks, particularly NIST CSF, but any of: PCI, SOC2, HITRUST, ISO 27001/2, or similar is a plus

• Outstanding interpersonal and communication skills for collaborative endeavors.

• Openness to adapt in response to emerging cloud technologies and security threats.

• Hands-on experience with coding and scripting languages, specifically for executing modifications to cloud infrastructure via CLI and CI/CD.

• Profound understanding of securely managing cloud-native environments with the ability to deploy tools in such settings.

• Comfortable taking project ownership and demonstrating key achievements.

• Passion for continuous learning to further enhance technical acumen.

• Valued for an unwavering commitment to correctness, efficiency, and exceptional attention to detail.

• Ability to work swiftly and independently with no supervision.

• Capable of working under pressure, multitasking, and thriving in a fast-paced, dynamic environment.

• Receptive to feedback and open to constructive criticism for continuous improvement.

#LI-TP1