The Role

The Engineering Manager - Cloud Security is a critical role within League’s security team. This role offers you the opportunity to mentor, coach, and lead a motivated team of security engineers, shape the long-term vision for Cloud and DevOps security, and realize the cross-functional roadmap in partnership with League’s engineering organization.

As Engineering Manager - Cloud Security, you are responsible for a security engineering team focused on implementing and maintaining security tools and controls that all League systems will utilize. You have a strong technical background which allows you to engage in architecture recommendations and occasional design reviews. You collaborate with leaders across the company to align on your team’s priorities, objectives, processes and deliverables. You foster an environment of technical excellence, collaboration and career growth.

In this role, you will:

• Foster a culture of secure-by-design into our technologies and organization.
• Actively improve the security of applications, infrastructure, and cloud that support business goals
• Support security reviews and provide recommendations that are inline with League’s security best practices.
• Work with Engineering leaders and stakeholders to identify dependencies and support the successful delivery of our product roadmap
• Work closely with engineering teams to integrate security testing early in the software development process.
• Oversee and manage a team of League security engineers
• Deploy and manage security tools and manage escalations as required
• Work as part of a cross functional guild to develop and maintain security policies, procedures and standards
• Hire and nurture security engineers through mentorship and career advocacy. Provide goals, career paths, promotion guidance, and motivation to your direct reports
• Stay up-to-date with the latest security technologies. Recommend and implement as appropriate
• Identify and manage cross-team dependencies; facilitate communication between multiple initiatives
• Be an advocate for building security into our products and driving down risk
• Facilitate daily stand-ups, resolving blocked tasks, assisting with planning and estimation.

About You:

• 5+ years of experience as an infrastructure or security engineer focused in cloud infrastructure and CI/CD pipelines
• 3+ years experience leading an engineering team
• Good knowledge of common system and application vulnerabilities and countermeasures
• Direct and recent working experience with at least two of the following compliance programs: ISO 27001, SOC 2, HIPAA or HITRUST
• You have a degree in a security, computer science or software engineering from a reputable post-secondary institution, or equivalent job experience
• You have exposure to application or cloud security and secure coding best practices
• You understand how web and mobile applications are built
• Preferred certifications: CISSP, CCSP, OSCP
• Experience with GCP and AWS security best practices

Security-related responsibilities:

• Compliance with Information Security Policies
• Compliance with League’s secure coding practice
• Ensure access management is performed in compliance with the employee’s role and responsibilities
• Responsibility and accountability for executing League’s policies and procedures within the department/ team
• Notification of HR, Legal, Compliance & Security of any incidents, breaches or policy violations