Lead Security Engineer

The Role

TripleLift is seeking a Lead Security Engineer to join our team full time. We are an established company in the advertising technology sector, trying to tackle some of the most challenging problems facing the industry. You will be joining a rapidly growing and complex environment and will work as part of a small team that will be responsible for developing, evangelizing, and executing our security roadmap. You’ll help drive improvements in our security operations capability and support critical projects enhancing our detect-and-respond capabilities.

Responsibilities

• Cloud Infrastructure Management: Oversee and manage cloud infrastructure components, ensuring proper configuration, resource provisioning, and adherence to security best practices for AWS. Collaborate with development teams to define infrastructure requirements and implement scalable and secure cloud architectures.
• DevOps Integration and Automation: Collaborate with engineering teams to integrate security into CI/CD pipelines, version control systems, and infrastructure as code practices. Develop automation scripts and tools to streamline security controls and ensure consistent deployment of secure cloud resources.
• Network and Infrastructure Security: Design and implement secure network architectures aligned with a zero-trust model. Implement and manage Web Application Firewalls (WAFs), VPNs, and relevant network access controls. Collaborate with cloud engineers and developers to ensure secure configurations and protocols across services. Support the deployment and management of zero-trust security tooling to enforce least privilege and continuous authentication.
• Identity and Access Management (IAM): Develop and maintain robust IAM policies, roles, and permissions, implementing least privilege access controls, multi-factor authentication, and identity federation across cloud platforms. 
• Endpoint Security and Privilege Management: Architect, implement, and maintain an endpoint privilege management strategy to enforce least privilege principles across all user workstations and servers. This includes defining and managing user roles, application control policies, and elevation rules to prevent unauthorized software execution and limit the impact of potential security breaches. Collaborate with the IT department to deploy and manage endpoint security controls, ensuring seamless integration with existing systems and minimal disruption to user productivity while significantly enhancing the organization's security posture against malware and insider threats.
• Security Monitoring and Incident Response: Establish and manage security monitoring tools, SIEM systems, and incident response processes to detect, respond, and mitigate security incidents in cloud environments. Develop and enhance incident response playbooks and implement automated incident response and alerting mechanisms.
• Compliance and Governance: Implement and maintain compliance controls, ensuring adherence to industry regulations and cloud-specific compliance requirements. Conduct regular audits, prepare reports, and actively manage governance processes.
• Problem Solving and Risk Analysis: Assess security risks, identify vulnerabilities, and propose effective solutions to mitigate risks within cloud environments.
• Cloud Security Best Practices: Stay up-to-date with cloud security best practices, emerging trends, and technologies. 
• Communication and Collaboration: Collaborate effectively with cross-functional teams and stakeholders to communicate security requirements, provide guidance on secure cloud practices, and ensure alignment with organizational objectives. Work closely with developers to promote a culture of security awareness and knowledge sharing.

Desired Skills and Attributes

• 8+ years of experience in security engineering or cloud security roles, with proven expertise in securing cloud-native, highly distributed environments.
• Proven ability to lead technical projects independently with minimal oversight, from design to deployment.
• Track record of mentoring junior engineers and influencing secure design across multiple teams.
• Strong communication skills with the ability to translate technical concepts for engineering, product, and compliance stakeholders.
• Comfortable engaging cross-functionally (engineering, DevOps, legal, compliance) to drive security improvements and cultural change.
• Strong programming proficiency in Java, Javascript, GoLang and/or Python with a focus on secure coding, automation, and infrastructure tooling.
• Experience integrating security controls in CI/CD pipelines, including GitHub Actions or similar.
• Deep hands-on experience with AWS services such as IAM, Security Hub, GuardDuty, VPC, S3, CloudTrail, CloudWatch, Config, and Lambda.
• Proficient in the use of SIEM systems, IDS/IPS, vulnerability scanning, and penetration testing tools.
• Strong understanding of cloud networking concepts including VPC peering, security groups, NACLs, private link, and hybrid connectivity (VPN/direct connect).
• Proven ability to analyze and effectively address security issues and incidents.
• Understanding of security fundamentals with relation to various cybersecurity and compliance frameworks, particularly NIST CSF, but any of: PCI, SOC2, HITRUST, ISO 27001/2, or similar is a plus
• Experience supporting internal audits, user access reviews, and policy exception workflows using tools like Jira or GRC platforms.
• Openness to adapt in response to emerging cloud technologies and security threats.
• Receptive to feedback and open to constructive criticism for continuous improvement.
• Holds a Cybersecurity certification, e.g. CISSP, CISA, Security+, or AWS Certified Security Specialty

#LI-CS1