Security Program Manager

About TripleLift

We're TripleLift, an advertising platform on a mission to elevate digital advertising through beautiful creative, quality publishers, actionable data and smart targeting. Through over 1 trillion monthly ad transactions, we help publishers and platforms monetize their businesses. Our technology is where the world's leading brands find audiences across online video, connected television, display and native ads. Brand and enterprise customers choose us because of our innovative solutions, premium formats, and supportive experts dedicated to maximizing their performance.

As part of the Vista Equity Partners portfolio, we are NMSDC certified, qualify for diverse spending goals and are committed to economic inclusion. Find out how TripleLift raises up the programmatic ecosystem at triplelift.com.

The Role

TripleLift is seeking a Technical Program Manager to join our security team full time. We are an established company in the advertising technology sector, trying to tackle some of the most challenging problems facing the industry. You will be joining a rapidly growing and complex environment and will work as part of a small team that will be responsible for developing, evangelizing, and executing our security roadmap. You’ll help drive improvements in our security operations capability and support critical projects enhancing our detect-and-respond capabilities.

Responsibilities

Oversee and drive cybersecurity roadmap delivery including management and prioritization of project boards and tickets

Succinctly communicate risks, expectations, and timelines to stakeholders and management through key reports and KPIs covering cybersecurity- specific metrics

Partner with Product, Engineering, and Technology teams and other cross-functional stakeholders to promote secure application development and continuous improvement of SDLC

Champion assessment and improvement for security posture of cloud-based infrastructure in alignment with CIS benchmarks

Facilitate development, implementation, and continuous improvement of policy and KPI-related documentation, ensuring alignment with organizational goals and relevant security standards

Evangelize the security program and present focused concepts to the TripleLift workforce

- Play a critical role in building and maintaining a global security compliance program based on NIST CSF

Contribute to the architecture, maintenance, and development of security controls that meet compliance requirements

Identify and creatively resolve complex technical and cross-functional issues and risks

Scale programs by leveraging technology and driving automation of operational processes

Desired Skills and Attributes

2+ years experience as a Technical Program Manager, Technical Product Manager, Engineering Manager or related discipline

2+ years experience managing programs related to cybersecurity, risk management, compliance, and/or information systems

Diverse and deep experience in delivering cross-functional projects with multiple dependencies and constraints

Proven experience working with agile project management tools such as Jira and analytics platforms such as Looker and Grafana

Understanding of security fundamentals with relation to various cybersecurity and compliance frameworks, particularly NIST CSF, but any of: PCI, SOC2, HITRUST, ISO 27001/2, or similar

Experience with managing cloud-native environments and leveraging reporting capabilities

Strives for continued learning opportunities to build upon craft

Values correctness and efficiency and has an exceptional eye for detail

Ability to work quickly and independently with minimal oversight

Ability to work under pressure and multitask in a fast-paced, growing environment

Desire to accept feedback and constructive criticism

Holds a Cybersecurity certification, e.g., CISSP, CISA/CISM, Security+, etc.

Holds a Program or Project Management certification, e.g., PMP, CSM

Education Requirement

A Bachelor’s degree in a technical subject is preferred, although candidates with relevant experience who hold other degrees will be considered.

Experience Requirement

At least two years of experience working as a Technical Program Manager, preferably within Cybersecurity, or related/adjacent role

---

#LI-TP1

Life at TripleLift

At TripleLift, we’re a team of great people who like who they work with and want to make everyone around them better. This means being positive, collaborative, and compassionate. We hustle harder than the competition and are continuously innovating.

Learn more about TripleLift and our culture by visiting our LinkedIn Life page.

Diversity, Equity, Inclusion and Accessibility at TripleLift

At TripleLift, we believe in the power of diversity, equity, inclusion and accessibility. Our culture enables individuals to share their uniqueness and contribute as part of a team. With our DE&I initiatives, TripleLift is a place that works for you, and where you can feel a sense of belonging and support. At TripleLift, we will consider and champion all qualified applicants for employment without regard to race, creed, color, religion, national origin, sex, age, disability, sexual orientation, gender identity, gender expression, genetic predisposition, veteran, marital, or any other status protected by law. TripleLift is proud to be an equal opportunity employer.

Learn more about our DEI efforts at https://triplelift.com/diversity-equity-and-inclusion/

Privacy Policy

Please see our Privacy Policies on our TripleLift and 1plusX websites.

TripleLift does not accept unsolicited resumes from any type of recruitment search firm. Any resume submitted in the absence of a signed agreement will become the property of TripleLift and no fee shall be due.