Security Program Manager
TripleLift
Job Location
Job Type
Full TimeVisa Sponsorship
Not AvailableRelocation
AllowedThe Role
About TripleLift
We're TripleLift, an advertising platform on a mission to elevate digital advertising through beautiful creative, quality publishers, actionable data and smart targeting. Through over 1 trillion monthly ad transactions, we help publishers and platforms monetize their businesses. Our technology is where the world's leading brands find audiences across online video, connected television, display and native ads. Brand and enterprise customers choose us because of our innovative solutions, premium formats, and supportive experts dedicated to maximizing their performance.
As part of the Vista Equity Partners portfolio, we are NMSDC certified, qualify for diverse spending goals and are committed to economic inclusion. Find out how TripleLift raises up the programmatic ecosystem at triplelift.com.
The Role
TripleLift is seeking a Technical Program Manager to join our security team full time. We are an established company in the advertising technology sector, trying to tackle some of the most challenging problems facing the industry. You will be joining a rapidly growing and complex environment and will work as part of a small team that will be responsible for developing, evangelizing, and executing our security roadmap. You’ll help drive improvements in our security operations capability and support critical projects enhancing our detect-and-respond capabilities.
Responsibilities
Oversee and drive cybersecurity roadmap delivery including management and prioritization of project boards and tickets
Succinctly communicate risks, expectations, and timelines to stakeholders and management through key reports and KPIs covering cybersecurity- specific metrics
Partner with Product, Engineering, and Technology teams and other cross-functional stakeholders to promote secure application development and continuous improvement of SDLC
Champion assessment and improvement for security posture of cloud-based infrastructure in alignment with CIS benchmarks
Facilitate development, implementation, and continuous improvement of policy and KPI-related documentation, ensuring alignment with organizational goals and relevant security standards
Evangelize the security program and present focused concepts to the TripleLift workforce
- Play a critical role in building and maintaining a global security compliance program based on NIST CSF
Contribute to the architecture, maintenance, and development of security controls that meet compliance requirements
Identify and creatively resolve complex technical and cross-functional issues and risks
Scale programs by leveraging technology and driving automation of operational processes
Desired Skills and Attributes
2+ years experience as a Technical Program Manager, Technical Product Manager, Engineering Manager or related discipline
2+ years experience managing programs related to cybersecurity, risk management, compliance, and/or information systems
Diverse and deep experience in delivering cross-functional projects with multiple dependencies and constraints
Proven experience working with agile project management tools such as Jira and analytics platforms such as Looker and Grafana
Understanding of security fundamentals with relation to various cybersecurity and compliance frameworks, particularly NIST CSF, but any of: PCI, SOC2, HITRUST, ISO 27001/2, or similar
Experience with managing cloud-native environments and leveraging reporting capabilities
Strives for continued learning opportunities to build upon craft
Values correctness and efficiency and has an exceptional eye for detail
Ability to work quickly and independently with minimal oversight
Ability to work under pressure and multitask in a fast-paced, growing environment
Desire to accept feedback and constructive criticism
Holds a Cybersecurity certification, e.g., CISSP, CISA/CISM, Security+, etc.
Holds a Program or Project Management certification, e.g., PMP, CSM
Education Requirement
A Bachelor’s degree in a technical subject is preferred, although candidates with relevant experience who hold other degrees will be considered.
Experience Requirement
At least two years of experience working as a Technical Program Manager, preferably within Cybersecurity, or related/adjacent role
#LI-TP1
Life at TripleLift
At TripleLift, we’re a team of great people who like who they work with and want to make everyone around them better. This means being positive, collaborative, and compassionate. We hustle harder than the competition and are continuously innovating.
Learn more about TripleLift and our culture by visiting our LinkedIn Life page.
Diversity, Equity, Inclusion and Accessibility at TripleLift
At TripleLift, we believe in the power of diversity, equity, inclusion and accessibility. Our culture enables individuals to share their uniqueness and contribute as part of a team. With our DE&I initiatives, TripleLift is a place that works for you, and where you can feel a sense of belonging and support. At TripleLift, we will consider and champion all qualified applicants for employment without regard to race, creed, color, religion, national origin, sex, age, disability, sexual orientation, gender identity, gender expression, genetic predisposition, veteran, marital, or any other status protected by law. TripleLift is proud to be an equal opportunity employer.
Learn more about our DEI efforts at https://triplelift.com/diversity-equity-and-inclusion/
Privacy Policy
Please see our Privacy Policies on our TripleLift and 1plusX websites.
TripleLift does not accept unsolicited resumes from any type of recruitment search firm. Any resume submitted in the absence of a signed agreement will become the property of TripleLift and no fee shall be due.