Engineering Manager, Secure Cloud Engineering at ActiveCampaign
Sorry, this job was removed at 4:02 a.m. (CST) on Wednesday, February 9, 2022
Our Engineering Managers are people with varying technical backgrounds and interests who are heavily involved in the technical details of their team. As a manager, the main focus is keeping our teams efficient and executing on the right goals. We build teams that are inclusive, collaborative, and have a strong sense of ownership for the things they build.
If you have a passion and track record for solving problems; moreover, have strong leadership skills and a strong software development background, this is a great fit for you.
What your day could consist of:
- Works in conjunction with the CISO to execute on the organization’s security strategy and vision across ActiveCampaign’s global locations
- Hands-on technical leadership for a team of global Security Cloud Engineers (SCE), playing a key role in ensuring consistent implementation of security controls and design principles
- Leads the SCE team to drive security related initiatives including, but not limited to creating/maintenance of security policies, implementation of security procedures/controls, and monitoring in alignment with security standards
- Leads the design, deployment, management and improvement of critical security infrastructure services/tools (examples: encryption, authentication and authorization, PKI, secrets management, logging, detection, OS hardening, access controls and patch management) and as required by business need
- Assists the SecOps team by partnering with Engineering and IT to understand, scope, prioritize and remediate vulnerabilities
- Partners with the production operations team on securing and best practices to implement and maintain cloud infrastructure security environments
- Provides advisory services, as a security subject matter expert to investigate, design/architect, and implement cloud security architectures and capabilities, including repeatable security controls and other engineering best practices (ISO, SOC2, GDPR, PCI-DSS) as they are identified & required
- Reviews technology solutions with Engineering and IT teams, focusing on security design, network architectures, security policies and standards, cybersecurity risk frameworks and data protection; taking domestic and global regulatory requirements into account
- Performs vendor evaluations and proof of concepts for service improvements, in-flight projects and emerging technologies
- Builds, maintains and suggests improvements for the legacy and modern security services, including network infrastructure and physical and virtual environmentsCreates a collaborative work environment that fosters partnership with other departments, autonomy, quality, inclusivity, innovation, learning, respect and transparency
- Works with Security Operations to perform incident triage, determine scope, urgency, and potential impact of security incidents
- Shares knowledge with team members via a formal mentoring relationship, by creating/reviewing design docs, giving technical talks and feedback
- Works with internal and external auditors for compliance initiatives
- Works with the Compliance Team to perform security gap assessments and implement remediations
- Works internally and externally to scope and complete infrastructure vulnerability scans and pen tests and works with Engineering teams on identified vulnerability remediation
- Monitors industry security updates, changes, technologies, emerging threats and best practices for continuous improvement
- Works closely with the ActiveCampaign People Team to hire highly skilled candidates from diverse backgrounds
What is needed:
- 5+ years of experience in Infrastructure and Information Security in physical and cloud environments
- 5+ years working on AWS running multiple production workloads
- 3+ years of hands-on technical leadership and people management experience
- Experience with various security technologies, (examples: encryption, authentication and authorization, PKI, secrets management, logging, detection, OS hardening, access controls and patch management)
- Experience with applications for monitoring infrastructure security and detecting intrusions
- Experience with incident response, threat modeling, and mitigation
- Working knowledge of common information security management frameworks such as SOC2 and ISO 27001
- Experience designing and implementing access control models for privileged access in fast-paced AWS cloud environment
- Experience with AWS security best practices and security controls using AWS services IAM, SSO, VPC, etc
- Experience with common internet protocols such as DNS, SMTP, LDAP, etc
- Self-motivated and strong sense of ownership of tasks
- Bachelors or Masters' degree in Computer Science or Information Security or equivalent work experience
- Experience building and deploying scalable applications in the cloud using CI/CD practices in several scripting languages
- Solid experience in Terraform
- Experience solving challenging technical problems with a focus on throughput and fast response time
- The ability to adapt quickly to changes in business requirements and work in an agile environment
- Proven experience to fail fast/build quickly with accuracy mentality
- You have worked on and/or understand distributed systems and large scale engineering challenges
- Strong communication and collaboration skills with a focus on the customer
About ActiveCampaign:
We are a category-defining Customer Experience Automation Platform (CXA) that helps over 150,000 businesses in 170 countries meaningfully engage with their customers. The platform gives businesses of all sizes access to 600+ pre-built automations that combine email marketing, marketing automation, CRM, and machine learning for powerful segmentation and personalization across social, email, messaging, chat, and text.
As a global multicultural company, we are proud of our inclusive culture which embraces diverse voices, backgrounds, and perspectives. We don’t just celebrate our differences, we believe our diversity is what empowers our innovation and success. You can find out more about our DEI initiatives here.
As one of the fastest-growing SaaS companies in the world, we are scaling rapidly to keep up with market demand. We are growing all of our teams and looking for people who share our values, deliver innovation frequently, and join us in our mission to grow our customer base from 150,000 today to millions. We have been ranked #4 Best Place to Work on Built In Chicago in 2021, a best workplace for remote employees by Quartz and received recognition as a great place to work across all of our regions, and continue to be globally recognized for our employee-centric culture here.
Perks and benefits:
ActiveCampaign is an employee-first culture. We take care of our employees at work and outside of work. You can see more of the details here, but some of our most popular benefits include:
-Comprehensive health and wellness benefits (including no premiums for employees on our HSA plan, telehealth and tele-mental health, and access to the Calm app for mediation)
-Open paid time off
-Generous 401(k) matching with no vesting
-Generous stipend to outfit your remote office
-Career growth including access to personal and professional coaching. We take a proactive approach to diversity and inclusion and offer parental leave, career pathing, and support employees’ ongoing learning and development through Udemy and access to life coaches via Modern Health
-Cool swag
ActiveCampaign is an equal opportunity employer. We recruit, hire, pay, grow and promote no matter of gender, race, color, sexual orientation, religion, age, protected veteran status, physical and mental abilities, or any other identities protected by law.
Our Employee Resource Groups (ERGs) strive to foster a diverse inclusive environment by supporting each other, building a strong sense of belonging, and creating opportunities for mentorship and professional growth for their members.
See More
