Director of Cloud Security
Redwood City, California, United States
Moloco
Moloco provides machine learning-based advertising solutions to drive growth for businesses of all sizes. Turn your first-party data into revenue.About MOLOCO
Moloco’s goal is to make the digital economy more equitable and profitable by delivering advanced machine learning to companies of all sizes. With Moloco’s machine learning platform for growth and performance, every app publisher and online retailer can now unlock the value of their unique, first-party data for user acquisition, retention, and monetization campaigns.
Founded in 2013, our advanced machine learning engine powers our product portfolio. Moloco Cloud DSP enables performance marketers to quickly scale user acquisition and achieve greater lifetime value through battle-tested prediction models. Moloco Retail Media Platform enables online retailers and marketplaces to establish their own performance ads business.
Our technology is best in class; we received the SMARTIES X silver award for Machine Learning and AI, and Moloco was named the Cross-Industry Winner for Google Cloud Customer Awards.
The company is in hyper-growth mode and we ranked #95 in the Inc. 5000 fastest-growing private companies for 2022. We ranked #91 among Deloitte’s 2021 Fast 500 and have been certified by 91% of the company via Great Places to Work.
It’s a great time to join this innovative team. Moloco is headquartered in Silicon Valley, with offices in San Francisco, New York, Seattle, London, Seoul, Singapore, Beijing, and Tokyo. For more information, visit www.moloco.com
The Impact You'll Be Contributing to Moloco:
We are in search of a reliable and steadfast security leader to build out best in class security operations that encompass security engineering and architecture, monitoring, vulnerability management, identity and access management and application security. In this highly visible role reporting to the CISO, you will play an integral role in securing our customers’ data from the ever-evolving cyber threat landscape by embedding a practical security mindset across engineering, data and product teams within the company.
Here’s what you’ll be working on:
The Director of Cloud Security will serve as a highly functional leader, driving operations and change across the organization by:
- Directing and overseeing day-to-day operation and effectiveness of all cloud security-related programs and initiatives.
- Establishing guidance and direction for securing Moloco’s VMs, containers, APIs, and other systems.
- Working with software development, infrastructure, and product teams to drive security by design into their process and raise the priority of security concerns in their backlogs.
- Assessing the risk associated with newly discovered vulnerabilities and directing the application of patches to remediate findings.
- Conducting information security risk assessments, internal and external vulnerability scans and penetration tests.
- Managing and maintaining vulnerability tooling and vulnerability managed service(s) to realize secure application CI/CD pipeline.
- Assessing and evaluating applications, infrastructure, rules, access controls, and configurations of various platforms.
- Recognizing common coding flaws at a high level to support Application Security oversight.
- Preparing reports that identify technical and/or procedural findings, which are accompanied with recommended remediation strategies and solutions.
- Close collaboration with Security Compliance and Privacy to ensure adherence to security (ISO 27001, SOC-2) and privacy (GDPR, CCPA) frameworks.
Here is what you need to succeed (Experience & Qualifications)
- A technical background with 10+ years of progressive, hands-on experience across Security Engineering and DevSecOps
- Cloud native (GCP a major plus) Security experience at a major technology company
- Comfortable with deployment automation and configuration management (Terraform), including implementation of security controls in Kubernetes
- Experience hardening production environments and implementing layered defensive technologies such as Firewalls, WAFS, IDS/IPS, etc.
- Solid understanding of complex systems and architectures, and ability to dissect systems and data flows to determine storage and transmission of sensitive data
- Experience building and mentoring a team of security engineers spanning multiple security domains and functions (SOC/IR, App Sec, Red/Blue Team)
- Highly adept at communicating with Infrastructure, Data, Software development and Product teams to provide information and findings to stakeholders that will support the secure development of applications and deployment of infrastructure
- Ability to serve as first point of escalation for security incidents
Some of the total rewards we offer…
- Physical Health & Wellness benefits, to support our Moloco employees in making their health and wellness a priority.
- Flexible PTO, so long as you promise to come back!
- Learning & Development - All regular full-time employees receive an annual learning and development stipend of $2,500 per calendar year.
- Commuter Benefit - All full-time employees are eligible to participate in country-specific transportation benefits.
- WFH - We provide an allowance of $1,000 (based on local currency) to outfit your home office regardless of hybrid or permanently remote employees.
- Communications reimbursements for phone and internet.
- Got Lunch? We provide country specific lunch stipend benefits
- Virtual initiatives and events to keep you connected with your colleagues.
- Generous Employee Referral Bonus program.
- And much more. Ask your recruiter for a full list of total rewards and benefits specific to your region!
Moloco is a truly rewarding place to work and in an exciting period of growth, which you could be a part of. Join us today and apply now!
Our Compensation And Benefits (for California & New York State Residents Only)
Base Compensation Range: Min $214,800 - Max $322,200
In accordance with California & New York state law, the range provided is a reasonable estimate of the base compensation for this role. The actual amount may be higher or lower, based on non-discriminatory factors such as experience, knowledge, skills and abilities. We also offer a competitive benefits package.
REF: 3027
Tags: APIs Application security Automation Blue team CCPA CI/CD CISO Cloud Compliance DevSecOps Firewalls GCP GDPR IAM IDS IPS ISO 27001 Kubernetes Machine Learning Monitoring Privacy Risk assessment SOC Terraform Vulnerabilities Vulnerability management Vulnerability scans
Perks/benefits: Career development Competitive pay Flex hours Flex vacation Gear Health care Home office stipend Salary bonus Startup environment Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs