Role Description We’re looking for a Senior Cybersecurity Engineer to design, build, and operate preventative and detective security controls and automation across our AWS‑first and enterprise environments. Reporting to the CISO, this role implements guardrails, platforms, and integrations and partners with infrastructure, platform, and application teams to embed security by default in our AWS cloud and enterprise environments. The role will perform hands-on engineering in multiple security domains including: - Network security - Endpoint security - Email security - Data security - Vulnerability management - Container security - Identity and access management Qualifications - 7+ years in security engineering with production AWS (multi‑account/Organizations) and automation‑first delivery. - Domain experience in at least three of the following: - Network security (segmentation, routing, firewall, proxy, WAF) - Endpoint security (EDR/EPP, hardening, health attestation) - Email security (phishing protection, authentication, inbound/outbound controls) - Data security (classification, DLP, encryption, key management) - Vulnerability management (scanning, prioritization, remediation pipelines) - Container security (image scanning, runtime policy, supply chain) - Identity and access management (policy design, federation, least privilege) - IaC proficiency (Terraform preferred) and Python for automation; CI/CD integration experience (e.g., GitHub Actions, GitLab, CodePipeline). - Experience with root‑cause analysis and remediation of control failures (not incident RCA). - Demonstrated ability to independently drive complex projects to completion, as well as collaborate effectively with a complex set of stakeholders. Requirements - Design, implement, and maintain controls in AWS (IAM, KMS, VPC, GuardDuty, Security Hub, Detective, CloudTrail/CloudWatch), network, endpoint, email, data security, vulnerability, and identity domains. - Define SLOs for control availability, latency, coverage, and drift; implement telemetry to continuously measure those SLOs. - Partner with infrastructure, platform, and application teams to build IaC modules (Terraform/CloudFormation) and platform automations (e.g., Python/Lambda, Step Functions) to enforce guardrails (account vending, baseline hardening, logging enablement, key policies, SCPs) using Git. - Implement break‑glass patterns and least‑privilege workflows that are auditable and reversible. - Engineer data pathways (e.g., CloudTrail, VPC Flow, ECS audit, identity logs) into SIEM/MDR tooling; ensure completeness, timeliness, and schema quality. - Translate Detection and Response Lead feedback on false positives/gaps into logging or control adjustments. - Own scanners/integrations, asset coverage, tagging standards, and develop risk‑based remediation pipelines (ticketing, auto‑remediation for low‑risk classes). - Partner with owners to remove friction (pre‑approved windows, canaries, rollbacks). - Engineer least‑privilege patterns, permission boundaries, conditional access, and automated key/secret lifecycle (rotation, discovery, usage attestations). - Provide ready‑to‑consume roles/policies to teams. - Maintain runbooks, design docs, and reusable modules; ensure changes are versioned, peer‑reviewed, and tested. - Participate in control‑health and platform on‑call (e.g., logging ingestion failures, drift, outages). - Escalate security events to the Detection & Response Lead/MDR. Benefits - Employee Ownership Program - every eligible employee shares in the financial rewards that grow when the company grows. - Professional development opportunities. - Owner Referral Program. - Work from home reimbursement for remote/hybrid roles. - Canary emergency financial assistance program. - Comprehensive medical, dental, vision insurance. - Life/AD&D Insurance. - Confidential, Employee Assistance Program. - Health Savings Account, includes company contribution. - Short-term disability. - Voluntary benefits - supplemental accident, critical illness, hospital insurance. - Employee discounts. - 401(k) Plan with company match contribution. - Addition Wealth Financial Wellness Program. - Various Time Off Programs. - 11 company paid holidays.

Role Description We're seeking an AWS Cloud Security Engineer to strengthen our cloud security posture and ensure the secure operation of our AWS infrastructure. This role focuses on implementing security controls, managing cloud security tools, responding to security findings, and ensuring compliance across our AWS environment. What You'll Do - Cloud Security & Infrastructure - Design, implement, and maintain security controls across AWS services (EC2, S3, RDS, EKS, ECS, Lambda, API Gateway) - Configure and optimize AWS security services including GuardDuty, CloudTrail, CloudWatch, Security Hub, and AWS Config - Implement VPC security architecture, network segmentation, security groups, and NACLs - Manage CloudFront and ALB security configurations including WAF rules - Secure containerized workloads and serverless architectures - Identity & Access Management - Design and implement least-privilege IAM policies, roles, and permission boundaries - Manage AWS Identity Center (SSO) and integration with Okta - Conduct access reviews and support user provisioning while maintaining security standards - Implement secure service-to-service authentication patterns - Security Monitoring & Response - Monitor and respond to security alerts from GuardDuty, CloudTrail, and AWS security services - Investigate and remediate security findings from Wiz cloud security platform - Perform threat analysis and security incident investigation - Develop security incident response playbooks for cloud threats - Databricks & Compliance - Implement and maintain security controls for Databricks workspaces on AWS - Support SOC 2 and other compliance audit requirements - Maintain security documentation and audit trail evidence - Enforce security policies and compliance standards across AWS accounts - Collaboration & Automation - Partner with Engineering, DevOps, and IT teams to integrate security into cloud operations - Automate security processes using Infrastructure as Code - Document security architectures, procedures, and runbooks - Provide security guidance on AWS best practices - Coordinate with external security vendors, testers, and auditors as needed Qualifications - 3+ years of hands-on experience securing AWS environments - Deep technical expertise with AWS security services: IAM, Identity Center, GuardDuty, CloudTrail, CloudWatch, Security Hub, AWS Config - Strong experience with core AWS services: EC2, S3, RDS, EKS, ECS, VPC/Networking, Lambda, SQS/SNS, CloudFront, ALBs, API Gateway - Experience with Databricks on AWS, including security configurations and best practices - Hands-on experience with Wiz or similar cloud security posture management (CSPM) tools - Knowledge of identity and access management principles, including federated identity (Okta, SAML, OIDC) - Experience supporting compliance frameworks such as SOC 2, ISO 27001, or similar standards - Scripting skills (Python, Bash, PowerShell) for security automation - Understanding of network security, encryption, and security monitoring in cloud environments - Strong problem-solving skills with ability to investigate and remediate security issues Benefits - Competitive compensation - Ample career and professional growth opportunities - New Headquarters with an open floor plan to drive collaboration - Health, dental, and vision insurance - Pre-tax savings plans and transit/parking programs - 401K with competitive employer match - Volunteer and philanthropic activities throughout the year - Educational and social events - The amazing opportunity to work for a high-flying performance marketing company! Company Description Fluent, Inc. (NASDAQ: FLNT) is a commerce media solutions provider connecting top-tier brands with highly engaged consumers. Leveraging diverse ad inventory, robust first-party data, and proprietary machine learning, Fluent unlocks additional revenue streams for partners and empowers advertisers to acquire their most valuable customers at scale. Founded in 2010, Fluent uses its deep expertise in performance marketing to drive monetization and increase engagement at key touchpoints across the customer journey.

• Own product lifecycle: vision, roadmap, execution, and delivery • Define and prioritize product requirements based on business goals and customer needs • Work closely with engineering teams to translate requirements into deliverables • Lead sprint planning and align development priorities • Collaborate with UI/UX teams to design wireframes and user experience • Conduct customer calls and translate insights into product improvements • Analyze market trends, competitor capabilities, and customer feedback • Prioritize bugs based on severity and business impact • Enable internal teams (support, sales) with product knowledge and updates

• Aktive Weiterentwicklung bestehender Kundenbeziehungen und gezielte Neukundengewinnung mit Fokus auf IT-Security-Lösungen • Strategischer Ausbau des Kundenportfolios inkl. Pipeline- und Projektsteuerung • Entwicklung und Umsetzung individueller Ziel- und Maßnahmenpläne für deine Accounts • Aufbau und Pflege starker Partnerschaften mit relevanten Herstellern (insbesondere Palo Alto) • Repräsentation des Unternehmens auf Messen und Branchenevents