Manager, Cloud Engineering Lead

LA28 does not provide relocation assistance. LA28 is the independent, non-profit, privately funded organizing committee for the Los Angeles 2028 Olympic and Paralympic Games. We are on a singular mission to create an Olympic and Paralympic Games that celebrate all that this city and country have to offer, delivering an unparalleled experience for athletes, fans, partners and our community.    The 2028 Games mark the return of the Summer Games to the U.S. for the first time in 32 years and Los Angeles’ third time hosting an Olympic Games and first time welcoming the Paralympic Games. This presents the unique and exciting opportunity to celebrate our legacy with the Games and push the Olympic and Paralympic Movements forward, writing a new chapter of Games history in Los Angeles.    Putting on an Olympic and Paralympic Games is a team sport. To build a Games unlike any the world has seen before, we need the best team in place–a team full of diverse perspectives, experiences and expertise. We are guided by the following set of values and behaviors–optimism, integrity, excellence, inclusion, co-creation and boldness–and look forward to hearing about how your past experiences align with them. Manager, Cloud Engineering Lead The Manager, Cloud Engineering Lead focuses on cloud infrastructure (IaaS/PaaS) with an emphasis on Google Cloud Platform (GCP), backend integrations, and identity architecture. The role manages App Registrations, API permissions, and modern authentication scoping within Microsoft Entra. Working with Application Owners, Cybersecurity, IAM/IGA, Architecture, SOC, and Operations teams, this position streamlines access, builds integrations, enforces policies, and improves monitoring and automation to ensure scalable operations. Responsibilities also include managing B2B partnerships, contributing to governance, and developing documentation such as SOPs and data‑flow diagrams, supporting secure application onboarding and advancing LA28’s cloud    Key Responsibilities: Design, deploy, and manage Google Cloud Platform (GCP) infrastructure to support Application team initiatives.  Develop and manage complex API integrations between LA28 enterprise systems, SaaS platforms, and custom applications.  Support the IAM Manager by executing identity engineering tasks, including Entra app registrations, SSO integrations, and identity automation.  Establish a SaaS and platform hardening control set in collaboration with the Cyber Security team.  Evaluate and apply industry best practices for hardening IaaS/PaaS deployments, SaaS applications, and custom applications.  Partner with internal stakeholders to advise on security best practices for existing or Line of Business SaaS applications.  Design and deploy Single-Sign On integration patterns using Microsoft Entra and ensure alignment with LA28’s Architecture principles and Cybersecurity controls.  Define and implement cloud integration strategies that adhere to organizational security policies, Zero Trust principles, and enterprise architecture standards.  Manage partner and vendor relationships ensuring B2B integrations remain secure, compliant, and operational with proper monitoring and lifecycle oversight.  Develop and maintain documentation, including SOPs, runbooks, integration standards, data-flow diagrams, user journeys, and operational readiness guides.  Lead technical integration work for cloud applications, conduct requirements gathering through secure design, engineering, deployment, and operational handoff.  Partner with Applications and Architecture team to develop secure, scalable integrations between enterprise systems, SaaS applications, IAM platforms, and security tooling (SIEM/SOC pipelines, logging, monitoring).  Analyze application and business processes to streamline user access flows, portal access, enforce policy controls, and build automation that improves reliability and compliance.  Manage partner and vendor relationships ensuring B2B integrations remain secure, compliant, and operational with proper monitoring and lifecycle oversight.  Background & Requirements: Bachelor’s in Computer Science, Cybersecurity, Information Systems, Engineering, or equivalent experience.  Additional Useful Training: Zero Trust architecture, SIEM onboarding (Sentinel/Splunk), modern auth (OIDC/OAuth/FIDO2), cloud security fundamentals, and API lifecycle management / RESTful architecture. Preferred Certifications:  GCP (Professional Cloud Architect or Associate Cloud Engineer), AWS (Solutions Architect Professional or Solutions Architect/SysOps Associate), or Azure (Solutions Architect Expert or Azure Administrator Associate). ITIL v3/v4/v5 are a plus.  5+ years of combined experience architecting cloud infrastructure (specifically GCP or similar IaaS/PaaS) and engineering complex enterprise API integrations, supported by hands-on automation skills using scripting (Python, PowerShell) or Infrastructure-as-Code (IaC). 3-5+ years of deep technical experience managing Microsoft Entra ID (Enterprise App Registrations, SSO, OAuth/OIDC) and implementing Zero Trust architecture, including SaaS securityhardening and collaborating with cybersecurity teams for SIEM/SOC integrations.  Demonstrated leadership in end-to-end lifecycle management, overseeing infrastructure and application onboarding, secure design, structured deployment practices (UAT, change management, release cycles), and operational readiness. Proven ability to drive cross-functional engineering efforts, acting as the technical integration bridge across Architecture, Security, IAM, Applications, PMO, and Operations teams, supported by strong technical project management skills (scoping, prioritization, and work planning). Experience with operational automation and workflow design, including the creation of approval flows, triggers, and guardrails that improve reliability and enforce enterprise policies. Strong f