LA28 does not provide relocation assistance.

LA28 is the independent, non-profit, privately funded organizing committee for the Los Angeles 2028 Olympic and Paralympic Games. We are on a singular mission to create an Olympic and Paralympic Games that celebrate all that this city and country have to offer, delivering an unparalleled experience for athletes, fans, partners and our community.  

The 2028 Games mark the return of the Summer Games to the U.S. for the first time in 32 years and Los Angeles’ third time hosting an Olympic Games and first time welcoming the Paralympic Games. This presents the unique and exciting opportunity to celebrate our legacy with the Games and push the Olympic and Paralympic Movements forward, writing a new chapter of Games history in Los Angeles.  

Putting on an Olympic and Paralympic Games is a team sport. To build a Games unlike any the world has seen before, we need the best team in place–a team full of diverse perspectives, experiences and expertise. We are guided by the following set of values and behaviors–optimism, integrity, excellence, inclusion, co-creation and boldness–and look forward to hearing about how your past experiences align with them.

Cloud Engineering Lead

The Cloud Engineering Lead designs and manages secure cloud and SaaS integrations, overseeing the entire process from requirements gathering to deployment and operational readiness. The role focuses on Microsoft Entra, modern authentication, and cloud security best practices, translating user needs and security requirements into scalable integration patterns. Working with Application Owners, Cybersecurity, IAM/IGA, Architecture, SOC, and Operations teams, this position streamlines access, strengthens platforms, enforces policies, and improves monitoring and automation. Responsibilities also include managing B2B partnerships, contributing to governance, and developing documentation such as SOPs and data‑flow diagrams, supporting secure application onboarding and advancing LA28’s cloud environment.  

Key Responsibilities

• Lead engineering work for cloud application integrations, intake and requirements gathering through secure design, engineering, deployment, and operational handoff. 
• Design and deploy Single-Sign On integration patterns using Microsoft Entra and ensure alignment with LA28’s Architecture principles and Cybersecurity controls. 
• Establish a SaaS hardening control set in collaboration with Cyber Security team  
• Evaluate and apply industry best practices for hardening for SaaS applications 
• Partner with internal stakeholders to advise on security best practices for existing or Line of Business SaaS applications  
• Partner with Applications and Architecture team to develop secure, scalable integrations between enterprise systems, SaaS applications, IAM platforms, and security tooling (SIEM/SOC pipelines, logging, monitoring). 
• Analyze application and business processes to streamline user access flows, portal access, enforce policy controls, and build automation that improves reliability and compliance. 
• Engage and manage functional-area (FA) stakeholders, serve as the integration bridge across Architecture, Cybersecurity, IAM, Application teams, PMO, and Operations, ensuring technical alignment and clear communication throughout the lifecycle. 
• Define and implement cloud integration strategies that adhere to organizational security policies, Zero Trust principles, and enterprise architecture standards. 
• Manage partner and vendor relationships ensuring B2B integrations remain secure, compliant, and operational with proper monitoring and lifecycle oversight. 
• Develop and maintain documentation, including SOPs, runbooks, integration standards, data‑flow diagrams, user journeys, and operational readiness guides. 
• Own core enterprise communication and messaging services. 

Background & Requirements:

• 5+ years of hands-on experience designing and engineering integrations across Microsoft 365, Azure, and SaaS platforms—covering app registrations, authentication protocols (SAML/OAuth/OIDC), Single Sign-On, Conditional Access, and secure onboarding patterns. 
• Demonstrated leadership in end-to-end SaaS and cloud application onboarding, including intake, requirements gathering, secure design, engineering, UAT, deployment, and operational readiness. 
• Experience building or managing SaaS hardening standards in partnership with Cybersecurity teams, including continuous security evaluation and adoption of industry best practices. 
• Strong understanding of Zero Trust principles and their application in identity, access, and cloud security architectures. 
• Experience with structured deployment practices, including UAT, change management, release cycles, and coordinated cutovers. 
• Strong technical project management skills, including scoping, prioritization, work planning, and managing deliverables through complex stakeholder environments. 
• Experience with automation and workflow design, including designing approval flows, triggers, and guardrails that improve operational reliability. 
• Strong working knowledge of integration technologies such as APIs, web services, event-based integrations, SAML, OAuth, OIDC, and cloud managed IoT solutions. 
• Strong knowledge or local and wide area networks, such as DHCP, DNS, routing, VLANs, ACLs, and TCP/UDP traffic protocols. 
• Hands‑on experience with integration technologies including APIs, event‑based integration, web services, identity federation, and SIEM/SOC pipelines. 
• Experience driving cross‑functional engineering efforts with Architecture, Security, IAM, Applications, PMO, and Operations teams—acting as the technical integration bridge and ensuring alignment across stakeholders. 
• Experience supporting or administering Google Workspace (preferred but not required). 

Physical Requirements and Working Conditions:

• Extremely detail-oriented with excellent analytical, organizational and presentation skills 
• Great written and oral communication skills 
• Well-developed problem-solving skills and ability to work independently to resolve issues 
• Ability to interact cross-functionally to achieve set objectives 
• Subject Matter Expert and trusted advisor to stakeholders within TEC 
• Attention to detail and strong interpersonal, coordination and communication skills required 
• Prior experience in a team-oriented, collaborative environment preferred 
• High level of adaptability in a constantly evolving and entrepreneurial environment 
• Intellectually curious, optimistic, patient and kind demeanor 

Expectations:

• A detailed approach to planning and delivery. 

• An ability to brief leads regarding schedule and delivery planning.  

• An attitude to go above and beyond to deliver. 

• Ability to effectively communicate multiple complex issues to colleagues.  

• To be comfortable with fast paced, uncertainty and change throughout the lifecycle of the role.  

• Be agile and responsive, with an ability to learn and take on new tasks as they become apparent. 

Education:

• Bachelor’s in Computer Science, Cybersecurity, Information Systems, Engineering, or equivalent experience.  
• Additional Useful Training: Zero Trust architecture, SIEM onboarding (Sentinel/Splunk), modern auth (OIDC/OAuth/FIDO2), cloud security fundamentals. 
• Preferred Certifications: CISSP (or pursuit), SC‑300, AZ‑104, AZ‑500, MS‑102, ITIL v3/v4. 

The annual base salary range for this position is $88,000.00 - $115,000.00. The pay scale provided is the range that LA28 reasonably expects to pay as starting base compensation for this role. All LA28 compensation remains subject to final determination based on individual candidate qualifications, experience, or other reasonable criteria consistent with LA28’s operational business needs and applicable law.

LA28 does not provide relocation assistance.

LA28 is committed to fair and unbiased recruitment procedures allowing all applicants an equal opportunity for employment, free from discrimination on the basis of religion, race, sex, age, sexual orientation, disability, color, ethnic or national origin, or any other classification as may be protected by applicable law. LA28 will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the Los Angeles Fair Chance Initiative for Hiring Ordinance and all applicable laws. We strive to build a team that is inclusive and encourage qualified candidates of all backgrounds, perspectives, and identities to apply. We assess applications based on relevant skills, education, and experience a candidate can add to our team.