Senior Platform & Security Engineer

This is a fully remote position, open to applicants in California, +3 more states.

📋 Description

• Take ownership of and integrate the platform and infrastructure that drives our fundamental products and services.

• View our engineers as your clients—develop the tools, established pathways, and self-service workflows that enable them to deploy swiftly and securely.

• Manage CI/CD and release automation to ensure that the production pipeline remains efficient, dependable, and transparent.

• Oversee feature flags, configuration, and secrets infrastructure, along with the dependability of our background-job, caching, and queue systems (Celery, Redis, RabbitMQ).

• Enhance observability and operational health across services through structured logging, error monitoring, and APM, while participating in the on-call rotation for platform and infrastructure services.

• Be responsible for the platform's security protocols—secrets management, IAM and access control, PCI/PII data handling, and vulnerability management.

• Manage and automate compliance and audit readiness (PCI-DSS, SOC 2, partner security reviews), collaborating with external auditors to ensure a repeatable process.

• Establish technical direction for platform and security, progressing towards infrastructure-as-code over time.

⛳️ Requirements

• A minimum of 6 years of professional engineering experience, focusing on platform, infrastructure, or backend development.

• Extensive hands-on experience with AWS (EKS/Kubernetes, EC2, Lambda, RDS) in high-availability production settings.

• Strong background in CI/CD and release engineering, with experience in containerization using Docker and Kubernetes, and a proven ability to create tools that enhance developer experience (experience with Terraform is a plus).

• Proficient in working within a Python/Django codebase (Celery, Redis, PostgreSQL), capable of reading and contributing to platform code.

• Familiarity with contemporary observability and monitoring tools encompassing logging, error tracking, and APM.

• A security-focused engineer well-versed in secrets management, IAM/access control, and dependency hygiene, ideally with practical experience in PCI-DSS or SOC 2.

• Bachelor’s degree in Computer Science, Engineering, or equivalent practical experience.

🏝️ Benefits

• Competitive salary and stock option plan

• Medical, Dental, and Vision insurance

• 401(k) plan with 5% company match

• Flexible vacation policy

• Fully remote work environment