• Be part of a cross-functional team, directly contributing to feature development and maintaining both existing and new infrastructure services; • Develop, maintain, and optimize infrastructure clusters (Kubernetes, NATS, ETCD, PostgreSQL, MongoDB, Redis, Elasticsearch, etc.) and infrastructure services (GitLab, Jenkins, Vault, Artifactory, Datadog, Jaeger, etc.); • Define monitoring and observability patterns for infrastructure services; • Troubleshoot and manage production incidents; • Manage and improve tools and processes related to infrastructure management across the company (Infrastructure-as-Code standards, CI/CD design, and building our Internal Developer Platform); • Assist partner teams in architecting and scaling their applications and infrastructure following cloud best practices.

• Build relationships with developers and stakeholders to incorporate security principles into engineering design and deployments. • Supervise validation in security controls and testing across projects, using SAST, DAST, IAST and RASP tools, documenting any security findings, outlining remediation options and overseeing mitigation. • Oversee implementation of defensive practices and countermeasures across infrastructure and applications. • Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads. • Lead continuous product and application security reviews, focused on secure development practices, threat modeling, vulnerability management, architecture and application security design. • Ensure security principles and validations are consistently implemented throughout the CI/CD pipeline by embedding robust, security-focused practices into all automation processes. • Attend and participate in product meetings addressing security requirements for new and existing products. • Build services and tools to enable developers and engineers to use security components successfully. • Simplify automation that applies security inter-workings with CI/CD pipelines. • Support the ability to “shift left” and incorporate security early on and throughout the development lifecycle. • Communicate vulnerability results to both technical and non-technical stakeholders, focused on risk tolerance and threat to the business, in order to gain support through influential messaging. • Leverage vulnerability database sources to understand the weakness, probability and remediation options supplied by vendors. • Join forces and provision security principles in architecture, infrastructure and code. • Regularly research and learn new tactics, techniques and procedures (TTPs). • Partner with teams to define key performance indicators (KPIs) and metrics across business units. • Ensure regulatory compliance (e.g., PCI, HIPAA, HITRUST, NIST CSF) through effective security controls and processes. • Other duties as assigned.

• Build and maintain CI/CD pipelines • Automate deployments and infrastructure (e.g., Terraform, Ansible) • Operate and monitor containerized applications (Docker, Kubernetes) • Provide technical support and assistance to customers • Ensure stability, security, and scalability

• Design and architect scalable, high-performance applications using the Meanstack framework. • Implement DevOps practices for continuous integration and continuous deployment (CI/CD). • Collaborate with cross-functional teams to define, design, and ship new features. • Provide technical leadership and mentoring to development teams. • Ensure the architectural integrity and quality of applications throughout the development lifecycle. • Conduct code reviews and ensure adherence to best practices in coding standards and practices. • Identify, troubleshoot, and resolve application performance issues. • Stay up-to-date with emerging technologies and industry trends to enhance architectural practices.