• Infrastructure: Own and evolve our AWS infra (ECS/Fargate, RDS/Postgres, S3, IAM, VPC) • CI/CD & IaC: Maintain and improve CI/CD pipelines (GitHub Actions) and Infra-as-Code (Terraform) • Monitoring & Observability: Set up alerting, log aggregation, and performance dashboards (e.g., CloudWatch, Datadog, or OpenTelemetry) • Security & Compliance: Implement secure-by-default practices; support SOC 2 / HIPAA readiness • Automation: Write Python/Bash scripts for backups, monitoring, deployment hooks, etc. • Database Ops: Assist with Postgres tuning, access control, and migrations • Future-Proofing: Lay groundwork for container orchestration (EKS/Kubernetes) if/when we scale beyond ECS

• End-to-End Operational Ownership: Act as the single technical owner responsible for the operational success of critical cloud systems, defining System-Level Objectives (SLOs) and System-Level Indicators (SLIs). Work with other Staff and Principals Engineers to establish operational Infrastructure as Code (IaC) standards and best practices. • Cross-Functional Collaboration: Coordinate with development to ensure repeatable and reliable feature deployments into cloud environments using CI/CD pipelines and maintain infrastructure through IaC practices. • Ambiguity Navigation: Tackle vague and complex operational challenges by defining technical strategies and leading the team toward holistic, sustainable solutions. • Mentorship and Improvement: Elevate the operational maturity of the team through insightful reviews of operational runbooks, CI/CD pipelines, and automation scripts. Mentor operations engineers on troubleshooting, problem solving, and incident response. • Operational Execution: Focus on the health of critical systems, conducting root cause analysis (RCA) for major incidents and resolving complex, intermittent issues that span on-prem/cloud boundaries. • Active Operational Support: Participate in periodic help desk rotations and Tier 3 / Tier 4 on-call support, troubleshooting and resolving issues, fixing bugs and implementing solutions to enhance system reliability and performance. • CI/CD Development: Build automated delivery pipelines and develop internal self-service tools to enhance operational efficiency. • Stakeholder Collaboration: Work with product and development teams to define operational requirements and communicate system trade-offs effectively. • Demonstrated experience providing technical leadership, mentorship, and guidance to engineers, with the ability to influence team direction, operational practices, and outcomes. Prior or potential experience supporting people leadership responsibilities (such as onboarding, coaching, or performance feedback) is a plus.

• Lead the design and improvement of CI/CD platforms and workflows • Own complex technical problems from discovery through to solution • Define and promote engineering standards and best practice • Design Infrastructure as Code solutions for cloud and hybrid platforms • Provide technical leadership within delivery teams • Mentor and develop junior and mid-level engineers • Review designs, code and pipelines • Work closely with architects, product owners and stakeholders • Communicate trade-offs and decisions clearly • Contribute to roadmap planning and technical strategy

• Own and evolve the company’s security strategy, ensuring it directly supports our GTM motion and customer trust requirements • Lead and manage a SecOps team of ~5, setting clear priorities, processes, and development plans • Drive and maintain SOC 2 and ISO 27001 compliance (and prepare for additional frameworks as needed, e.g., GDPR support, customer security reviews) • Act as the primary security partner for Sales, Customer Success, and Product—supporting security questionnaires, audits, and customer conversations • Design, implement, and monitor cloud infrastructure, applications, and internal systems • Lead incident response planning, tabletop exercises, and real-world response when needed • Own internal IT responsibilities as they arise, including identity/access management, endpoint security, tooling, and vendor relationships • Establish scalable policies, documentation, and risk management practices appropriate for a fast-growing startup • Stay pragmatic: balance strong security with speed, usability, and business impact