As our DevSecOps Engineer, you’ll play a crucial role to integrate security into the development lifecycle. In this role, you’ll collaborate closely with DevSecOps teams and the Tech team to ensure our systems and applications are secure by design, using automated security checks, vulnerability scans, and continuous monitoring.

Your team

• Engineering Team: 13 Engineers (including 3 Interns), 2 Technical Leads, 1 Designer, 1 DevSecOps, 1 Head of Engineering

• Today we are 23 working at the company - 4 based in New York, and 19 in Paris.

Responsibilites

• Core Backend Development: Design, develop, and maintain backend systems using tools like Python, TypeScript, or Go to support AI-driven cybersecurity features.

• Infrastructure and Orchestration: Build and manage containerized applications using Docker and Kubernetes, ensuring robust and scalable deployments.

• Event-Driven Architecture: Develop and optimize event-based systems leveraging Kafka to manage data flows seamlessly.

• Cloud Operations: Operate and improve cloud-based services on AWS ensuring high availability and reliability.

• Monitoring and Observability: Implement and maintain monitoring and observability solutions with Grafana, Prometheus, and related tools to ensure system performance and reliability.

• DevSecOps Practices: Strengthen security across all aspects of the development pipeline, from secrets management to container security and secure coding practices.

• Infrastructure as Code: Use Terraform to define and manage infrastructure.

• Continuous Improvement: Contribute to improving the architecture, maintainability, and quality of the codebase while staying updated with the latest technologies and practices.

Tech stack

Frontend:

• Svelte with TypeScript for high-performance, intuitive UIs.

• GraphQL for efficient data querying and responsive applications.

Backend — API:

• Node.js for server-side logic and GraphQL APIs powered by Yoga, Pothos and Prisma for scalable architecture.

• PostgreSQL for secure, efficient database management.

• Kafka (Redpanda) for high-performance, event-driven systems.

Backend — Deep Tech:

• Python for AI and algorithmic development, driving our cutting-edge cybersecurity solutions.

• Go for network-efficient tasks, optimizing performance and scalability.

DevSecOps:

• AWS infrastructure which successfully passed Foundational Technical Review for AWS Partner Network.

• SOC-2 Compliance with rigorous code quality and security standards.

• GitLab CI for streamlined, secure CI/CD pipelines

• Grafana for monitoring

Code Quality:

• Modern Standards: All code follows the latest industry standards and best practices.

• Comprehensive Testing: We maintain high code quality through unit tests, integration tests, end-to-end (E2E) tests, and utilize Codecov for test coverage.

We are looking for someone that has over 3 years experience in a role as DevOps/DevSecOps with following experience -

• Programming Languages: Expertise in one or more: TypeScript, Python, Go…

• Message Brokers/Event-Driven Architecture: Skilled with tools like Kafka (preferred), RabbitMQ, Amazon SQS, Google Pub/Sub, NATS…

• Cloud Providers: Practical experience with at least one major provider: AWS (preferred), Azure, GCP, IBM Cloud, OCI…

• Infrastructure as Code (IaC): Competence with tools such as Terraform (preferred), Pulumi, AWS CloudFormation, Ansible…

• Container Orchestration: Hands-on experience with Kubernetes.

• Container Technologies: Strong knowledge of Docker, Podman, CRI-O…

Nice to have

• CI/CD Pipelines: Familiarity with platforms like GitLab CI/CD (preferred), GitHub Actions, Jenkins, CircleCI…

• Monitoring and Observability: Proficient with tools such as Grafana (preferred), Prometheus, ELK/EFK Stack, Datadog, New Relic…

• Databases: Experience with systems like PostgreSQL (preferred), Redis, MySQL, MongoDB, DynamoDB…

Bonus points

• Open-Source Contributor: You like contributing or maintaining open-source projects during your free time – maintaining your own HomeLab is fine too ;)

• Passion for Security: You’re fan of Application Security, Cloud Security or Cybersecurity in general.

• Networking Concepts: Knowledge of protocols such as HTTP/HTTPS, load balancing, DNS, VPC architecture and security…

• API Gateway and Reverse Proxies: Experience working with tools like nginx, Kong, Apigee…

We respect your time and will make it quick and efficient. The entire process will be completed within 1-2 week depending on your availability and ours -

🤓 1 meeting with the HR – 30-45 minutes

💻 Technical challenge to do at home. You can choose between Go or Python for this challenge - 3,5 hours

🤔 1 technical deep dive with the Head of Engineering and the Technical Lead – 1 hour

👋 Final interview with the Tech Team, and Founders – 1,5 hour

💌 Formal hiring proposal.