We’re an impactful, and highly collaborative team aiming to bring excellence to the world of security and compliance. Every member of the team is an owner, with a lot of responsibility and the opportunity to play a critical role in building out the team and defining our culture.
This position will be fully remote with the candidate ideally residing in Canada.
What You'll Do
Scope, develop, and implement new security assessment functionality for integrations.
Maintain security automation baselines and steady-states across individual integrations.
Contribute to codebases in Ruby on Rails; review codebases in Javascript.
Collaborate with Compliance and Product to automate technical compliance requirements.
Interact directly with customers to help configure their cloud infrastructure, and collect feedback on Secureframe’s cloud infrastructure scanning.
Who You Are
You care about product ownership and solving problems for our customers.
You’re passionate about being in a product-focused environment where everyone cares deeply about customer impact.
You care about your craft, and are looking to continually improve.
Ability to work well in a fast-paced, rapidly changing environment.
Who We're Looking For
Design, develop, and maintain scalable, high-performance backend systems and databases, leveraging advanced knowledge of cloud services and infrastructure to optimize data storage, processing, and retrieval.
Collaborate with cross-functional teams to architect and implement backend solutions that support complex data workflows and integrations across multiple cloud platforms, ensuring robustness, security, and compliance with industry standards.
Automating cloud infrastructure configurations to meet compliance and security requirements.
Ability to communicate and collaborate effectively.
Building cloud-native security solutions and interfacing with APIs.
Implementing automated health checks to assess cloud security posture.
Deep knowledge of IAM, networking, storage, compute, and logging services within AWS, GCP, and/or Azure.
Experience deploying with Terraform, CloudFormation, and/or equivalents.
Basic knowledge of commercial (e.g. SOC 2, ISO 27001) and/or federal compliance frameworks (e.g. FedRAMP, NIST 800-53).
Nice to Haves
Familiarity with GovCloud environments.
Expertise within Digital Ocean or Heroku.
Experience with Ruby on Rails.
Familiarity with Elasticsearch.
Experience as a founder or at an early stage startup.