DevSecOps Architect (Remote Option)

  • Full-time

Job Description

As a DevSecOps Architect, you will be responsible for overall design and direction of eCommerce Security Engineering across all our applications.

This role is responsible for building platforms and frameworks to create consistent, verifiable, and automatic management of applications and infrastructure between non-production and production environments. Leading a team of DevOps Engineers, you will utilize technical expertise and experience in driving the design and automation of processes to support the CI/CD of digital technology, enterprise systems, microservices applications and database services along with providing guidance and/or implement mitigation to address discovered abuse patterns using modern security tools, and work with developers and performance engineers to assist in securing the solution. This role is critical in the development and on-going security posture for digital commerce applications and accountable for identifying and implementing our security principles and best practices to maintain application security, vulnerability scanning, create processes for analyzing web traffic to identify patterns of abuse and address the impact of non-human HTTP traffic on both the performance and security of the application by applying blocks, rate limits, tarpits, or other remediation.

As a DevSecOps Architect, you will report to our Director of Strategy & Architecture. This role can work remote from any U.S. state where Balsam Brands is currently setup as an employer, which includes: CA, CO, FL, GA, ID, IL, IN, KS, KY, MD, MA, MO, NJ, NC, OH, OR, PA, TN, TX, VA, and WA. This role can also work locally in our Redwood City, CA or Boise, ID office location. Our local teams work in a hybrid model, which includes two days in-office.

To ensure sufficient overlap with functional and cross-functional team members globally, some flexibility with this role's regular work schedule will be required. Most of our teams have overlap with early morning and/or early evening PST. Specific scheduling needs for this role will be discussed in the initial interview.

What you’ll do:

  • Analyzing, developing, and recommending improvement of software security infrastructures and standards
  • Ensures direct and regular engagement with product/software development and infrastructure teams to achieve security compliance and security requirements within the organization
  •  Identifies and corrects data security issues and takes appropriate actions in a multiple computing platform environment. This may involve delivering and promoting secure coding techniques, assessing vulnerabilities, providing remediation guidance, designing multiple security technologies such as cloud security, secure network design, multiple-level security applications, and ensuring compliance with PCI-DSS, GDPR, HITRUST, NIST, SOX, SOC and other related requirements of regulation
  • Provides security guidance on infrastructural designs and organizes numerous risk assessments to identify and eliminate application/product threats
  • Automate software maintenance of applications like Jenkins, Sonarqube, etc. which are part of CI/CD pipeline
  • Design and maintain cloud-based solutions on public cloud
  • Lead problem-solving or brainstorming activities related to issues, tasks, plans, and experiments
  • Lead competence improvement and growth plans of the team and the system

What you bring to the table:

  • Minimum of eight (8) years relevant DevOps experience
  • Minimum of eight (8) years of architectural/ lead experience
  • Bachelor’s degree or higher in Computer Science, Computer Engineering, or related technical degree
  • Must have experience in the design and implementation of fully automated Continuous Integration, Continuous Delivery, Continuous Deployment pipelines and DevOps processes for Agile projects
  • Must have experience in any public clouds leveraging Terraform.
  • Knowledge of IP networking, VPN's, DNS, load balancing and firewall
  • Experience defining, implementing, and engineering network environments compliant with information security policies, procedures, and standards like SOC2, GDPR, HIPPA, ISO 27001
  • Analyzing security systems, audits, and seeking improvements on a continuous basis
  • Developing, documenting, and maintaining DevSecOps implementation for the team
  • Integrating DevSecOps tools and services (code repository, artifact repository, source code analyzer, security scanning, testing tools, and an orchestrated integration and delivery platform) to enable automated application building, testing, and securing of our deployments
  • Experience with monitoring and log aggregating frameworks such as Kafka, Logstash, Splunk, Elasticsearch, and Kibana
  • AWS/Azure Certification(s) such as Solutions Architect Pro, DevOps Engineer Pro, SysOps Admin, Developer Associate
  • Strong presentation, verbal, and written communications skills
  • Must have experience in systems automation, orchestration, deployment, and implementation, as well as have skills in scaling distributed data systems
  • Experience with eCommerce platforms is desirable
  • Ability to work with offshore teams & development partners is a must have.
  • Strong working ability with cross functional teams

Travel for remote team members: At Balsam Brands, we believe that time spent together, in-person, collaborating and building relationships is important to who we are. For our newest remote Brandits, we will arrange travel to one of our local offices in your first month of employment so you can meet and train with your new team in-person. You may also get to travel an additional 1 – 2 times a year for events such as team retreats, offsites, or learning and development opportunities.

Notes:  This is a full-time, permanent position with benefits. Please submit a cover letter and resume, and only apply if you are able to live and work full-time in one of the states listed above. State locations and specifics are subject to change as our hiring requirements shift.  

About Us: Balsam Brands is a global, eCommerce retailer with roots in holiday and home décor. We strive for excellence in everything we do and present a unique opportunity for those seeking to have a meaningful impact in a people-first company that values relationship building, authenticity, and doing the right thing. We have steadily growing teams in Boise, the Bay Area, Dublin, the Philippines - and most recently, Windsor, Canada!

The company's mission is to create joy together. We empower our team and partners to love what they do, provide products and experiences that inspire meaningful moments with family and friends, and give back to our families and communities in impactful ways. When you join Balsam Brands, you'll find a culture of caring people doing challenging work and building a welcoming workplace.

At Balsam Brands, we strive to offer a competitive compensation and benefits package. For permanent, full-time team members, this includes:

  • Competitive compensation, including a cash-based incentive plan
  • Comprehensive Medical, Dental, and Vision coverage, with 100% of insurance costs covered for team members, and 85% covered for dependents
  • Medical, transit, dependent care FSA
  • Company-paid life and AD&D insurance
  • Short and long-term disability insurance
  • 401(k) with dollar-for-dollar company match up to $4,000
  • Employee Assistance Program (EAP) and other mental health and wellness perks
  • Paid holidays, annual shutdown week, PTO, and volunteer time-off (VTO) packages
  •  Annual continuous learning benefit up to $1,000 per person, per fiscal year
  • Up to $300 flexible reimbursement to support setup of new team member's work-from-home environment
  • Valuable extras: identity theft protection, subsidized parking, subsidized gym membership

The base pay range for this position is: $121,000 – $206,000. Where an individual falls within that range will vary based on several factors including geographic location and may vary depending on candidate qualifications and experience, applicable skills, and other job-related factors. We benchmark our pay ranges against current external data sources and regularly review compensation for our team members. Balsam Brands is committed to providing our team members with an internally fair, externally competitive, and fiscally prudent total compensation package administered in a simple and consistent manner.

At Balsam Brands, we strive to build a diverse, equitable, and inclusive team to fulfill our purpose to create joy together. Balsam Brands is proud to be an equal opportunity employer. We encourage people from all backgrounds, ages, abilities, and experiences to apply. We do not discriminate on the basis of race, ethnicity, religion, national origin, citizenship, marital or family status, disability, sexual orientation, gender identity or expression, pregnancy or caregiver status, veteran status, or any other legally protected status. We will ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application and interview process, to perform essential job functions, and to receive other benefits and privileges of employment.

#DICE

 

Additional Information

All your information will be kept confidential according to EEO guidelines.

Privacy Policy