Careers
Work at the heart of change
This is a place to grow, learn and connect. Everything that makes you who you are is welcome here.
Full time
Senior Full-Stack Engineer (React/Next.js + Node)
Purpose: Lead architecture and delivery of client web apps; coach developers; ensure quality, security, and on-time releases.
Purpose: Lead architecture and delivery of client web apps; coach developers; ensure quality, security, and on-time releases.
Key Responsibilities
• Own end-to-end delivery: discovery → design → implementation → release → observability.
• Design clean service boundaries and data models; choose patterns (monolith vs. modular/microservices) pragmatically.
• Build scalable APIs (REST/GraphQL), integrate external services, and optimize DB queries & caching.
• Establish coding standards, testing strategy, and CI quality gates; conduct impactful code reviews.
• Collaborate with clients, translate business goals into technical plans, and set realistic milestones.
• Mentor FE/BE engineers; unblock teams; raise the bar on performance, accessibility, and security.
Minimum Qualifications
• 6–10 years in modern web development, including React 18/Next.js 14 and Node.js 18+ (NestJS/Express).
• Strong with TypeScript, relational DBs (PostgreSQL/MySQL), ORMs (Prisma/TypeORM), and caching (Redis).
• CI/CD experience (GitHub Actions/GitLab), containerization (Docker), and cloud basics (AWS/Azure).
• Solid testing (Jest, Testing Library, Playwright/Cypress) and code quality mindset.
• System design, performance profiling, and production incident handling.
Nice-to-Have
• Infra as Code (Terraform), observability (OpenTelemetry, Grafana/Prometheus), SSR/SSG trade-offs.
• Security fundamentals: auth (OAuth/OIDC/JWT), OWASP Top-10 mitigations, secrets management.
• Client-facing consultancy experience.
Tooling / Stack
Next.js (App Router), React Query/RTK, TailwindCSS, Node/NestJS, PostgreSQL, Prisma, Redis, Docker, GitHub Actions, AWS (ECS/Lambda/RDS/S3/CloudFront), Terraform (preferred), Playwright/Cypress, Jest.
KPIs & 30/60/90 Success Plan
• KPIs: On-time delivery; defect leakage < 2% of story points; P95 latency targets met; Core Web Vitals green; MTTR < 1 hr.
• 30 days: Ship small feature end-to-end; baseline CI gates; agree architecture & backlog with PM/client.
• 60 days: Lead a workstream; introduce performance & security checks; mentor 1–2 engineers.
• 90 days: Own an application/module; measurable improvements (perf, reliability, DX).
Interview Process & Rubric
1. Screen (30 min): Experience alignment, communication, product mindset.
2. Tech Deep Dive (75 min): System design for a realistic SaaS module; API/data modeling; scaling/security trade-offs.
3. Hands-on (90 min live or 4-hr take-home): Implement a small Next.js + Node feature with tests.
4. Culture/Client (45 min): Stakeholder scenarios, estimation, conflict handling.
Rubric (weighted):
• System design & architecture 30% - 1: ad-hoc; 3: coherent modular plan; 5: clear boundaries, scaling, security, cost.
• Coding & correctness 25% - 1: fragile; 3: idiomatic TS with tests; 5: clean, tested, maintainable, accessible.
• Data/API design 15% - 1: leaky; 3: normalized schemas; 5: versioning, pagination, resilience.
• Quality & DevEx 15% - 1: minimal tests; 3: CI gates; 5: thoughtful testing pyramid, observability hooks.
• Client communication/leadership 15% - 1: unclear; 3: structured; 5: consultative, risk management.
Key Responsibilities
• Own end-to-end delivery: discovery → design → implementation → release → observability.
• Design clean service boundaries and data models; choose patterns (monolith vs. modular/microservices) pragmatically.
• Build scalable APIs (REST/GraphQL), integrate external services, and optimize DB queries & caching.
• Establish coding standards, testing strategy, and CI quality gates; conduct impactful code reviews.
• Collaborate with clients, translate business goals into technical plans, and set realistic milestones.
• Mentor FE/BE engineers; unblock teams; raise the bar on performance, accessibility, and security.
Minimum Qualifications
• 6–10 years in modern web development, including React 18/Next.js 14 and Node.js 18+ (NestJS/Express).
• Strong with TypeScript, relational DBs (PostgreSQL/MySQL), ORMs (Prisma/TypeORM), and caching (Redis).
• CI/CD experience (GitHub Actions/GitLab), containerization (Docker), and cloud basics (AWS/Azure).
• Solid testing (Jest, Testing Library, Playwright/Cypress) and code quality mindset.
• System design, performance profiling, and production incident handling.
Nice-to-Have
• Infra as Code (Terraform), observability (OpenTelemetry, Grafana/Prometheus), SSR/SSG trade-offs.
• Security fundamentals: auth (OAuth/OIDC/JWT), OWASP Top-10 mitigations, secrets management.
• Client-facing consultancy experience.
Tooling / Stack
Next.js (App Router), React Query/RTK, TailwindCSS, Node/NestJS, PostgreSQL, Prisma, Redis, Docker, GitHub Actions, AWS (ECS/Lambda/RDS/S3/CloudFront), Terraform (preferred), Playwright/Cypress, Jest.
KPIs & 30/60/90 Success Plan
• KPIs: On-time delivery; defect leakage < 2% of story points; P95 latency targets met; Core Web Vitals green; MTTR < 1 hr.
• 30 days: Ship small feature end-to-end; baseline CI gates; agree architecture & backlog with PM/client.
• 60 days: Lead a workstream; introduce performance & security checks; mentor 1–2 engineers.
• 90 days: Own an application/module; measurable improvements (perf, reliability, DX).
Interview Process & Rubric
1. Screen (30 min): Experience alignment, communication, product mindset.
2. Tech Deep Dive (75 min): System design for a realistic SaaS module; API/data modeling; scaling/security trade-offs.
3. Hands-on (90 min live or 4-hr take-home): Implement a small Next.js + Node feature with tests.
4. Culture/Client (45 min): Stakeholder scenarios, estimation, conflict handling.
Rubric (weighted):
• System design & architecture 30% - 1: ad-hoc; 3: coherent modular plan; 5: clear boundaries, scaling, security, cost.
• Coding & correctness 25% - 1: fragile; 3: idiomatic TS with tests; 5: clean, tested, maintainable, accessible.
• Data/API design 15% - 1: leaky; 3: normalized schemas; 5: versioning, pagination, resilience.
• Quality & DevEx 15% - 1: minimal tests; 3: CI gates; 5: thoughtful testing pyramid, observability hooks.
• Client communication/leadership 15% - 1: unclear; 3: structured; 5: consultative, risk management.
Full time
Frontend Engineer (React/Next.js)
Purpose: Build fast, accessible UIs; integrate APIs; uphold UI quality and performance.
Purpose: Build fast, accessible UIs; integrate APIs; uphold UI quality and performance.
Responsibilities
• Develop features in React/Next.js with TypeScript; SSR/SSG where needed.
• Ensure accessibility (WCAG 2.1 AA), responsiveness, and Core Web Vitals.
• State management (React Query/RTK/Zustand) and API integration.
• Component libraries/design systems; write unit/e2e tests.
• Collaborate with UX and backend for smooth delivery.
Minimum Qualifications
• 2–5 years in modern React, Next.js fundamentals, TypeScript, HTML5/CSS3.
• Testing with Jest/RTL and Playwright/Cypress.
• Performance profiling (Lighthouse/DevTools) and web security basics (XSS, CSP).
Nice-to-Have
• TailwindCSS, Storybook, i18n, analytics, accessibility auditing tools.
KPIs & 30/60/90 Success Plan
• KPIs: CWV green; <1% UI regressions post-release; a11y score ≥ 95.
• 30 days: Ship 1–2 UI stories; adopt coding standards.
• 60 days: Own a component area; add tests/perf budgets.
• 90 days: Co-maintain design system; mentor juniors.
Interview Process & Rubric
1. Screen (25 min): React/Next basics, a11y mindset.
2. Live UI Task (60–75 min): Build a component from Figma with API mock.
3. FE Deep Dive (45 min): State, routing, rendering, perf, a11y.
4. Team Fit (30 min).
Rubric (weighted):
• UI implementation quality 35%
• React/Next concepts 25%
• Testing & quality 20%
• Performance & a11y 10%
• Collaboration 10%
Responsibilities
• Develop features in React/Next.js with TypeScript; SSR/SSG where needed.
• Ensure accessibility (WCAG 2.1 AA), responsiveness, and Core Web Vitals.
• State management (React Query/RTK/Zustand) and API integration.
• Component libraries/design systems; write unit/e2e tests.
• Collaborate with UX and backend for smooth delivery.
Minimum Qualifications
• 2–5 years in modern React, Next.js fundamentals, TypeScript, HTML5/CSS3.
• Testing with Jest/RTL and Playwright/Cypress.
• Performance profiling (Lighthouse/DevTools) and web security basics (XSS, CSP).
Nice-to-Have
• TailwindCSS, Storybook, i18n, analytics, accessibility auditing tools.
KPIs & 30/60/90 Success Plan
• KPIs: CWV green; <1% UI regressions post-release; a11y score ≥ 95.
• 30 days: Ship 1–2 UI stories; adopt coding standards.
• 60 days: Own a component area; add tests/perf budgets.
• 90 days: Co-maintain design system; mentor juniors.
Interview Process & Rubric
1. Screen (25 min): React/Next basics, a11y mindset.
2. Live UI Task (60–75 min): Build a component from Figma with API mock.
3. FE Deep Dive (45 min): State, routing, rendering, perf, a11y.
4. Team Fit (30 min).
Rubric (weighted):
• UI implementation quality 35%
• React/Next concepts 25%
• Testing & quality 20%
• Performance & a11y 10%
• Collaboration 10%
Full time
QA Engineer (Automation-first)
Purpose: Own test strategy; prevent defects via automation across UI/API; champion shift-left quality.
Purpose: Own test strategy; prevent defects via automation across UI/API; champion shift-left quality.
Responsibilities
• Define test strategy, traceability, and risk-based coverage.
• Build/maintain Playwright/Cypress suites; API tests (REST/GraphQL) with Postman/Newman or Pact.
• Integrate tests into CI; set quality gates; defect analytics & RCA.
• Basic security checks (OWASP smoke), performance checks (k6/JMeter) where needed.
Minimum Qualifications
• 3–6 years QA with strong automation (TypeScript/Java or Python).
• CI orchestration (GitHub Actions/GitLab), reporting (Allure), mock/stub practices.
Nice-to-Have
• Contract testing, mobile testing, performance testing, SQL for data validation.
KPIs & 30/60/90 Success Plan
• KPIs: Automated coverage ≥ 70% of critical paths; escaped defect rate ↓; flaky tests < 2%.
• 30 days: Baseline smoke in CI; defect taxonomy.
• 60 days: Critical path automated; dashboards live.
• 90 days: Mature test pyramid; release risk predictable.
Interview Process & Rubric
1. Screen (25 min).
2. Automation Exercise (60–90 min): Write Playwright specs against a sample app + API assertions.
3. Quality Strategy Deep Dive (45 min).
4. Stakeholder Comm (30 min).
Rubric (weighted):
• Automation design & code 35%
• Test strategy & risk mgmt 30%
• CI integration & reporting 20%
• Communication & influence 15%
Responsibilities
• Define test strategy, traceability, and risk-based coverage.
• Build/maintain Playwright/Cypress suites; API tests (REST/GraphQL) with Postman/Newman or Pact.
• Integrate tests into CI; set quality gates; defect analytics & RCA.
• Basic security checks (OWASP smoke), performance checks (k6/JMeter) where needed.
Minimum Qualifications
• 3–6 years QA with strong automation (TypeScript/Java or Python).
• CI orchestration (GitHub Actions/GitLab), reporting (Allure), mock/stub practices.
Nice-to-Have
• Contract testing, mobile testing, performance testing, SQL for data validation.
KPIs & 30/60/90 Success Plan
• KPIs: Automated coverage ≥ 70% of critical paths; escaped defect rate ↓; flaky tests < 2%.
• 30 days: Baseline smoke in CI; defect taxonomy.
• 60 days: Critical path automated; dashboards live.
• 90 days: Mature test pyramid; release risk predictable.
Interview Process & Rubric
1. Screen (25 min).
2. Automation Exercise (60–90 min): Write Playwright specs against a sample app + API assertions.
3. Quality Strategy Deep Dive (45 min).
4. Stakeholder Comm (30 min).
Rubric (weighted):
• Automation design & code 35%
• Test strategy & risk mgmt 30%
• CI integration & reporting 20%
• Communication & influence 15%
Full time
UI/UX Designer
Purpose: Turn requirements into clear flows, wireframes, and pixel-perfect designs; maintain a design system.
Purpose: Turn requirements into clear flows, wireframes, and pixel-perfect designs; maintain a design system.
Responsibilities
• User research light: interviews, heuristic reviews, analytics reads.
• Information architecture, flows, wireframes, prototypes (Figma).
• Usability, a11y, and hand-off specifications for engineering.
• Evolve a reusable design system (tokens, components).
Minimum Qualifications
• 3–6 years in product/consulting; strong Figma skills and portfolio showing shipped work.
• Familiar with a11y, responsive design, and dev hand-off practices.
Nice-to-Have
• Basic HTML/CSS knowledge; analytics (GA4/Hotjar), UX writing.
KPIs & 30/60/90 Success Plan
• KPIs: Design acceptance rate; usability issue rate; cycle time from brief → dev-ready.
• 30 days: Audit current UX; deliver a small feature end-to-end.
• 60 days: Ship a flow; initiate design system v1.
• 90 days: Design system adopted; measurable usability lift.
Interview Process & Rubric
1. Portfolio Walkthrough (45–60 min).
2. Whiteboard/Task (60 min): Redesign a key flow; show reasoning.
3. Collaboration (30 min): With FE lead to validate feasibility.
Rubric (weighted):
• Problem framing & research 25%
• Interaction & IA 25%
• Visual craft 20%
• A11y & feasibility 15%
• Communication/storytelling 15%
Responsibilities
• User research light: interviews, heuristic reviews, analytics reads.
• Information architecture, flows, wireframes, prototypes (Figma).
• Usability, a11y, and hand-off specifications for engineering.
• Evolve a reusable design system (tokens, components).
Minimum Qualifications
• 3–6 years in product/consulting; strong Figma skills and portfolio showing shipped work.
• Familiar with a11y, responsive design, and dev hand-off practices.
Nice-to-Have
• Basic HTML/CSS knowledge; analytics (GA4/Hotjar), UX writing.
KPIs & 30/60/90 Success Plan
• KPIs: Design acceptance rate; usability issue rate; cycle time from brief → dev-ready.
• 30 days: Audit current UX; deliver a small feature end-to-end.
• 60 days: Ship a flow; initiate design system v1.
• 90 days: Design system adopted; measurable usability lift.
Interview Process & Rubric
1. Portfolio Walkthrough (45–60 min).
2. Whiteboard/Task (60 min): Redesign a key flow; show reasoning.
3. Collaboration (30 min): With FE lead to validate feasibility.
Rubric (weighted):
• Problem framing & research 25%
• Interaction & IA 25%
• Visual craft 20%
• A11y & feasibility 15%
• Communication/storytelling 15%
Contract
DevOps/Cloud Engineer (Contract)
Purpose: Establish secure, reliable CI/CD, IaC, and monitoring; enable teams to ship safely and quickly.
Purpose: Establish secure, reliable CI/CD, IaC, and monitoring; enable teams to ship safely and quickly.
Responsibilities
• Build CI/CD pipelines (GitHub Actions) with environments, approvals, and rollbacks.
• Create Terraform modules for VPC, ECS/EKS or Lambda, RDS, S3/CloudFront, IAM guardrails.
• Observability: logs/metrics/traces; alerting; cost visibility and budgets.
• Security: SAST/DAST integration (CodeQL, Snyk), secrets management, least privilege IAM.
• Handover documentation and enablement for dev teams.
Minimum Qualifications
• 5+ years DevOps/SRE; deep AWS (or Azure); Docker; IaC (Terraform); Linux/networking.
Nice-to-Have
• Kubernetes (EKS), Blue/Green & Canary, OpenTelemetry, FinOps.
Contract Outcomes (4–6 weeks typical)
• CI/CD with policy checks & rollbacks; Terraform-based infra; dashboards & alerts; runbooks; security scanners wired.
Interview Process & Rubric
1. Screen (25 min).
2. Architecture Deep Dive (60 min): Design a secure multi-env setup.
3. Hands-on (60–90 min): Write a small Terraform module & CI workflow (reviewed live).
Rubric (weighted):
• Cloud architecture & security 35%
• IaC quality & modularity 30%
• CI/CD design & reliability 20%
• Documentation & handover 15%
Responsibilities
• Build CI/CD pipelines (GitHub Actions) with environments, approvals, and rollbacks.
• Create Terraform modules for VPC, ECS/EKS or Lambda, RDS, S3/CloudFront, IAM guardrails.
• Observability: logs/metrics/traces; alerting; cost visibility and budgets.
• Security: SAST/DAST integration (CodeQL, Snyk), secrets management, least privilege IAM.
• Handover documentation and enablement for dev teams.
Minimum Qualifications
• 5+ years DevOps/SRE; deep AWS (or Azure); Docker; IaC (Terraform); Linux/networking.
Nice-to-Have
• Kubernetes (EKS), Blue/Green & Canary, OpenTelemetry, FinOps.
Contract Outcomes (4–6 weeks typical)
• CI/CD with policy checks & rollbacks; Terraform-based infra; dashboards & alerts; runbooks; security scanners wired.
Interview Process & Rubric
1. Screen (25 min).
2. Architecture Deep Dive (60 min): Design a secure multi-env setup.
3. Hands-on (60–90 min): Write a small Terraform module & CI workflow (reviewed live).
Rubric (weighted):
• Cloud architecture & security 35%
• IaC quality & modularity 30%
• CI/CD design & reliability 20%
• Documentation & handover 15%
Full time
Sales Development Representative (US Market)
Purpose: Generate qualified pipeline in the US; book discovery calls for founders/AE.
Purpose: Generate qualified pipeline in the US; book discovery calls for founders/AE.
Responsibilities
• ICP targeting; build lead lists; run multi-channel sequences (email, LinkedIn, calls).
• Personalize first touches; handle objections; qualify via BANT/CHAMP; schedule meetings.
• Update CRM daily; collaborate on messaging with marketing/founders; share call notes.
Minimum Qualifications
• 1–3 years outbound SDR for services/SaaS; fluent English; comfort with US hours.
• Tools: LinkedIn Sales Navigator, Apollo/ZoomInfo, HubSpot/Zoho, Loom.
KPIs & 30/60/90 Success Plan
• KPIs: 60–100 touches/day; 8–12 meetings/month; ≥30% meeting-show rate; 2–3 SQLs/month.
• 30 days: Ramp on ICP, messaging, tools; 3 meetings.
• 60 days: Full quota; 6–8 meetings.
• 90 days: Consistent 8–12 meetings; sourced revenue influence.
Interview Process & Rubric
1. Screen (20 min): Communication & grit.
2. Role-play (30–40 min): Cold call + email live.
3. Exercise (take-home 1 hr): Build a 5-step sequence for a target account with personalization.
Rubric (weighted):
• Communication & clarity 30%
• Prospecting & research 25%
• Objection handling & qualification 25%
• Process/CRM discipline 10%
• Coachability 10%
Responsibilities
• ICP targeting; build lead lists; run multi-channel sequences (email, LinkedIn, calls).
• Personalize first touches; handle objections; qualify via BANT/CHAMP; schedule meetings.
• Update CRM daily; collaborate on messaging with marketing/founders; share call notes.
Minimum Qualifications
• 1–3 years outbound SDR for services/SaaS; fluent English; comfort with US hours.
• Tools: LinkedIn Sales Navigator, Apollo/ZoomInfo, HubSpot/Zoho, Loom.
KPIs & 30/60/90 Success Plan
• KPIs: 60–100 touches/day; 8–12 meetings/month; ≥30% meeting-show rate; 2–3 SQLs/month.
• 30 days: Ramp on ICP, messaging, tools; 3 meetings.
• 60 days: Full quota; 6–8 meetings.
• 90 days: Consistent 8–12 meetings; sourced revenue influence.
Interview Process & Rubric
1. Screen (20 min): Communication & grit.
2. Role-play (30–40 min): Cold call + email live.
3. Exercise (take-home 1 hr): Build a 5-step sequence for a target account with personalization.
Rubric (weighted):
• Communication & clarity 30%
• Prospecting & research 25%
• Objection handling & qualification 25%
• Process/CRM discipline 10%
• Coachability 10%
Full time
Data Analyst (SQL/Python)
Purpose: Turn raw data into insights, dashboards, and decision-ready narratives for clients.
Purpose: Turn raw data into insights, dashboards, and decision-ready narratives for clients.
Responsibilities
• Data discovery; write clean SQL; transform with pandas; validate data quality.
• Build dashboards (Tableau/Power BI/Looker Studio); define metrics; automate refreshes.
• Analyze experiments/cohorts/funnels; present findings and recommendations.
Minimum Qualifications
• 2–5 years analytics; strong SQL; Python (pandas, numpy); visualization tool proficiency.
• Statistics basics (hypothesis testing, confidence intervals); stakeholder communication.
Nice-to-Have
• dbt basics; BigQuery/Redshift/Snowflake; A/B testing frameworks.
KPIs & 30/60/90 Success Plan
• KPIs: Dashboard adoption; decision impact; SLA on data refresh; data defect rate.
• 30 days: Ship a validated dashboard; metric dictionary v1.
• 60 days: Automate pipelines; deliver a decision memo.
• 90 days: Trusted partner; measurable business lift.
Interview Process & Rubric
1. SQL Live (45–60 min): Joins, window functions, edge cases.
2. Case Study (45 min): Diagnostic → recommendation; chart critique.
3. Python (30–45 min): Data wrangling snippet; clarity and tests.
Rubric (weighted):
• SQL correctness & efficiency 40%
• Analytical thinking & storytelling 30%
• Python/data wrangling 20%
• Visualization best practices 10%
Responsibilities
• Data discovery; write clean SQL; transform with pandas; validate data quality.
• Build dashboards (Tableau/Power BI/Looker Studio); define metrics; automate refreshes.
• Analyze experiments/cohorts/funnels; present findings and recommendations.
Minimum Qualifications
• 2–5 years analytics; strong SQL; Python (pandas, numpy); visualization tool proficiency.
• Statistics basics (hypothesis testing, confidence intervals); stakeholder communication.
Nice-to-Have
• dbt basics; BigQuery/Redshift/Snowflake; A/B testing frameworks.
KPIs & 30/60/90 Success Plan
• KPIs: Dashboard adoption; decision impact; SLA on data refresh; data defect rate.
• 30 days: Ship a validated dashboard; metric dictionary v1.
• 60 days: Automate pipelines; deliver a decision memo.
• 90 days: Trusted partner; measurable business lift.
Interview Process & Rubric
1. SQL Live (45–60 min): Joins, window functions, edge cases.
2. Case Study (45 min): Diagnostic → recommendation; chart critique.
3. Python (30–45 min): Data wrangling snippet; clarity and tests.
Rubric (weighted):
• SQL correctness & efficiency 40%
• Analytical thinking & storytelling 30%
• Python/data wrangling 20%
• Visualization best practices 10%
Full time
Data Engineer (ETL, dbt/Airflow, AWS)
Purpose: Build reliable, documented data pipelines and models that power analytics and apps.
Purpose: Build reliable, documented data pipelines and models that power analytics and apps.
Responsibilities
• Ingest, transform, and model data using Airflow/dbt; manage schemas and SLAs.
• Optimize warehouse performance; enforce data contracts; test & document lineage.
• Orchestrate jobs; implement monitoring/alerts; cost & reliability controls.
Minimum Qualifications
• 3–6 years data engineering; Python; SQL at scale; Airflow; dbt; AWS (S3, Glue/Lambda, Redshift) or equivalents.
Nice-to-Have
• Spark; Kafka/Kinesis; Terraform; Snowflake/BigQuery; Great Expectations/DBT tests.
KPIs & 30/60/90 Success Plan
• KPIs: Pipeline success rate ≥ 99%; freshness SLAs met; cost within budget; tested models.
• 30 days: Stabilize existing jobs; observability baseline.
• 60 days: dbt models + tests; SLA dashboards.
• 90 days: Cost/perf optimizations; data contract compliance.
Interview Process & Rubric
1. Architecture Deep Dive (45–60 min): Design a pipeline for multi-source ingestion.
2. SQL/Python (45–60 min): Transformations & unit tests.
3. Orchestration (30–45 min): Airflow DAG design + observability plan.
Rubric (weighted):
• Pipeline & data modeling 35%
• SQL/Python implementation 30%
• Orchestration & reliability 20%
• Documentation & data quality 15%
Responsibilities
• Ingest, transform, and model data using Airflow/dbt; manage schemas and SLAs.
• Optimize warehouse performance; enforce data contracts; test & document lineage.
• Orchestrate jobs; implement monitoring/alerts; cost & reliability controls.
Minimum Qualifications
• 3–6 years data engineering; Python; SQL at scale; Airflow; dbt; AWS (S3, Glue/Lambda, Redshift) or equivalents.
Nice-to-Have
• Spark; Kafka/Kinesis; Terraform; Snowflake/BigQuery; Great Expectations/DBT tests.
KPIs & 30/60/90 Success Plan
• KPIs: Pipeline success rate ≥ 99%; freshness SLAs met; cost within budget; tested models.
• 30 days: Stabilize existing jobs; observability baseline.
• 60 days: dbt models + tests; SLA dashboards.
• 90 days: Cost/perf optimizations; data contract compliance.
Interview Process & Rubric
1. Architecture Deep Dive (45–60 min): Design a pipeline for multi-source ingestion.
2. SQL/Python (45–60 min): Transformations & unit tests.
3. Orchestration (30–45 min): Airflow DAG design + observability plan.
Rubric (weighted):
• Pipeline & data modeling 35%
• SQL/Python implementation 30%
• Orchestration & reliability 20%
• Documentation & data quality 15%
Full time
Application Security / QA (AppSec focus)
Purpose: Integrate security into SDLC; proactively find and fix vulnerabilities; educate developers.
Purpose: Integrate security into SDLC; proactively find and fix vulnerabilities; educate developers.
Responsibilities
• Threat modeling for new features; secure design guidance.
• Integrate SAST/DAST/dep scanning (e.g., CodeQL, OWASP ZAP, Snyk); triage & remediation SLAs.
• Secure code reviews (React/Node); auth flows (OAuth/OIDC/JWT); secrets & config hygiene.
• Define AppSec playbooks (OWASP ASVS); security test cases; coordinate pentests.
• Run developer security training; track risk and report posture.
Minimum Qualifications
• 4–7 years AppSec/QA; web vulns (XSS, CSRF, SSRF, SQLi); modern auth; SDLC tooling.
Nice-to-Have
• Compliance exposure (SOC 2, HIPAA), threat modeling frameworks (STRIDE/PASTA), IaC security.
KPIs & 30/60/90 Success Plan
• KPIs: Time-to-remediate criticals; % coverage by scanners; recurring vuln trend down; zero secrets in repos.
• 30 days: Security scanners in CI; baseline risk register.
• 60 days: Threat model for key app; secure coding checklist adopted.
• 90 days: Measurable drop in high/critical vulns; dev training delivered.
Interview Process & Rubric
1. Screen (20 min).
2. AppSec Deep Dive (60 min): Walk through securing a Next.js/Node app end-to-end.
3. Hands-on (45–60 min): Review a small PR; find/report issues; propose fixes.
Rubric (weighted):
• Vulnerability knowledge & mitigation 35%
• Secure SDLC tooling & process 25%
• Code review & pragmatic fixes 25%
• Communication & developer enablement 15%
Responsibilities
• Threat modeling for new features; secure design guidance.
• Integrate SAST/DAST/dep scanning (e.g., CodeQL, OWASP ZAP, Snyk); triage & remediation SLAs.
• Secure code reviews (React/Node); auth flows (OAuth/OIDC/JWT); secrets & config hygiene.
• Define AppSec playbooks (OWASP ASVS); security test cases; coordinate pentests.
• Run developer security training; track risk and report posture.
Minimum Qualifications
• 4–7 years AppSec/QA; web vulns (XSS, CSRF, SSRF, SQLi); modern auth; SDLC tooling.
Nice-to-Have
• Compliance exposure (SOC 2, HIPAA), threat modeling frameworks (STRIDE/PASTA), IaC security.
KPIs & 30/60/90 Success Plan
• KPIs: Time-to-remediate criticals; % coverage by scanners; recurring vuln trend down; zero secrets in repos.
• 30 days: Security scanners in CI; baseline risk register.
• 60 days: Threat model for key app; secure coding checklist adopted.
• 90 days: Measurable drop in high/critical vulns; dev training delivered.
Interview Process & Rubric
1. Screen (20 min).
2. AppSec Deep Dive (60 min): Walk through securing a Next.js/Node app end-to-end.
3. Hands-on (45–60 min): Review a small PR; find/report issues; propose fixes.
Rubric (weighted):
• Vulnerability knowledge & mitigation 35%
• Secure SDLC tooling & process 25%
• Code review & pragmatic fixes 25%
• Communication & developer enablement 15%
Signup to our newsletter
Signup to get news and updates consectetur adipiscing elit, sed
do eiusmod tempor incididunt
do eiusmod tempor incididunt
Already member Sign in
