DevSecOps Architect (Remote)

Company Description

Balsam Brands is a global, eCommerce retailer with roots in seasonal, Christmas, and home décor. We are thrilled to extend our reach into Mexico City, bringing the magic of the holidays to a vibrant new location. Your role will be pivotal in shaping the future and trajectory of our company right here in Mexico City!

Why Balsam Brands? At Balsam Brands, we're not just a company. Our people-first approach means that you're not just an employee; you're a valued member of a community that values relationship building, authenticity, and doing the right thing. We've been sharing joy across the globe, with growing teams in Boise, ID, Redwood City, CA, Dublin, IE, and Manila, PH. Now, we're excited to welcome talent from the heart of Mexico City, MX!

Our Mission: Create Joy Together. Join us in empowering our team and partners to love what they do. At Balsam Brands, we're about more than just the products we sell; we're about creating experiences that inspire meaningful moments with family and friends. Your work will contribute to our larger mission of giving back to our families and communities in impactful ways.

When you join Balsam Brands in Mexico City, you're not just joining a company; you're joining a culture of caring and interesting people doing challenging work to grow together to delight our customers. Together, we're building a workplace where everyone feels welcome, supported, and encouraged to bring their best selves to work every day.

Ready to be a part of the joy? Explore more about the DevSecOps Architect role below and apply today!

Job Description

As a DevSecOps Architect, you will be responsible for designing, implementing, and managing the security aspects of the DevOps pipeline. You will collaborate with development, and compliance teams to ensure that security is prioritized and integrated into every phase of the software development lifecycle. This role is responsible to develop and implement a comprehensive DevSecOps strategy aligned with the organization's goals and compliance requirements working to establish security best practices and integrate them into the development and deployment process. This role is pivotal in enhancing the security posture of all applications, with a focus on implementing and maintaining security principles and best practices. You will be responsible for overseeing vulnerability scanning, analyzing web traffic, and implementing measures to identify and mitigate potential security risks.

This full-time position reports to the Director of Strategy & Architecture and will work remote in Mexico City. To ensure sufficient overlap with functional and cross-functional team members globally, some flexibility with this role's regular work schedule will be required. Most of our teams have overlap with early morning and/or early evening PST. Specific scheduling needs for this role will be discussed in the initial interview.

What you’ll do:

• Analyzing, developing, and recommending improvement of software security infrastructures and standards
• Identifies and corrects data security issues and with appropriate actions in a multiple computing platform environment
• Deliver and promote secure coding techniques, assessing vulnerabilities, providing remediation guidance
• Ensure compliance with PCI-DSS, HITRUST, NIST, SOC and other related requirements of regulation
• Provides security guidance on infrastructural designs and organizes numerous risk assessments to identify and eliminate application/product threats
• Automate software maintenance of applications like Jenkins, SonarQube, etc. which are part of CI/CD pipeline
• Maintain, optimize, and improve security of applications deployed on AWS and Azure
• Develop and maintain incident response plans and participate in security incident response activities
• Collaborate with incident response teams to investigate and resolve security incidents
• Coordinate and communicate actively risks, priorities, and assignment of tasks for timely completion of deliverables
• Partner with software engineers and QA team to automate and streamline our operations and processes
• Evaluate, select, and implement security tools and technologies that align with the organization's security goals
• Manage and optimize security tools to ensure efficiency and effectiveness

What you bring to the table:

• Must be fluent in English, both written and verbal
• Minimum of seven (7+) years relevant experience in designing and building frameworks and tools
• In-depth knowledge of security principles, practices, and technologies
• Familiarity with industry security standards and frameworks (e.g., ISO 27001, NIST, OWASP)
• Knowledge of IP networking, VPN's, DNS, load balancing and firewall
• Proven experience as an AWS Architect with expertise in Terraform, Kubernetes, Containers and serverless
• Strong understanding of cloud computing concepts and AWS services
• Certification(s) such as AWS Certified Solutions Architect, Certified Information Systems Security Professional (CISSP) and/or Certified DevOps Engineer preferred
• Strong presentation, verbal, and written communications skills
• Must have experience in systems automation, orchestration, deployment, and implementation, as well as have skills in scaling distributed data systems
• Experience architecting cloud native CI/CD workflows with tools like as Jenkins, Bamboo, Bitbucket, GitHub, Code Deploy (AWS) etc.
• High standards for documentation, unit testing, code reviews, continuous integration & deployment
• Strong problem-solving skills: adaptable, enthusiastic, and willing to take ownership
• Ability to work with offshore teams & development partners is a must have

Notes: This is a full-time (40 hours/week), indefinite position with benefits. Velocity Global is the Employer of Record for Balsam Brands' Mexico City location, and you will be employed and provided benefits under their payroll. Balsam Brands has partnered with Velocity Global to act as your Employer of Record to ensure your employment will comply with all local laws and regulations and you will receive an exceptional employment experience.

• Check out our flagship brand, Balsam Hill: www.balsamhill.com
• Balsam Brands in Forbes: https://bit.ly/balsambrandsforbes2023 
• LinkedIn: http://www.linkedin.com/company/balsam-brands/
• Glassdoor: https://bit.ly/balsambrands-glassdoor

What we offer:

• Competitive compensation; salary is reviewed yearly and may be adjusted as part of the normal compensation review process
• Career development and growth opportunities; access to online learning solutions and annual stipend for continuous learning
• Fully remote work and flexible schedule
• Collaborate in a multicultural environment; learn and share best practices around the globe
• Government mandated benefits (IMSS, INFONAVIT, 50% vacation premium)
• Healthcare coverage provided for the employee and dependents
• Life insurance provided for the employee
• 13% employee savings fund, capped to the legal limit
• Monthly grocery coupons
• Monthly non-taxable amount for the electricity and internet services 
• 20 days Christmas bonus
• Paid Time Off: Official Mexican holidays and 12 vacation days (increases with years of service), plus additional wellness days available at start of employment 

Additional Information

All your information will be kept confidential according to EEO guidelines.