API Security Engineer
Role summary
A Senior/Staff Backend Engineer (SDE-4) is sought for a high-growth mobility platform serving owner-operator semi-truck drivers. This role involves end-to-end ownership of backend microservices, focusing on design, cloud deployment, and production support. Key responsibilities include hardening the platform for 99.99% uptime in critical workflows, building scalable features, and leading the transition of services from Python to Java. The engineer will integrate monitoring and observability tools, implement API security measures for PCI 4.0 compliance, manage CI/CD pipelines, and handle complex production issues. Expertise in Java, Python, AWS, microservices, API design, and CI/CD is required.
As a Senior/Staff Backend Engineer (SDE-4) for the 10-4 App, you will be a critical contributor to a high-growth mobility platform designed for owner-operator semi-truck drivers. You will take end-to-end ownership of backend microservices from design through to cloud deployment and production support. Your mission is to harden the 10-4 platform, ensuring 99.99% uptime for critical fueling and payment workflows while building scalable features to support our active users.
Key Responsibilities:
- Design and maintain high-performance microservices using Java Spring and Python. Lead the transition of high-concurrency services from Python to Java for improved thread-safe processing.
- Bridge gaps in monitoring and observability by integrating services with Grafana and standardizing distributed tracing. Implement rate limiting and bidirectional throttling through API Gateway (Apigee) migration.
- Champion PCI 4.0 compliance by implementing secure tokenization and feature-flagging strategies. Fortify the app against fraud through the implementation of 3D Secure (3DS) and secure authentication services (Okta).
- Take full ownership of CI/CD pipelines using GitHub Actions. Manage services within AWS (ECS), including autoscaling policies, IP allocation, and multi-AZ deployments for automatic failover and disaster recovery.
- Provide hyper-care during user ramp-ups, including troubleshooting complex production issues like circuit breaker loops or DNS caching errors. Reduce customer support load by enhancing the Admin Hub with precise error reporting and self-service capabilities.
Technical Requirements Category:Required Stack / Skills
Languages Expert: Python, Java (Spring Boot). Familiarity: Perl, Bash. Cloud/Infra AWS Specialist: ECS, S3, RDS (PostgreSQL/Aurora), ElastiCache (Redis), Kafka. DevOps GitHub Actions, Terraform (Terragrunt), Docker/Containerization, Fabric. Observability Splunk, Grafana, Prometheus, Datadog (migration focus). Architectures Event-driven design (Kafka/Avro), Micro-Frontend (MFE), RESTful API design.
Professional Qualifications:
- 10-12 years of professional experience in software engineering.
- Proficiency in backend development, with proficiency expertise in Java, and frameworks like SpringBoot, building and optimizing RESTful APIs, ODATA framework, and SQL
- Proven ability to navigate the entire software lifecycle, including hands-on testing (Robot Framework ) and cloud deployment.
- Expertise in diagnosing root causes in high-concurrency environments (e.g., async event loop timeouts, thread locking, or connection pool saturation).
- Experience working in Agile/Scrum environments, participating in weekly backlog refinement and sprint planning to drive clear task writing and delivery.
- Ability to make technical decisions through a customer lens, focusing on reducing friction in onboarding and payment workflows. We are looking for an engineer who treats Production as part of their development environment. You should be comfortable analyzing TCP fins in firewall logs, adjusting autoscaling parameters, and implementing jitter in backoff mechanisms to prevent thundering herd issues during major marketing campaigns.
For applications and inquiries, contact: hirings@openkyber.com
