A rare opportunity exists at Ezypay for a talented and enthusiastic Senior Engineer, DevSecOps.
Ezypay is a multi-award winning FinTech company established in 1996, specialising in the provision of subscription and recurring direct debit payments.
With offices in Australia, New Zealand and Malaysia, Ezypay has processed over $3 billion worth of subscription payments in 9 countries across the Asia Pacific region (Australia, New Zealand, Malaysia, Singapore, Philippines, Hong Kong, China, Taiwan and Thailand) and we’re continually expanding.
Over the last few years, we have put significant effort into our next generation cloud subscription billing platform. This is a core strategic focus and we continue to actively develop and grow this platform.
The Role and Responsibilities
As a Senior Engineer at Ezypay, you directly contribute to and shape Australia’s leading recurring payments and subscription billing API. The product supports definition of payment plans and collection using multiple payment methods.
Some of your main responsibilities will include:
Conduct technical security operations, to meet our annual compliance objectives – e.g. active and passive threat monitoring, incident management, log reviews, vulnerability scanning and penetration testing, maintaining patching and upgrade standards
Perform operational procedures as part of site reliability engineering – review and maintain platform observability, troubleshoot issues and respond to incidents, review and maintain service level objectives
Assist in planning and development of software, ensuring appropriate testing, observability and other non-functional requirements are in place for release readiness and deployments.
Advocate and implement technical and process improvements to the immediate and broader engineering functions in line with business objectives.
Participate in defining software and systems architecture, maintain and implement infrastructure as code, automate manual procedures and ensure documentation is maintained.
Our Technical Environment
Here’s a high level view of how we work:
Our next generation payments platform has been developed using Java/Spring Boot micro-service architecture.
Our infrastructure is hosted on AWS with a mix of containerisation and EC2 workloads
Our systems are secure and highly available – we have implemented passive and active monitoring and incident escalation using a combination of Datadog, CloudWatch Logs and Metrics, Postman, and Pagerduty
Our operating system of choice is CentOS and the team is fanatical about security, monitoring, and patch management.
Our infrastructure is immutable and managed using IaC principles via Terraform
We leverage build automation using CircleCI, and we’re working toward continuous deployment across all environments
Requirements you’ll need to succeed……
Essential:
5+ years in a similar role
PCI or ISO 27001 experience
Understanding of security best practices (software and systems)
Linux administration experience on cloud infrastructure
Good understanding of software and systems architecture
Experience programming in at least one compiled or interpreted language (Java, .Net, Python, Bash, Powershell etc.)
Desired:
Red team / penetration testing experience is highly regarded.
Amazon AWS experience
Java development
Previous experience with a microservices and event driven architecture