Platform Engineer, Security

Job Title : Platform Engineer - Montreal (Hybrid)

About Stay22

Stay22 is a fast-growing and profitable Travel Tech scale-up based in Montreal. We empower content creators to monetize their content more effectively while enhancing the travel experience for their users through innovative solutions.

Our technology simplifies the search for travel-related services, reaching over 100 million unique users monthly via top travel discovery pages and platforms.

Our Platform team oversees Platform Management, DevOps, Security, and Site Reliability. Join us to push the boundaries of predictive modeling and AI in Travel Tech.

Job Summary

We are looking for a Platform Engineer with a strong background in DevOps and Security to join our growing Platform team.

The mission of the Platform team is to build high-quality, easy-to-use cloud infrastructure and tooling for engineering teams to enable safer, faster and more reliable product delivery.

In this role, you will be responsible for architecting, implementing, and maintaining the core infrastructure supporting application workloads while also ensuring security is embedded in every aspect of our platform and the SDLC process.

You will take ownership of designing scalable, automated, and resilient infrastructure. This includes designing and implementing scalable and efficient deployment pipelines, managing application code deployment, collaborating with the engineering teams to test and optimize application performance, and providing an observability platform for the engineering teams to ensure high availability through proactive monitoring and troubleshooting.

In parallel, you will focus heavily on security, developing and enforcing security protocols, predicting and addressing security risks, and ensuring compliance with industry standards.

Key Responsibilities

• Develop, deploy, and support cloud infrastructure as code artifacts or modules and applications, ensuring security is integrated into each stage of the infrastructure lifecycle
• Implement, maintain, troubleshoot, and optimize CI / CD pipelines for multiple projects, ensuring automated security scans, vulnerability assessments, and compliance checks are incorporated into each technology stack
• Design and support resiliency and scalability using AWS, GCP, and other cloud platforms, incorporating SRE and DevOps practices to ensure minimal downtime, manual effort, and continuous security validation
• Configure application monitors using industry-standard monitoring tools, developing customized monitoring solutions as needed and integrating security monitoring for real-time detection of threats or anomalies
• Create and manage development, staging, and production environments, ensuring consistency with project requirements and maintaining up-to-date documentation for DevOps and security processes, procedures, and infrastructure configurations
• Articulate a long-term vision for scaling and maintaining infrastructure, including capacity, cost planning, and the incorporation of security protocols to protect hardware, software, and storage
• Interpret security policies and ensure platform designs conform to security guidelines and standards, ensuring infrastructure and application compliance with industry regulations
• Lead security assurance activities and interface with external security teams to communicate the platform's security posture
• Manage source code repositories, branching strategies, and version control using GitHub while implementing security controls such as code reviews, access restrictions, and automated vulnerability detection
• Collaborate with the engineering teams to adopt best engineering practices that will enable the teams to build high-quality and safe products efficiently

Requirements

• B.S. or M.S in Computer Science or equivalent experience
• 6-8+ years of experience implementing DevOps and SecOps solutions
• 4+ years of experience in information security, managing security compliance efforts or developing security validation tools
• 3+ years of experience working in a high-performing DevOps team or related roles
• 2+ years of experience in performance monitoring, alerting, and troubleshooting in an enterprise
• Experience with hybrid cloud and migrating infrastructure between clouds
• Proven experience delivering Infrastructure as Code via Terraform or a similar IaC tool
• Experience with containerization technologies (e.g. Docker, Kubernetes)
• Strong scripting or coding skills in languages like Python, JavaScript, Go
• Experience supporting pipeline tools (GitHub, CircleCI)
• Understanding of monitoring and logging tools such as Prometheus, Grafana, and ELK stack
• Expertise in designing and implementing secure, scalable, and automated infrastructure solutions
• Strong understanding of security frameworks, vulnerability management, and compliance workflows
• Knowledge of security best practices and compliance standards, including secure coding and vulnerability scanning

Why join Stay22?

• Support Travel Creators : Be part of a team that empowers travel creators to explore the world by increasing their passive income potential.
• Empower Your Growth : We hire champions and give them the opportunity to excel, skipping levels and honing their superpowers.
• Lead with Impact : We empower our team members to take charge and make a real impact in the Stay22 universe.
• Location, Location, Location : Enjoy our bright and vibrant office in the heart of Montreal’s Plateau Mont Royal, surrounded by the best shops and restaurants.
• Be Yourself : Embrace a come-as-you-are dress code and a flexible work schedule.
• Comprehensive Benefits : We offer health & dental benefits, retirement plans, learning & development opportunities, and social & team-building activities, including exciting retreats (while we can't share all the details about our upcoming winter retreat, let's just say we hope it's smooth sailing. .)

J-18808-Ljbffr