Hybrid in Orem, UT $130,000 - $150,000
Nexio is seeking a highly skilled and innovative DevOps Engineer to join our DevOps and Platform Engineering team! We are revolutionizing how payments and financial workflows are automated and optimized using specialized AI agents.Our platform is built primarily on AWS cloud infrastructure with a serverless and container-based services. You will play a critical role in supporting Nexio’s growth by building and maintaining infrastructure, security, and deployment processes that power our applications and services. You will help optimize performance, scalability, reliability, observability, security, and agentic automation (BI ops and AI ops).
Responsibilities
- Build and manage AWS infrastructure using best practices in security, scalability, high availability, and observability
- Manage Infrastructure as Code (IaC) using Terraform
- Support CI/CD deployment pipelines across environments
- Collaborate on Scrum teams with Product Managers, UX/UI, and Developers
- Support the Data and AI/ML Teams
- Track and manage system and software patches and upgrades
- Uphold security best practices, including tracking the remediation of vulnerabilities
- Ensure PCI-DSS compliance, including performing the yearly PCI Audit
- Collaborate on designing and maintaining a scalable architecture
- Collaborate on designing and maintaining high availability systems
- Maintain effective observability with metrics, logging, monitoring, alerting, and incident response systems
- Be available after hours for incident response/on-call rotation
Qualifications
- Minimum 4 years experience deploying and managing systems using Amazon Web Services
- Minimum 4 years experience deploying infrastructure as code using Terraform, including building modules for developers
- Minimum 4 years experience using CI/CD pipelines to automate infrastructure deployment (bitbucket or github/gitlab)
- Minimum 4 years experience with at least one programming language (JavaScript, Python, Go, Bash, etc.)
- Minimum 2 year experience writing or supporting API endpoints or equivalent public services, unit tests, integration tests
- Working knowledge of HTTP status codes and error handling
- Working knowledge of AWS networking (VPCs, subnets, security groups, route tables, internet gateways, NAT gateways, NACLs, IPv4, IPv6)
- Working knowledge of AWS IAM roles and policies
- Experience deploying serverless applications with Lambda, API Gateway, CloudFront
- Experience working with Aurora (MySQL) and DynamoDB serverless databases
- Experience deploying applications on AWS ECS/Fargate with ALB and Auto Scaling
- Experience with Linux server management, bash scripting, SSH keys, SSM, MFA
- Experience managing, building and deploying Docker containers
- Experience with S3 buckets and bucket policies
- Experience with SQS (or other queuing mechanisms), SNS, SES
- Experience with Certificate Manager, Route53, DNS, DNSSEC and domain management
- Experience with Secrets Manager
- Experience with KMS, Key Types, and associated cryptography
- Experience with TLS/HTTPS, ciphers, key/cert types, HSTS
- Experience with OIDC/SAML/SCIM/OAuth
- Experience with logging and observability (SumoLogic, Coralogix, and/or Grafana preferred)
- Good written and interpersonal communication skills
- Self-starter, takes initiative, accountable
- Excellent troubleshooting and problem solving skills
Preferred Experience
- Working knowledge of the PCI-DSS 4.0.1 security standard and experience with PCI-DSS level 1 audits (SOC 2 or other security audits also helpful)
- Working knowledge of Data Protection frameworks like CCPA/CPRA, GDPR, etc.
- Experience with NodeJS/NPM
- Experience with Python
- Experience with BI ops - Domo, Tableau, or other
- Experience with AI Ops - LLMs, Bedrock, RAG, Vector Databases, Agent Workflows
- Experience with managing AWS Workspaces and PCoIP zero clients
- Experience with managing AWS multi-region architecture
- Experience with PGP Encryption
- Experience with email security and deliverability (SMTP authentication, SPF, DKIM, DMARC, PTR records, mta-sts, bimi)
- Experience with the Payments industry
- Experience with IPSec and WireGuard VPNs
- Experience with Artifactory
- Experience with OpenTelemetry
- Experience with Tenable (or other vulnerability tracking software)
- Experience with A2P 10DLC SMS (registration, campaigns, and compliance)
What is Nexio?
Nexio provides payment service solutions for a variety of clients, from ecommerce merchants to software platforms. Our goal is to empower businesses with the tools they need to optimize payment revenue and adapt to dynamic market needs. We aim to be a partner, advisor, and innovator, dedicated to adding value to every client's business.
Benefits
- Generous PTO
- Medical, Dental, Vision, Life, STD, and LTD insurances; 5% 401k match, HSA match
- Free therapy for employees and their dependents
- Office snacks and on-site perks!
