Company Background

Our client is a leading global data center provider delivering hyperscale and edge infrastructure solutions across the Americas, EMEA, and Asia-Pacific. With 80+ data centers in 20+ countries, they partner with industry leaders such as Google, Oracle, NVIDIA, and Microsoft Azure to power the world’s digital infrastructure. Recognized as a USA TODAY Top Workplace for four consecutive years, the company continues to expand its global footprint and customer ecosystem.

Project Description

We are looking for a Cloud Infrastructure Engineer to help shape and deliver a modern cloud and hybrid IT strategy across Azure, AWS, and GCP. In this role, you will design scalable, secure, and cost-effective infrastructure that supports enterprise applications, hybrid connectivity, and next-generation data and AI/ML workloads.

Technologies

• Azure ecosystem
• Azure DevOps
• GCP / AWS
• Infrastructure as Code: Bicep
• Windows Server
• Microsoft SQL Server

What You'll Do

• Lead the assessment and modernization of enterprise cloud workloads, defining migration roadmaps across retain, re-platform, refactor, and retire scenarios;
• Design governed multi-cloud landing zones across Azure, AWS, and/or GCP, standardizing networking, identity, policy, and account/subscription topology through Terraform and Bicep;
• Establish cloud-agnostic infrastructure practices, reusable IaC modules, and automated provisioning standards to reduce manual operations and subscription sprawl;
• Govern identity and access across cloud platforms, SaaS applications, and CI/CD workloads using Microsoft Entra ID, conditional access, workload identity federation, and service principal controls;
• Architect secure hybrid and cross-cloud connectivity, including ExpressRoute, SD-WAN, traffic segmentation, and low-latency data transfer patterns;
• Implement zero-trust security controls for IT/OT boundaries, including inspected and policy-enforced traffic flows for SCADA, HMI, ICS, and enterprise systems;
• Design resilient, highly available cloud architectures with defined RTO/RPO targets and automated disaster recovery validation;
• Build platform services, CI/CD templates, and self-service infrastructure capabilities that enable internal teams to consume cloud services through documented standards and APIs;
• Implement governance, policy-as-code, and FinOps practices to enforce security, compliance, cost tagging, spend attribution, and cloud cost optimization;
• Support strategic modernization initiatives, including Kubernetes adoption, application containerization, database optimization, and reduction of Windows server licensing costs;

Job Requirements

• 7+ years of experience in cloud infrastructure engineering, with deep hands-on expertise in Microsoft Azure and production experience with at least two major cloud providers, such as Azure, AWS, or GCP;
• Strong experience with cloud networking, IAM, compute, IaaS/PaaS services, and Microsoft Entra ID / Azure AD, including conditional access, workload identity federation, SAML/SCIM, and service principal governance;
• Proven expertise in IaC using Terraform and/or Bicep, including governed landing zones, module registries, and cloud infrastructure migration;
• Hands-on experience designing and operating CI/CD pipelines using Azure DevOps, GitHub Actions, or similar tools, including pipeline-as-code, security scanning, and deployment gates;
• Solid understanding of zero-trust architecture, IT/OT boundary security, and industrial control environments such as SCADA, HMI, and ICS;
• Experience designing and validating disaster recovery architectures across regions and cloud providers, including RTO/RPO definition and automated failover testing;
• Familiarity with FinOps practices and tools, including cost tagging, spend attribution, showback/chargeback models, CloudHealth, CloudCor, or native cloud cost tools;
• Experience with policy-as-code frameworks such as Azure Policy, AWS SCPs, GCP Organization Policies, or Open Policy Agent;
• English level: B2 or higher;

What Do We Offer

The global benefits package includes:

• Technical and non-technical training for professional and personal growth;
• Internal conferences and meetups to learn from industry experts;
• Support and mentorship from an experienced employee to help you professional grow and development;
• Health insurance;
• English courses;
• Sports activities to promote a healthy lifestyle;
• Flexible work options, including remote and hybrid opportunities;
• Referral program for bringing in new talent;
• Work anniversary program and additional vacation days.

Company Background

Our client is the market leader in contact center robotic process automation (RPA). Its patented platform automates manual management processes in contact centers, helping enterprises reduce costs while improving agent engagement and customer experience. The platform powers over 1 billion automated actions annually and has delivered significant measurable ROI across industries such as financial services, telecommunications, insurance, and healthcare.

Project Description

The project focuses on deploying and managing a multi-tenant, namespace-isolated Kubernetes platform in a hosted AWS environment. You will design and implement secure, scalable tenant environments, automate deployments using GitOps, and ensure infrastructure reliability and compliance.

Technologies

• Kubernetes, Helm, Kustomize, GitOps (Argo CD, Flux), OpenTofu
• AWS (RDS, S3, KMS, IAM, Secrets Manager)
• NiFi, MariaDB, Flink, Dremio
• OpenTelemetry, Grafana, Jaeger/Tempo, ELK/Loki
• Service Mesh (Linkerd, Istio), OPA
• Bash, Python, PowerShell

What You'll Do

• Design and implement namespace-isolated tenant environments within shared Kubernetes clusters;
• Develop and maintain Helm charts with tenant-specific configurations;
• Build and manage GitOps-based CI/CD pipelines for per-tenant deployments;
• Integrate tenant workloads with backend systems (RDS/MariaDB, Flink, Dremio, S3);
• Implement compute isolation (node affinity, taints, tolerations);
• Apply security controls (RBAC, NetworkPolicies, OPA, service mesh);
• Ensure observability and monitoring using OpenTelemetry, Grafana, and centralized logging;
• Support secure deployment automation and rollback strategies;
• Collaborate with architecture and security teams on compliance validation;
• Participate in backend readiness efforts and transition from NiFi to microservices;

Job Requirements

• 5+ years of experience in DevOps, cloud infrastructure, or platform engineering;
• Strong hands-on experience with Kubernetes, including multi-tenant architecture and namespace management;
• Proficiency with Helm, Kustomize, and GitOps tools (Argo CD, Flux);
• Hands-on experience with AWS services (RDS, S3, IAM, KMS, Secrets Manager);
• Experience implementing secure CI/CD pipelines;
• Familiarity with backend/data systems (Flink, Dremio, MariaDB);
• Experience with NiFi (process groups, permissions, variable registries);
• Understanding of service mesh technologies and policy enforcement (OPA);
• Scripting experience (Bash, Python, PowerShell);
• Strong analytical and troubleshooting skills;
• Ability to work independently in fast-paced environments;
• Excellent collaboration and communication skills;
• English level: B2 or higher;

What Do We Offer

The global benefits package includes:

• Technical and non-technical training for professional and personal growth;
• Internal conferences and meetups to learn from industry experts;
• Support and mentorship from an experienced employee to help you professional grow and development;
• Health insurance;
• English courses;
• Sports activities to promote a healthy lifestyle;
• Flexible work options, including remote and hybrid opportunities;
• Referral program for bringing in new talent;
• Work anniversary program and additional vacation days.

Automation is the key to creating highly reliable and secure large-scale software systems. Are you someone who engineers solutions to problems rather than simply fixing the same thing over and over again? Can you protect Smartsheet against attackers?

We are looking for a Senior DevSecOps Engineer to join our global Security Operations team. In this critical role, you will be a leader in maturing our security and reliability posture by treating both as software engineering challenges. You will engineer and operate a highly reliable, scalable, and defensible production environment, directly impacting our ability to deliver a world-class service to our customers 24/7. This is a unique opportunity to blend deep expertise in Site Reliability Engineering (SRE) and modern Security Operations, working at the intersection of infrastructure, automation, and security to build a platform that is resilient and secure by design.

You will work remotely from Bulgaria.

What You Will Do

• Engineer Secure and Resilient Infrastructure: Design, build, maintain, and improve secure, scalable, and highly available infrastructure in our multi-cloud environment (primarily AWS) using Infrastructure as Code (IaC) principles with tools like Terraform, Kubernetes, and Helm.
• Automate Proactive Security: Engineer and automate threat detection, incident response, and vulnerability management processes. You will build the tools and workflows that allow us to respond to threats at machine speed.
• Secure the Software Development Lifecycle: Architect and secure our CI/CD pipelines, integrating automated security tooling (SAST, DAST, SCA) to provide developers with fast, actionable feedback.
• Master Container Security: Manage, operate, and secure our container orchestration platform (Kubernetes), implementing best practices for container security from the registry to runtime, including knowledge of hardening requirements such as CIS Benchmarks or DISA STIG.
• Lead Incident Response: Act as a technical lead during security and reliability incidents, driving resolution and conducting blameless post-mortems to engineer preventative solutions.
• Drive Automated Compliance: Implement and automate technical controls to ensure continuous compliance with frameworks such as FedRAMP, SOC 2, and ISO 27001.
• Mentor and Lead: Serve as a subject matter expert for security and reliability, mentoring other engineers and championing a culture of operational excellence and security ownership across the organization.

What You Have (Qualifications)

• 8+ years of progressive experience in technology, with at least 5 years in a hands-on senior role such as Site Reliability Engineering, DevOps, or Security Engineering.
• A BS or MS in Computer Science, Engineering, or a related field, or equivalent industry experience.
• Expert-level proficiency in at least one major cloud provider, preferably AWS, with deep knowledge of core infrastructure and security services.
• Expert-level proficiency with Infrastructure as Code, particularly Terraform.
• Expert-level proficiency in a scripting or programming language such as Python, Go, or Ruby, with a proven history of building automation and custom tooling.
• Deep experience with containerization and orchestration technologies (Kubernetes), including securing containerized environments.
• Proficiency with the modern security operations toolchain, including SIEM, EDR, and vulnerability scanning technologies.
• Experience integrating security tools (SAST, DAST, SCA) into CI/CD pipelines.
• A critical thinker with a proven ability to troubleshoot complex problems in high-pressure production environments.
• Excellent verbal and written communication skills and a collaborative spirit.
• Fluency in English is required
• Legally eligible to work in Bulgaria on an ongoing basis

Nice to Have

• Advanced industry certifications such as CISSP, CISM, OSCP, or cloud-specific security certifications.
• Experience with compliance frameworks like FedRAMP, ISO27001, SOC2.

We are seeking a passionate and experienced Senior Software Engineer to join our Security Application Development team. In this role, you will be instrumental in designing, building, and maintaining robust security features for our SaaS product that will delight our customer CIOs. You will work on challenging problems at the intersection of application development and security, directly contributing to the resilience and trustworthiness of our platform. This is an exciting opportunity to leverage your software development expertise to create secure-by-design solutions that protect our customers and their data 24/7.

You will work remotely from Bulgaria.

What You Will Do

• Develop Secure Product Features: Design, build, and implement security features and functionalities directly into our SaaS product using modern programming languages (e.g., Java, Kotlin, Go, TypeScript, Python) and associated frameworks.
• Build Scalable and Secure Services: Develop scalable back-end services and APIs with a security-first mindset, ensuring high availability and performance in our multi-cloud environment (primarily AWS).
• Integrate Security into SDLC: Collaborate with product and engineering teams to embed security best practices throughout the entire software development lifecycle, from design to deployment.
• Automate Security Controls: Engineer and automate security controls, threat detection mechanisms, and vulnerability remediation processes within the application.
• Conduct Code Reviews and Architectural Discussions: Participate actively in code reviews and architectural discussions, advocating for secure coding practices and robust security designs.
• Solve Challenging Security Problems: Tackle complex security challenges related to data protection, access control, authentication, authorization, and secure communication within a distributed system.
• Create and maintain API integrations between internal and external systems. Implement and test API solutions to ensure they meet functionality, performance, and security standards. Monitor API performance and address any integration challenges or issues.
• Mentor and Lead: Serve as a subject matter expert in application security, mentoring junior engineers and fostering a culture of security ownership across development teams.
• Strategically Apply AI Tools: Strategically apply and champion AI tools within your team's domain to improve project execution, system design, quality, and debugging, leading adoption of AI best practices and driving measurable productivity gains.

Assist with Security Incident Remediation: We manage a SOC on a global 24/7 basis. This role will assist in that effort during daytime working hours.

What You Have 

• 5+ years of progressive software development experience, with at least 3 years focused on building security features or secure applications.
• A BS or MS in Computer Science, Engineering, or a related field, or equivalent industry experience.
• Expert-level proficiency in at least one major programming language such as Java, Kotlin, Go, or Python  with a proven history of building scalable and secure applications.
• Deep experience with cloud technologies (AWS, Azure, etc.), particularly in securing cloud-native applications.
• Experience developing, documenting, and supporting secure REST APIs.
• Strong understanding of common security vulnerabilities (e.g., OWASP Top 10) and mitigation techniques.
• Experience with containerization and orchestration technologies (Kubernetes) in a secure development context.
• Proficiency with modern security tools and practices, including static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA).
• A critical thinker with a proven ability to troubleshoot complex security-related problems in high-pressure production environments.
• Excellent verbal and written communication skills and a collaborative spirit. This will include fluency in English.
• 1 year professional experience leveraging AI-based workflows to author, maintain, review, deploy, and maintain code.
• 1+ years building AI features that incorporate generative AI or agentic workflows to solve customer problems with measurable business impact.
• Legally eligible to work in Bulgaria on an ongoing basis.
• Fluency in English is required.

Nice to Have

• Advanced industry certifications such as CSSLP, OSCP, or cloud-specific security certifications.

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Why Join Exadel

We’re an AI-first global tech company with 25+ years of engineering leadership, 2,000+ team members, and 500+ active projects powering Fortune 500 clients, including HBO, Microsoft, Google, and Starbucks.

From AI platforms to digital transformation, we partner with enterprise leaders to build what’s next.

What powers it all? Our people are ambitious, collaborative, and constantly evolving.

About the Client  

The leading provider of vehicle lifecycle solutions, with headquarters in Chicago, enables the companies that build, insure, and replace vehicles to power the next generation of transportation. Its platform delivers advanced mobile, artificial intelligence, and car technologies. It connects a network of 350+ insurance companies, 24,000+ repair facilities, hundreds of parts suppliers, and dozens of third-party data and service providers. The customer's collective solutions enhance productivity and help clients deliver better experiences for end consumers.

What You’ll Do

• Maintain and improve our identity-server — a Python/FastAPI service that handles Okta SSO authentication, JWT token signing, RBAC via Okta groups, and user redirect routing
• Configure and manage Okta across SSO (SAML/OIDC), SCIM provisioning, MFA/Adaptive Auth, Workflows, and Lifecycle Management
• Support multi-IDP federation — connecting external identity providers into our Okta tenant
• Fix user provisioning and deprovisioning delays, automate manual access management workflows
• Address security gaps in access controls and conduct access reviews
• Maintain and extend CLI tooling for Okta user management (user search, group management, bulk assignment, role migration)

What You Bring

• 5+ years of experience in identity and access management engineering
• Deep Okta expertise - both admin console configuration and programmatic integration via Okta APIs/SDKs
• Hands-on experience with SSO protocols (SAML 2.0, OIDC/OAuth 2.0) and federation architectures
• Production experience with Python (FastAPI, Flask, or Django) for building identity/auth services (other language is also acceptable)
• Working knowledge of Terraform for managing IAM infrastructure as code
• Experience with SCIM provisioning for automated user lifecycle management
• Comfortable working independently as the sole IAM owner - you define problems and drive solutions without hand-holding
• Familiarity with SOC 2 and/or HIPAA compliance requirements as they relate to access controls

English level 

Intermediate+

Legal & Hiring Information 

• Exadel is proud to be an Equal Opportunity Employer committed to inclusion across minority, gender identity, sexual orientation, disability, age, and more
• Reasonable accommodations are available to enable individuals with disabilities to perform essential functions
• Please note: this job description is not exhaustive. Duties and responsibilities may evolve based on business needs

Your Benefits at Exadel  

Exadel benefits vary by location and contract type. Your recruiter will fill you in on the details.

• International projects
• In-office, hybrid, or remote flexibility
• Medical healthcare
• Recognition program
• Ongoing learning & reimbursement 
• Well-being program
• Team events & local benefits 
• Sports compensation 
• Referral bonuses 
• Top-tier equipment provision

Exadel Culture

We lead with trust, respect, and purpose. We believe in open dialogue, creative freedom, and mentorship that helps you grow, lead, and make a real difference. Ours is a culture where ideas are challenged, voices are heard, and your impact matters.

Why Join Exadel

We’re an AI-first global tech company with 25+ years of engineering leadership, 2,000+ team members, and 500+ active projects powering Fortune 500 clients, including HBO, Microsoft, Google, and Starbucks.

From AI platforms to digital transformation, we partner with enterprise leaders to build what’s next.

What powers it all? Our people are ambitious, collaborative, and constantly evolving.

About the Client  

The leading provider of vehicle lifecycle solutions, with headquarters in Chicago, enables the companies that build, insure, and replace vehicles to power the next generation of transportation. Its platform delivers advanced mobile, artificial intelligence, and car technologies. It connects a network of 350+ insurance companies, 24,000+ repair facilities, hundreds of parts suppliers, and dozens of third-party data and service providers. The customer's collective solutions enhance productivity and help clients deliver better experiences for end consumers.

What You’ll Do

• Maintain and improve our identity-server — a Python/FastAPI service that handles Okta SSO authentication, JWT token signing, RBAC via Okta groups, and user redirect routing
• Configure and manage Okta across SSO (SAML/OIDC), SCIM provisioning, MFA/Adaptive Auth, Workflows, and Lifecycle Management
• Support multi-IDP federation — connecting external identity providers into our Okta tenant
• Fix user provisioning and deprovisioning delays, automate manual access management workflows
• Address security gaps in access controls and conduct access reviews
• Maintain and extend CLI tooling for Okta user management (user search, group management, bulk assignment, role migration)

What You Bring

• 5+ years of experience in identity and access management engineering
• Deep Okta expertise - both admin console configuration and programmatic integration via Okta APIs/SDKs
• Hands-on experience with SSO protocols (SAML 2.0, OIDC/OAuth 2.0) and federation architectures
• Production experience with Python (FastAPI, Flask, or Django) for building identity/auth services (other language is also acceptable)
• Working knowledge of Terraform for managing IAM infrastructure as code
• Experience with SCIM provisioning for automated user lifecycle management
• Comfortable working independently as the sole IAM owner - you define problems and drive solutions without hand-holding
• Familiarity with SOC 2 and/or HIPAA compliance requirements as they relate to access controls

English level 

Intermediate+

Legal & Hiring Information 

• Exadel is proud to be an Equal Opportunity Employer committed to inclusion across minority, gender identity, sexual orientation, disability, age, and more
• Reasonable accommodations are available to enable individuals with disabilities to perform essential functions
• Please note: this job description is not exhaustive. Duties and responsibilities may evolve based on business needs

Your Benefits at Exadel  

Exadel benefits vary by location and contract type. Your recruiter will fill you in on the details.

• International projects
• In-office, hybrid, or remote flexibility
• Medical healthcare
• Recognition program
• Ongoing learning & reimbursement 
• Well-being program
• Team events & local benefits 
• Sports compensation 
• Referral bonuses 
• Top-tier equipment provision

Exadel Culture

We lead with trust, respect, and purpose. We believe in open dialogue, creative freedom, and mentorship that helps you grow, lead, and make a real difference. Ours is a culture where ideas are challenged, voices are heard, and your impact matters.

Why Join Exadel

We’re an AI-first global tech company with 25+ years of engineering leadership, 2,000+ team members, and 500+ active projects powering Fortune 500 clients, including HBO, Microsoft, Google, and Starbucks.

From AI platforms to digital transformation, we partner with enterprise leaders to build what’s next.

What powers it all? Our people are ambitious, collaborative, and constantly evolving.

About the Client  

The leading provider of vehicle lifecycle solutions, with headquarters in Chicago, enables the companies that build, insure, and replace vehicles to power the next generation of transportation. Its platform delivers advanced mobile, artificial intelligence, and car technologies. It connects a network of 350+ insurance companies, 24,000+ repair facilities, hundreds of parts suppliers, and dozens of third-party data and service providers. The customer's collective solutions enhance productivity and help clients deliver better experiences for end consumers.

What You’ll Do

• Maintain and improve our identity-server — a Python/FastAPI service that handles Okta SSO authentication, JWT token signing, RBAC via Okta groups, and user redirect routing
• Configure and manage Okta across SSO (SAML/OIDC), SCIM provisioning, MFA/Adaptive Auth, Workflows, and Lifecycle Management
• Support multi-IDP federation — connecting external identity providers into our Okta tenant
• Fix user provisioning and deprovisioning delays, automate manual access management workflows
• Address security gaps in access controls and conduct access reviews
• Maintain and extend CLI tooling for Okta user management (user search, group management, bulk assignment, role migration)

What You Bring

• 5+ years of experience in identity and access management engineering
• Deep Okta expertise - both admin console configuration and programmatic integration via Okta APIs/SDKs
• Hands-on experience with SSO protocols (SAML 2.0, OIDC/OAuth 2.0) and federation architectures
• Production experience with Python (FastAPI, Flask, or Django) for building identity/auth services (other language is also acceptable)
• Working knowledge of Terraform for managing IAM infrastructure as code
• Experience with SCIM provisioning for automated user lifecycle management
• Comfortable working independently as the sole IAM owner - you define problems and drive solutions without hand-holding
• Familiarity with SOC 2 and/or HIPAA compliance requirements as they relate to access controls

English level 

Intermediate+

Legal & Hiring Information 

• Exadel is proud to be an Equal Opportunity Employer committed to inclusion across minority, gender identity, sexual orientation, disability, age, and more
• Reasonable accommodations are available to enable individuals with disabilities to perform essential functions
• Please note: this job description is not exhaustive. Duties and responsibilities may evolve based on business needs

Your Benefits at Exadel  

Exadel benefits vary by location and contract type. Your recruiter will fill you in on the details.

• International projects
• In-office, hybrid, or remote flexibility
• Medical healthcare
• Recognition program
• Ongoing learning & reimbursement 
• Well-being program
• Team events & local benefits 
• Sports compensation 
• Referral bonuses 
• Top-tier equipment provision

Exadel Culture

We lead with trust, respect, and purpose. We believe in open dialogue, creative freedom, and mentorship that helps you grow, lead, and make a real difference. Ours is a culture where ideas are challenged, voices are heard, and your impact matters.

ABOUT THE ROLE

Tide is hiring a Senior Staff Software Engineer to lead the architecture of our agentic platform.

You will shape the shared capabilities that allow AI systems to operate safely, reliably, and at scale across Tide. That includes context, orchestration, tool execution, trust controls, observability, and evaluation. You will participate in key build versus buy decisions, integrate external components where they accelerate us, and ensure we own the parts that matter most for Tide’s trust, data advantage, and long-term platform leverage.

WHAT YOU WILL DO

• Define the architecture for Tide’s agentic platform
• Drive the design of shared services such as context APIs, tool layers, policy controls, and auditability
• Partner with product, data, security, and engineering teams to turn use cases into reusable platform capabilities
• Set standards for reliability, safety, scalability, and developer experience
• Provide technical leadership across teams and unblock critical decisions
• Implement cost-management and routing logic to optimize LLM spend across different providers
• Design and build automated evaluation pipelines to measure agent reasoning accuracy and safety trajectories

WHAT WE ARE LOOKING FOR

• Deep experience building platform or infrastructure systems at scale
• Strong judgement across APIs, distributed systems, data, and cloud-native architecture
• Track record of leading complex cross-team technical problems
• Experience integrating third-party platforms without losing control of core architecture
• Strong understanding of reliability, security, and observability
• Experience with AI platform components is valuable, but not essential
• Experience in highly regulated industries (Fintech, Healthtech, etc.) where safety and compliance are core to the product is highly desirable 

WHY THIS ROLE MATTERS

This role will help determine whether Tide builds isolated AI pilots or a reusable platform that compounds value across productivity, risk, and connectivity.

OUR TECH STACK:

• Java, Spring Boot and JOOQ to build the RESTful APIs of our microservices (but we welcome people who are used to any strongly typed general purpose programming language!)
• Event-driven architecture with messages over SNS+SQS and Kafka to make them reliable
• Primary datastores are MySQL and PostgreSQL via RDS or Aurora (we are heavy AWS users)
• Docker, Terraform, EKS used by the Cloud team to run the platform
• DataDog and Rollbar to keep it running
• GitHub with Sonarcloud, Semgrep and solid testing to power the CI/CD pipelines - new joiners are encouraged to have something deployed to production in their first 2 weeks
• Angular 2+ with ngrx on Web, Flutter for the Mobile App
• Fivetran/Snowflake/Looker for the BI insights and Python/Faust/Flask/Tecton + some ML libs for the automated decisioning and risk management

WHAT YOU’LL GET IN RETURN: 

Our location-specific employee benefits are designed to cater to the unique needs of Tideans: 

• 25 days paid annual leave
• 3 paid days off for volunteering or L&D activities
• Extended maternity and paternity leave covered by the company
• Personal L&D budget in the amount of 500 EUR per year
• Additional health & dental insurance
• Mental wellbeing platform
• Fully covered Multisports card
• Food vouchers
• Snacks, light food, drinks in the office
• WFH equipment allowance
• Flexible working from home
• Sabbatical Leave
• Share options

TIDEAN WAYS OF WORKING

At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams. 

While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community.

Responsibilities

We're looking for a hands-on Platform/Observability Engineer to join our infrastructure team. You'll own and evolve our observability stack - from logging pipelines and tracing to metrics and alerting - across a multi-datacenter, Kubernetes-based environment. This is a production-first role: you'll be expected to ship, iterate, and improve systems under real delivery pressure, not just design them on paper.
You'll work closely with other infra and product engineering teams to improve observability coverage, reduce operational toil, and help the broader organization adopt better practices.
Tech Stack Highlights: OpenTelemetry · Kafka · Vector · VictoriaMetrics · EKS · Kubernetes · Logging pipelines · Distributed tracing · SPM· AWS

• Designing, deploying, and maintaining production observability stacks (logs, metrics, traces)

• Scaling observability infrastructure across multiple data centers and Kubernetes clusters

• Owning logging pipeline architecture and refactoring efforts

• Improving distributed tracing coverage and driving adoption across engineering teams

• Managing EKS upgrades, node exporters, agents, and collectors

• Automating operational tasks to reduce toil and improve system stability

• Contributing to compliance and audit readiness (access controls, data handling, pipeline integrity)

• Evaluating and adopting new observability tooling - knowing what's worth pursuing and what isn't

Requirements

Core technical experience:

• 8+ years of industry experience

• Solid hands-on production experience with observability systems

• Strong plus - familiarity with OpenTelemetry, Kafka, Vector, and VictoriaMetrics (vmagent, alerting rules)

• Experience with logging pipelines: design, deployment, and refactoring

• Understanding of distributed tracing and SPM (Service Performance Monitoring) built on top of tracing

• Experience with Kubernetes cluster lifecycle management (EKS preferred)

• Practical knowledge of storage trade-offs for observability data at scale

Nice to have  

• Experience using AI to automate infrastructure or observability tasks (e.g., automated RCA, PR generation, deployment workflows)

• Familiarity with AI-assisted tooling selection and workflow integration

• Experience with MCP (custom or open-source implementations)

• Background in cloud account or environment migrations

• Experience preparing infrastructure for compliance/audit processes

• Understanding network architecture, troubleshooting and incident resolution skills in Production environment, writing Post-mortems.

• Experience with containers and Kubernetes (installation and configuration of operators). 

• Basic knowledge of one or more high-level programming languages, such as Python, Golang, Java

Soft Skills / Personal Characteristics

• Good communication and collaboration skills in international technological companies.

• Interest in modern big distributed storage technologies, architectures.

• Good Spoken English to participate in product-related, architectural and technical discussions.

• Proper balance between being hands-on and deeper analytical approaches

(REQ ID: 2640)

We are hiring across multiple locations

India: Hyderabad, Delhi NCR, Bengaluru
Europe: London, Serbia, Sofia, Lithuania, Berlin

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🏝 24 vacation days annually 
🤒 6 sick days without a medical certificate 
🏥 Premium Health Insurance (coverage up to 5,000 EUR annually) 
🎉 Special occasion gifts: birthday, wedding, newborn 
📚 Learning & Development budget (for conferences, courses and certifications) 
🌍 Corporate events: international parties, team buildings, activities 
📈 Career growth opportunities in a fast-growing company 
✈️ Relocation package for international candidates 
🏋️ Sports package (FitPass membership) 
🗣️ Language classes: Serbian & English (company-covered)

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
💻 Learning and development opportunities and interesting, challenging tasks.
✈️ Relocation package (tickets, staying in a hotel for up to 2 weeks, and visa relocation support for our employees and their family members).
📚 Opportunity to develop language skills, with partial compensation for the cost of English and Portuguese language classes (for localization purposes). 
🎾 Partial compensation for tennis and padel lessons. 
🏀 Urban Sport membership benefit (the most diverse sports and wellness offering in Europe, with more than 50+ activities). 
🏥 Private medical coverage, including inpatient, outpatient, dental care, annual check-ups, and maternity support. 
🏝 Time for proper rest, with 24 non-business days per year and an additional 6 paid sick days. 
🚌 Transport compensation - 200 euros net per month. 
📈 Competitive remuneration level with annual review. 
🤝 Teambuilding activities. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment;
📚 Opportunity to develop language skills with partial compensation for language courses;
🎁 Special gifts for birthdays, weddings, and newborns;
🏝️ 20 working days of paid annual vacation, 6 paid sick leaves;
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance for you and your partner;
📍 Comfortable office with great facilities in a prime location;
 🎉 Exciting corporate events, team-building activities, and international company parties.

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment; 
📚 Opportunity to develop language skills with partial compensation for language courses; 
🎁 Special gifts for birthdays, weddings, and newborns; 
🏝️ 20 working days of paid annual vacation, plus 6 paid sick leaves; 
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance; 
📍 Comfortable office with great facilities in a prime location; 
 🎉 Exciting corporate events, team-building activities, and international company parties.