Role & Team

We’re looking for a Director of Platform & Infrastructure to own and evolve our core engineering foundations. Reporting to our VP of Product Engineering, this role will lead SRE, MLOps, and Platform teams with a mandate to create leverage across the entire organization.

As a scaling startup, we’re evolving from early-stage infrastructure to a more mature, reliable platform that can support rapid product development and growing customer demand. This role is critical in helping us make that transition — building systems, standards, and teams that enable speed today while laying the foundation for long-term scale.

Partnering closely with product, data, and application engineering teams, you will set the technical vision, define best practices, and ensure our infrastructure enables teams to move fast with confidence.

This is a highly cross-functional leadership role for someone who combines deep technical judgment with a systems mindset, strong people leadership, and a passion for building platforms that empower others.

Time zone requirement: Europe (GMT/WET, CET, EET) and Eastern North America (NST, AST, EST)

What You'll Do 

• Own the platform strategy across Platform, MLOps, and SRE, aligning it with company and product goals
• Grow senior ICs (and eventually manages) across multiple teams, fostering strong technical leadership and healthy team cultures
• Define and evolve our platform vision, including developer experience, internal tooling, CI/CD, infrastructure, observability, and reliability standards
• Oversee MLOps systems that support model development, training, deployment, monitoring, and governance in production
• Partner cross-functionally with Product, ML, Data, Security, and Compliance to ensure the platform meets current and future needs
• Balance speed and stability, making thoughtful tradeoffs between innovation, cost, reliability, and operational excellence
• Set metrics and accountability for platform performance, reliability, and developer productivity

Skills & Experience

• 10+ years experience leading platform, infrastructure, or reliability teams in a scaling startup environment, including navigating ambiguity, rapid growth, and the transition from early-stage systems to more mature, repeatable platforms
• Strong understanding of cloud-native infrastructure (GCP strongly preferred), Kubernetes, CI/CD, and modern DevOps practices
• Experience supporting machine learning systems in production, including model deployment, monitoring, and lifecycle management
• A track record of building reliable, scalable systems used by fast-moving product teams
• Excellent people leadership skills — you know how to coach managers, grow talent, and build inclusive, high-performing teams
• Strong communication skills and the ability to influence across org boundaries
• Experience in data- or ML-heavy products

Nice To Have

• Experience with geospatial data, image processing or mapping technology 

Note: We believe that all people are capable of great things. We encourage you to apply even if you do not meet all of the requirements that are listed within this job description.

What We Offer

• Competitive, location-specific compensation and benefits.  
• Flexible, autonomous and collaborative working environment rooted in trust - we build our work days around our lives, not the other way around
• Home office stipend, coworking and ongoing education budgets 
• A company culture that genuinely embodies each of our core values
• To be part of truly mission-driven work that reduces wildfires, protects earth’s natural resources and helps solve our climate crisis

Join Us as a Graphic Designer with a Focus on Data Visualization!

At INFUSE Academy, we turn complex ideas into visuals that make people stop and think. We are looking for a Graphic Designer who leads with clarity, communicates through imagery, and can distill a dense concept into something a learner understands at a glance.

If you can explain the impact of climate change in one image, you are the kind of thinker we want.

What you will bring:

• Proficiency in Figma, Illustrator, and Photoshop
• Solid foundation in composition, typography, and color theory
• Experience with data visualization: charts, infographics, diagrams that inform rather than decorate
• A visual storytelling instinct: you find the narrative in the numbers
• Genuine enthusiasm for AI tools -- you follow what is happening, you experiment, and you actively look for ways to co-create with AI rather than just use it
• Attention to detail and the self-organization to manage multiple projects

What you will do:

• Translate instructional content into visual concepts and storyboards
• Design static graphics, infographics, and course assets that carry meaning on their own
• Collaborate with instructional designers to find the best visual angle for every learning objective
• Co-create with AI tools as a real part of your design process -- bringing new ideas, accelerating output, and pushing what is possible

What you’ll love about working with us:

• A fun, diverse team of professionals from every corner of the globe
• A never-ending learning journey (because who wants to stop growing?)
• Career growth opportunities with regular reviews, your success is our success!
• Timely, market-range compensation (we make sure your wallet’s happy, too)
• Paid time off for U.S. public holidays, because rest is as important as work
• Summer Fridays with shorter hours, because everyone deserves a little sunshine
• Access to top-tier tools like Adobe and Figma Pro, so you can create like a pro

If you recognize yourself in this and are up to the challenge, we’d be happy to hear from you!

We are an Equal Opportunity Employer. We make hiring decisions based on qualifications, merit, and business needs. We do not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, genetic information, or any other characteristic protected under applicable law. We welcome applicants from all backgrounds and believe that diversity of experience, culture, and perspective makes us stronger.

We are looking for a hands-on Senior Information Security Specialist to provide technical expertise across multiple security domains, ensuring our infrastructure, systems, and data are protected against evolving cyber threats.

What You'll Do:

• Define, design, and enhance security architecture, frameworks, and technical controls aligned with business objectives and security strategy
• Develop and maintain security reference architectures, standards, and design patterns across corporate and production environments
• Act as a subject matter expert across infrastructure, cloud, network, and application security
• Support and lead incident response activities for major incidents, breaches, and investigations
• Partner with GRC and Legal teams as a technical expert to ensure compliance with security, privacy, and data protection regulations
• Define and track KPIs and KRIs to measure control effectiveness and drive continuous improvement
• Collaborate with SOC and Threat Intelligence teams to stay current on threat trends and emerging technologies
• Evaluate and integrate AI-driven security capabilities for proactive threat detection and incident response

What You'll Bring:

• Bachelor’s degree in Information Security or a related field
• 5+ years of experience in information security or a related field
• Certifications such as CISSP, CCSP, or CISM
• Advanced certifications such as GIAC (GSE, GCIA, GCIH) or OSCP
• ISO 27001 Lead Implementer/Auditor or NIST CSF practitioner credentials preferred
• Proven expertise in cloud and infrastructure security
• Hands-on experience with SIEM, vulnerability scanning, SOAR, and XDR tools
• Demonstrated experience implementing and operationalizing security controls in large-scale, distributed environments
• Strong knowledge and implementation experience with frameworks such as ISO 27001, NIST, PCI DSS, SOC 2, and SOX
• Experience in online gambling, sports betting, or financial services environments is preferred
• Strong communication skills, with the ability to work effectively with technical and non-technical stakeholders
• Familiarity with AI-driven security tools and approaches
• Able to travel occasionally both domestically and internationally #LI-REMOTE

About the Role:

Wrike’s Security team is the frontline defense ensuring the integrity and credibility of the data stored within our platform. In this senior position, you will own and evolve the security posture for Wrike’s production, Kubernetes, and GCP environments. You aren't just maintaining systems; you are architecting a "secure by default" infrastructure that allows our engineering and other teams to move fast without compromising safety.

Your Impact:

• Own Infrastructure Security: Design, implement, and improve security controls- including hardening, network segmentation, IAM, and endpoint security - across our entire fleet.

• Strategic Defense: Lead the technical direction for cyber security defense, covering enterprise posture management, threat detection, and vulnerability management.

• Collaborative Architecture: Partner with ITOps, SysOps, DevOps and XOps to embed security into the core of our architecture and change management processes.

• SIEM Evolution: Develop and maintain our SIEM strategy and the surrounding infrastructure to ensure proactive visibility.

• Mentorship: Educate and coach engineering teams on secure system design, providing guidance that elevates the security IQ of the entire organization.

Your Qualifications:

• Cloud & Container Mastery: Extensive experience with GCP permissions and security configurations within Kubernetes, Azure, and on-prem environments.

• Technical Depth: High proficiency in Intrusion Detection, Exploit Dev, Linux Operations and Security Understanding

• Security Architecture: Proven ability to identify gaps in cloud designs and recommend enhancements for authentication, authorization, and bastion host setups.

• Communication: Ability to distill complex security risks into actionable insights for both technical peers and non-technical stakeholders.

• Autonomy: Proven track record of managing large projects with complex deliverables and foreseeing potential roadblocks before they manifest.

Standout Qualities:

• Certifications: Possession of industry-recognized credentials such as CISSP, Google Security Engineer or GIAC.

• Operational Excellence: Deep hands-on experience with (Open Source) SIEM solutions and Google Security Operations or Google Security Command Center

• Philosophy: You view security not just as a job, but as a craft; you balance strict security principles with the pragmatic needs of the business.

Team Dynamics:

• Leadership: You will report to Swen Groeneveld, Head of Security Operations

• The Squad: You will join a high-performing 14-member team consisting of AppSec and Compliance specialists.

• Role Level: This is a Senior level role, requiring you to lead people you do not directly manage.

Our Work Style:

• Tech Stack: GCP, Kubernetes (k8s), Terraform, Linux, Rapid7, Tenable, and SIEM platforms.

• Methodology: Performance-driven environment utilizing Scrum-based processes, including biweekly and quarterly planning.

• Environment: Hybrid work mode.

Why Join Wrike?

• 5 Weeks of paid vacation
• Sick Leave Compensation 
  • 5 Paid Uncertified Sick Days
  • 2 weeks fully paid w/ medical certificate, additional 
  • 4 weeks paid at 80% salary rate
• Parental Leave (fully paid): 18 Weeks Maternity / 4 Week Paternity 
• 2 Volunteer Days
• Meal Vouchers (CZK 220 per working day)
• Annual Prague Travel Card (Lítačka)
• Hybrid Working Model
• Benefit budget with flexible options, including a MultiSport card, Canadian Medical membership, contributions to a pension savings plan and additional choices available through Benefit Plus

This remote position is open to residents of Czechia

About the Role:

Wrike’s Security team is the frontline defense ensuring the integrity and credibility of the data stored within our platform. In this senior position, you will own and evolve the security posture for Wrike’s production, Kubernetes, and GCP environments. You aren't just maintaining systems; you are architecting a "secure by default" infrastructure that allows our engineering and other teams to move fast without compromising safety.

Your Impact:

• Own Infrastructure Security: Design, implement, and improve security controls- including hardening, network segmentation, IAM, and endpoint security - across our entire fleet.

• Strategic Defense: Lead the technical direction for cyber security defense, covering enterprise posture management, threat detection, and vulnerability management.

• Collaborative Architecture: Partner with ITOps, SysOps, DevOps and XOps to embed security into the core of our architecture and change management processes.

• SIEM Evolution: Develop and maintain our SIEM strategy and the surrounding infrastructure to ensure proactive visibility.

• Mentorship: Educate and coach engineering teams on secure system design, providing guidance that elevates the security IQ of the entire organization.

Your Qualifications:

• Cloud & Container Mastery: Extensive experience with GCP permissions and security configurations within Kubernetes, Azure, and on-prem environments.

• Technical Depth: High proficiency in Intrusion Detection, Exploit Dev, Linux Operations and Security Understanding

• Security Architecture: Proven ability to identify gaps in cloud designs and recommend enhancements for authentication, authorization, and bastion host setups.

• Communication: Ability to distill complex security risks into actionable insights for both technical peers and non-technical stakeholders.

• Autonomy: Proven track record of managing large projects with complex deliverables and foreseeing potential roadblocks before they manifest.

Standout Qualities:

• Certifications: Possession of industry-recognized credentials such as CISSP, Google Security Engineer or GIAC.

• Operational Excellence: Deep hands-on experience with (Open Source) SIEM solutions and Google Security Operations or Google Security Command Center

• Philosophy: You view security not just as a job, but as a craft; you balance strict security principles with the pragmatic needs of the business.

Team Dynamics:

• Leadership: You will report to Swen Groeneveld, Head of Security Operations

• The Squad: You will join a high-performing 14-member team consisting of AppSec and Compliance specialists.

• Role Level: This is a Senior level role, requiring you to lead people you do not directly manage.

Our Work Style:

• Tech Stack: GCP, Kubernetes (k8s), Terraform, Linux, Rapid7, Tenable, and SIEM platforms.

• Methodology: Performance-driven environment utilizing Scrum-based processes, including biweekly and quarterly planning.

Why Join Wrike?

• 5 Weeks of paid vacation
• Sick Leave Compensation 
  • 5 Paid Uncertified Sick Days
  • 2 weeks fully paid w/ medical certificate, additional 
  • 4 weeks paid at 80% salary rate
• Parental Leave (fully paid): 18 Weeks Maternity / 4 Week Paternity 
• 2 Volunteer Days
• Meal Vouchers (CZK 220 per working day)
• Annual Prague Travel Card (Lítačka)
• Benefit budget with flexible options, including a MultiSport card, Canadian Medical membership, contributions to a pension savings plan and additional choices available through Benefit Plus

About the Role:

Wrike’s Security team is the frontline defense ensuring the integrity and credibility of the data stored within our platform. In this senior position, you will own and evolve the security posture for Wrike’s production, Kubernetes, and GCP environments. You aren't just maintaining systems; you are architecting a "secure by default" infrastructure that allows our engineering and other teams to move fast without compromising safety.

Your Impact:

• Own Infrastructure Security: Design, implement, and improve security controls- including hardening, network segmentation, IAM, and endpoint security - across our entire fleet.

• Strategic Defense: Lead the technical direction for cyber security defense, covering enterprise posture management, threat detection, and vulnerability management.

• Collaborative Architecture: Partner with ITOps, SysOps, DevOps and XOps to embed security into the core of our architecture and change management processes.

• SIEM Evolution: Develop and maintain our SIEM strategy and the surrounding infrastructure to ensure proactive visibility.

• Mentorship: Educate and coach engineering teams on secure system design, providing guidance that elevates the security IQ of the entire organization.

Your Qualifications:

• Cloud & Container Mastery: Extensive experience with GCP permissions and security configurations within Kubernetes, Azure, and on-prem environments.

• Technical Depth: High proficiency in Intrusion Detection, Exploit Dev, Linux Operations and Security Understanding

• Security Architecture: Proven ability to identify gaps in cloud designs and recommend enhancements for authentication, authorization, and bastion host setups.

• Communication: Ability to distill complex security risks into actionable insights for both technical peers and non-technical stakeholders.

• Autonomy: Proven track record of managing large projects with complex deliverables and foreseeing potential roadblocks before they manifest.

Standout Qualities:

• Certifications: Possession of industry-recognized credentials such as CISSP, Google Security Engineer or GIAC.

• Operational Excellence: Deep hands-on experience with (Open Source) SIEM solutions and Google Security Operations or Google Security Command Center

• Philosophy: You view security not just as a job, but as a craft; you balance strict security principles with the pragmatic needs of the business.

Team Dynamics:

• Leadership: You will report to Swen Groeneveld, Head of Security Operations

• The Squad: You will join a high-performing 14-member team consisting of AppSec and Compliance specialists.

• Role Level: This is a Senior level role, requiring you to lead people you do not directly manage.

Our Work Style:

• Tech Stack: GCP, Kubernetes (k8s), Terraform, Linux, Rapid7, Tenable, and SIEM platforms.

• Methodology: Performance-driven environment utilizing Scrum-based processes, including biweekly and quarterly planning.

• Environment: Hybrid work mode.

Why Join Wrike?

• 25 calendar days of paid vacation
• Sick Leave Compensation (5 Paid Uncertified Sick Days)
• Parental Leave: 18 Weeks Maternity / 4 Week Paternity 
• 2 Volunteer Days
• Medical Insurance (Employees + Dependents)
• Hybrid Working Model
• School Allowance (Up to €600/month for school aged kids)
• Simcard w/ Unlimited Internet Access for active employees
• Office Lunch Allowance (via Wolt) on Wednesdays / Thursday

This remote position is open to residents of Cyprus

About the Role:

Wrike’s Security team is the frontline defense ensuring the integrity and credibility of the data stored within our platform. In this senior position, you will own and evolve the security posture for Wrike’s production, Kubernetes, and GCP environments. You aren't just maintaining systems; you are architecting a "secure by default" infrastructure that allows our engineering and other teams to move fast without compromising safety.

Your Impact:

• Own Infrastructure Security: Design, implement, and improve security controls- including hardening, network segmentation, IAM, and endpoint security - across our entire fleet.

• Strategic Defense: Lead the technical direction for cyber security defense, covering enterprise posture management, threat detection, and vulnerability management.

• Collaborative Architecture: Partner with ITOps, SysOps, DevOps and XOps to embed security into the core of our architecture and change management processes.

• SIEM Evolution: Develop and maintain our SIEM strategy and the surrounding infrastructure to ensure proactive visibility.

• Mentorship: Educate and coach engineering teams on secure system design, providing guidance that elevates the security IQ of the entire organization.

Your Qualifications:

• Cloud & Container Mastery: Extensive experience with GCP permissions and security configurations within Kubernetes, Azure, and on-prem environments.

• Technical Depth: High proficiency in Intrusion Detection, Exploit Dev, Linux Operations and Security Understanding

• Security Architecture: Proven ability to identify gaps in cloud designs and recommend enhancements for authentication, authorization, and bastion host setups.

• Communication: Ability to distill complex security risks into actionable insights for both technical peers and non-technical stakeholders.

• Autonomy: Proven track record of managing large projects with complex deliverables and foreseeing potential roadblocks before they manifest.

Standout Qualities:

• Certifications: Possession of industry-recognized credentials such as CISSP, Google Security Engineer or GIAC.

• Operational Excellence: Deep hands-on experience with (Open Source) SIEM solutions and Google Security Operations or Google Security Command Center

• Philosophy: You view security not just as a job, but as a craft; you balance strict security principles with the pragmatic needs of the business.

Team Dynamics:

• Leadership: You will report to Swen Groeneveld, Head of Security Operations

• The Squad: You will join a high-performing 14-member team consisting of AppSec and Compliance specialists.

• Role Level: This is a Senior level role, requiring you to lead people you do not directly manage.

Our Work Style:

• Tech Stack: GCP, Kubernetes (k8s), Terraform, Linux, Rapid7, Tenable, and SIEM platforms.

• Methodology: Performance-driven environment utilizing Scrum-based processes, including biweekly and quarterly planning.

Why Join Wrike?

• 25 calendar days of paid vacation
• Sick Leave Compensation (5 Paid Uncertified Sick Days)
• Parental Leave: 18 Weeks Maternity / 4 Week Paternity 
• 2 Volunteer Days
• Medical Insurance (Employees + Dependents)
• School Allowance (Up to €600/month for school aged kids)
• Simcard w/ Unlimited Internet Access for active employees

This remote position is open to residents of Estonia

About the Role:

Wrike’s Security team is the frontline defense ensuring the integrity and credibility of the data stored within our platform. In this senior position, you will own and evolve the security posture for Wrike’s production, Kubernetes, and GCP environments. You aren't just maintaining systems; you are architecting a "secure by default" infrastructure that allows our engineering and other teams to move fast without compromising safety.

Your Impact:

• Own Infrastructure Security: Design, implement, and improve security controls- including hardening, network segmentation, IAM, and endpoint security - across our entire fleet.

• Strategic Defense: Lead the technical direction for cyber security defense, covering enterprise posture management, threat detection, and vulnerability management.

• Collaborative Architecture: Partner with ITOps, SysOps, DevOps and XOps to embed security into the core of our architecture and change management processes.

• SIEM Evolution: Develop and maintain our SIEM strategy and the surrounding infrastructure to ensure proactive visibility.

• Mentorship: Educate and coach engineering teams on secure system design, providing guidance that elevates the security IQ of the entire organization.

Your Qualifications:

• Cloud & Container Mastery: Extensive experience with GCP permissions and security configurations within Kubernetes, Azure, and on-prem environments.

• Technical Depth: High proficiency in Intrusion Detection, Exploit Dev, Linux Operations and Security Understanding

• Security Architecture: Proven ability to identify gaps in cloud designs and recommend enhancements for authentication, authorization, and bastion host setups.

• Communication: Ability to distill complex security risks into actionable insights for both technical peers and non-technical stakeholders.

• Autonomy: Proven track record of managing large projects with complex deliverables and foreseeing potential roadblocks before they manifest.

Standout Qualities:

• Certifications: Possession of industry-recognized credentials such as CISSP, Google Security Engineer or GIAC.

• Operational Excellence: Deep hands-on experience with (Open Source) SIEM solutions and Google Security Operations or Google Security Command Center

• Philosophy: You view security not just as a job, but as a craft; you balance strict security principles with the pragmatic needs of the business.

Team Dynamics:

• Leadership: You will report to Swen Groeneveld, Head of Security Operations

• The Squad: You will join a high-performing 14-member team consisting of AppSec and Compliance specialists.

• Role Level: This is a Senior level role, requiring you to lead people you do not directly manage.

Our Work Style:

• Tech Stack: GCP, Kubernetes (k8s), Terraform, Linux, Rapid7, Tenable, and SIEM platforms.

• Methodology: Performance-driven environment utilizing Scrum-based processes, including biweekly and quarterly planning.

Why Join Wrike?

• 28 calendar days of paid vacation
• Sick Leave Compensation (5 Paid Uncertified Sick Days)
• Parental Leave: 18 Weeks Maternity / 4 Week Paternity
• 2 Volunteer Days
• Health Insurance (Employees + Dependents)
• Life Insurance Plan
• Utility Allowance (30 EUR/month, subject to taxation)
• Fitness plan (800 EUR/year)
• Full-remote & On-demand access to Co-working space

What’s Next? 

Inbank is a financial technology company with an EU banking license that connects merchants, consumers, and financial institutions on its next-generation embedded finance platform. Our financing solutions are embedded seamlessly into the shopping journey of 6,000+ retailers. This helps our merchant partners grow their businesses, while end customers benefit from a frictionless shopping experience wherever they are. With a focus on innovation and growth, we are looking for talented people to join our team of 440+ working across our offices in Estonia, Latvia, Lithuania, Poland, and the Czech Republic.

We’re looking for an enthusiastic Security Engineer Intern to join our team in Tallinn. 

In this hands-on role, you will work alongside engineers to strengthen the security of our systems and development practices, gaining practical experience across product development, operations, and internal processes. If you’re interested in software development, infrastructure, or cybersecurity and want to build real-world experience in a fintech environment with guidance from experienced colleagues, this role is for you.

What will you be doing?

• Assist with security checks and improvement initiatives across applications, systems, and internal processes.
• Support secure development practices by reviewing findings, documenting risks, and following up on fixes.
• Contribute to access management, monitoring, and other operational security tasks.
• Collaborate with engineers to understand system architecture and identify security improvement opportunities.
• Participate in team planning and collaborate with both technical and non-technical stakeholders.

 Ideally, you:

• Have a basic understanding of programming, scripting, or software development concepts.
• Are familiar with Git, APIs, Linux/command line, cloud environments, or microservices architecture (considered an advantage).
• Have a strong interest in application and infrastructure security.
• Demonstrate curiosity and a willingness to learn new technologies and explore how systems work.
• Show a proactive, problem-solving mindset with a desire to continuously develop your skills.
• Have strong written and verbal communication skills in English.

What you’ll get in return?

• An opportunity to learn from a diverse group of people who excel at what they do.
• A paid internship from June to August.
• A personal mentor — an experienced professional you can always reach out to.
• Opportunities to expand your professional network and take part in events for our interns.

This is an excellent opportunity to gain real-world experience, work on impactful initiatives, and grow professionally. Ready to kick-start your career? Apply now!

When submitting your application, please ensure your CV is in English.

The Director of Data Engineering will lead and scale the Data Engineering and Analytics Engineering functions, owning the post-application data platform and its architecture, governance, and operating model. This foundational leadership role ensures best in class engineering standards, helps drive the organization toward a durable, auditable, data-product operating model, and modernizes and expands a Snowflake-centered data stack to include building and operating scalable distributed data processing and real-time streaming systems that support event-driven data products for operational use cases.

The role partners closely with Product, Software Engineering, Data Product Managers, Marketing, Compliance, Finance and Data Science to ensure our data ecosystem is production-grade, scalable, and compliant in a regulated gaming environment.

What You'll Do:

Team Leadership & Organizational Growth

• Lead and grow Data Engineering and Analytics Engineering teams; recruit, mentor, and elevate technical capabilities around distributed data processing, stream processing, and event-driven architectures
• Define ownership models for platform components and data products; set performance and hiring plans.
• Advance engineering standards for deployment: development, testing, documentation, release management, and SLAs.
• Partner with Data Product Managers to define data assets as versioned, documented data products with clear ownership and SLAs.

Platform, Architecture & Engineering Excellence

• Own the administration, reliability, governance, and strategic expansion of the Snowflake-based post-application data platform to operate scalable distributed data processing pipelines capable of handling high-volume event data across both batch and streaming workloads.
• Manage platform governance, access control, security, cost, and capacity planning.
• Standardize DBT deployment methods, promotion workflows, and environment management.
• Implement Infrastructure-as-Code (Terraform or similar) for reproducible, auditable infrastructure.
• Deliver monitoring, observability, lineage, and data quality frameworks; enforce traceability and auditability for regulated reporting.
• Own and evolve ingestion and warehouse architecture and transformation frameworks .
• Improve performance, cost efficiency, reliability, and scalability of data transformation and storage layers.
• Define and enforce engineering standards across the data lifecycle and establish SLAs and reliability metrics for critical assets - ensuring all pipelines, transformations, and reporting are auditable and documented for internal and external review

Event-Driven Architecture & Player 360

• Partner with Software Engineering on event messaging, streaming architecture, and ingestion patterns (built on technologies such as Kafka, Kinesis, Spark Structured Streaming, Flink, or equivalent platforms).
• Lead technical design and development of a unified Player 360 data foundation that integrates transactional, behavioral, and event-level data.
• Align application schema design with downstream analytical, product, and regulatory requirements.
• Balance real-time and batch processing strategies according to business needs and cost/complexity tradeoffs.

What You'll Bring:

• Bachelor’s degree in Computer Science, Engineering, Data Science, or related STEM field preferred. Equivalent practical experience will be considered.
• 8+ years of experience in data engineering, with 3+ years of experience in leadership roles. 
• Experience transitioning an organization from private/startup to public company.
• Experience in regulated industries (gaming, fintech, payments, healthcare).
• Prior experience building Player 360 / Customer 360 platforms.
• Deep hands-on experience with Terraform / IaC and production-grade streaming systems (Kafka, Kinesis, etc.).
• Familiarity with GenAI governance frameworks and scalable AI integration patterns such as Harness Engineering.
• Able to travel occasionally both domestically and internationally. #LI-REMOTE #LI-PROMOTE

Sony Music Product Design Engineering and Global Operations (PDE + GO) team is looking for a Senior Software Engineer to join our development team in our Tallinn, Estonia Office!

The Ideal Candidate

The Lead Software Engineer: Cloud Modernisation will play a key role in advancing Entersekt’s transition toward cloud-ready and cloud-native architectures across the company’s SaaS product suite. This role combines senior technical leadership with hands-on engineering delivery.

You are an experienced engineer who is comfortable working directly within complex production codebases while also shaping architectural direction and modernisation strategy. You bring a pragmatic mindset when working with legacy systems and understand how to balance performance, cost efficiency, operational reliability, and delivery timelines when introducing cloud-native patterns.

The successful candidate will guide the modernisation of existing systems by introducing scalable architecture patterns, automation, and operational improvements while partnering closely with product engineering, platform engineering, DevOps, security, compliance, and product management teams.

Initial focus for this role will be the modernisation of Entersekt’s 3DS product suite, with patterns, architectural approaches, and enablement efforts expected to scale across the broader SaaS platform over time.

The Role

This is a senior individual contributor role operating at Lead Engineer level. The role combines architectural leadership with hands-on engineering execution and is responsible for defining and delivering the modernisation roadmap for key product systems.

The Lead Software Engineer will assess previous generation (heritage) components, design target-state architecture, and implement modernisation improvements directly in product codebases. The role will introduce modern engineering practices and cloud-native patterns while establishing guardrails, reference implementations, and repeatable approaches that product teams can adopt.

The position plays an important role in enabling a scalable SaaS operating model by improving automation, observability, deployment consistency, and tenant lifecycle management. Through close collaboration with engineering and platform teams, the role will help accelerate cloud-native delivery while maintaining strong operational, security, and regulatory standards.

Responsibilities

Modernisation Strategy, Roadmap and Architecture

• Define modernisation roadmaps for product applications, including target-state architecture for services, infrastructure, and data flows.
• Assess legacy components to identify modernisation opportunities, technical debt, and pragmatic remediation paths.
• Determine appropriate modernisation approaches including refactoring, re-platforming, or re-architecting based on performance, cost, risk, and delivery considerations.
• Contribute architectural insight to the modernisation business case and support financial modelling related to infrastructure and platform decisions.

Engineering Delivery

• Implement modernisation changes directly within product codebases, including refactoring legacy components and decomposing monolithic architectures.
• Introduce cloud-native engineering patterns such as microservices, event-driven architecture, containerisation, and serverless services.
• Identify and implement performance, scalability, and reliability improvements using observability platforms, cloud metrics, and logging tools.
• Develop reference implementations and engineering patterns that enable teams to accelerate modernisation across products.
• Drive code-level implementation decisions and ensure successful delivery of modernisation outcomes across multiple engineering teams.

SaaS Platform and Operational Modernisation

• Improve the operational and platform capabilities that support Entersekt’s SaaS delivery model.
• Reduce reliance on manual operational processes and bespoke scripts by introducing automation across tenant lifecycle management.
• Design and implement repeatable processes for tenant provisioning, configuration, and environment management.
• Improve onboarding speed for new tenants through standardised workflows and environment templates.
• Establish tenant-aware observability by improving consistency of logs, metrics, traces, dashboards, and alerting across services.
• Contribute to multi-tenant architecture design, including tenant isolation and service tiering considerations.
• Improve deployment consistency through repeatable deployment patterns, automation, and safer release processes.

Engineering Standards and Governance

• Introduce practical engineering guardrails that support modern development practices including API-first design, event streaming, cloud-native storage, and container orchestration.
• Define and maintain architectural standards, patterns, and best practices for cloud-native development.
• Contribute to cloud governance initiatives and participate in architecture reviews that guide engineering teams through modernisation efforts.

Cross-Functional Collaboration

• Lead technical workshops, architecture discussions, and design reviews across product teams.
• Support engineering teams in translating modernisation objectives into practical implementation changes.
• Partner closely with DevOps, Platform Engineering, Cybersecurity, Compliance, and Product teams to ensure modernisation initiatives align with operational and regulatory requirements.
• Build trust with engineering teams by introducing modern practices through collaborative design and working reference implementations.

Team Development

• As the modernisation programme evolves, contribute to shaping a small, specialised engineering capability that supports broader platform modernisation initiatives.
• Maintain a strong hands-on focus while helping teams adopt new patterns and technologies.

Success Measures (First 12 Months)

Success in this role will be measured by the ability to deliver meaningful modernisation outcomes across Entersekt’s SaaS platform while establishing scalable engineering patterns that enable teams to accelerate cloud-native delivery.

Key outcomes in the first 12 months may include:

• Completing a comprehensive architectural assessment of the 3DS product suite, identifying key modernisation opportunities, technical constraints, and priority areas for improvement.
• Delivering a modernisation roadmap and migration plan that clearly defines architectural direction, sequencing, and the associated performance, operational, and cost considerations.
• Successfully modernising at least one product or major product component, resulting in measurable improvements in system operability, maintainability, and performance.
• Reducing reliance on manual operational processes and bespoke scripts through the introduction of automated tenant lifecycle management and environment provisioning.
• Improving observability and operational readiness by introducing consistent logging, metrics, dashboards, and alerting across services and tenants.
• Contributing architectural insights and cost considerations to the modernisation business case, supporting decision-making around infrastructure and platform investments.
• Establishing trusted working relationships with product and platform engineering teams by delivering working modernisation patterns and reference implementations that teams can adopt.
• Contributing to the development of a long-term platform architecture roadmap that supports modernisation across multiple products within the Entersekt SaaS ecosystem.

Skills and Experience

Successful candidates for this role will generally possess the following qualifications and skills:

• Demonstrated experience designing and delivering application modernisation programmes within AWS environments.
• Experience modernising applications through refactoring, re-platforming, or re-architecting legacy systems.
• Strong experience building and operating production systems using containers and orchestration platforms such as Kubernetes (or equivalent platforms).
• Solid backend engineering experience with the ability to diagnose and improve performance, scalability, and reliability in production systems.
• Experience working with Java-based systems or comparable backend development stacks.
• Proven experience implementing modern architectural patterns such as microservices, event-driven architectures, and distributed systems.
• Experience improving operational maturity through automation, observability, monitoring, and repeatable deployment processes.
• 8+ years of experience in cloud architecture, platform engineering, or senior software engineering roles responsible for production systems.
• Strong communication and collaboration skills with the ability to influence engineering, product, and platform teams.
• AWS certification is advantageous but not required.

Personality Attributes

• Strong bias toward delivery with a willingness to work hands-on in complex production systems.
• Pragmatic and comfortable working with legacy environments while introducing modern engineering approaches.
• Ability to influence teams through working solutions, reference implementations, and practical improvements.
• Systems thinker who balances architecture decisions with operational reliability, cost management, and security.
• Collaborative team player who builds trust across engineering teams through clear communication and inclusive technical leadership.
• Maintains accountability for delivering measurable outcomes while enabling teams to adopt modern engineering practices.