ATEC is a global leader in clean cooking technologies. Following our biogas growth in Cambodia and Bangladesh, in 2021 ATEC has launched a new IoT product version of its eCook connected induction cooking device.

Globally over 4 billion people still do not have access to clean cooking technologies and we see both biogas and electric cooking as key technologies to solve this issue by also generating significant carbon offset potential.

We are seeking a skilled Senior Backend and Cloud Security Engineer to plan, develop, and maintain backend applications and cloud services while ensuring robust security across all systems. This role involves building secure, scalable APIs, managing AWS cloud infrastructure, and integrating with external platforms, with a strong focus on adhering to cloud security best practices particularly for IoT environments.

This is a remote role and requires a minimum of 4h overlap AEST work schedule (Mo-Fr 9am-5.30pm).

Backend Development:

• Design, develop, and maintain scalable backend systems and APIs for various use cases (e.g., public, private, and partner-facing) utilising best practice approaches.
• Optimize backend performance for reliability and scalability under diverse workloads.
• Design, develop and maintain system that can process millions of data concurrently from both SQL and NonSQL based databases
• Design, develop and maintain IoT based systems, like monitoring IoT devices, data send and receive from devices, OTA update, etc.

Cloud Infrastructure Management:

• Develop and manage AWS cloud infrastructure with a focus on secure, cost-effective, and high-performance solutions.
• Configure and maintain AWS services such as Lambda, API Gateway, EC2, S3, RDS, DynamoDB, and CloudWatch IoT Core, IoT Events, MSK, and many more.
• Design, develop and manage micro-services based systems and create services that can plug into such systems.

Cloud Security Implementation:

• Establish and enforce security policies for cloud infrastructure, including Identity and Access Management (IAM) roles, least privilege access, and multi-factor authentication (MFA).
• Monitor and mitigate security risks using tools like AWS Security Hub, GuardDuty, and CloudTrail.
• Implement secure data storage, encryption (in-transit and at-rest), and backup strategies.
• Perform regular vulnerability assessments and penetration testing of APIs and cloud systems.

API Security and Integrations:

• Design and implement secure APIs with authentication, authorization, and rate-limiting mechanisms (OAuth2, JWT, API keys).
• Develop and maintain integrations with external platforms while ensuring data security and compliance.
• Harden APIs against potential threats, such as replay attacks and brute-force attempts.

Monitoring, Logging, and Incident Response:

• Set up comprehensive monitoring and logging systems to detect and respond to security and dropout events promptly.
• Develop and maintain incident response procedures, ensuring swift mitigation of breaches or anomalies.
• Use tools like AWS CloudWatch, Splunk, or ELK stack for real-time monitoring and analytics.

Working with internal and external stakeholders to assist with system-related technical issues and support the data infrastructure needs of other business areas.

Other activities as determined by the Head of Product & Technology.

Qualifications and Experience:

• Tertiary degree in Computer Science, Engineering or a related field
• Proficiency in backend programming (e.g., Python, Node.js, Java) with a focus on secure development practices.
• Strong understanding of AWS services (e.g., IAM, Security Hub, GuardDuty, VPC).
• Strong understanding of IoT software development (backend /cloud) and associated communication protocols (MQTT an advantage)
• Hands-on experience with API security standards (e.g., OAuth2, JWT) and secure integration patterns
• Experience with development and scaling of containerized environments (e.g. Docker, Kubernetes) and their security models
• Solid understanding of encryption protocols, firewalls, and network security controls.
• Experience in monitoring and securing production environments.
• Awareness of DevSecOps principles and integrating security into CI/CD pipelines.
• Strong communication skills and able to interact with technical and non technical stakeholders

Personal Attributes:

• Demonstrate your commitment to our values
• Enjoy working in a fast paced and dispersed work environment
• Open Source contributor a bonus
• High attention to detail
• Proactive approach, be visible and vocal, have an opinion
• Excellent written and verbal communicator, with the ability to translate technical jargon into everyday language
• Driven to help people and communities