Platform Engineer

Company: Nabis
Location Eligibility: CA, CO, FL, GA, IA, ID, IL, KS, MA, MD, ME, MI, MO, NJ, NV, NY, TN, TX, UT, VA, or WA

About Nabis

Nabis is the world's leading licensed cannabis wholesale platform, facilitating over $1 billion in annual cannabis product sales from hundreds of brands to retailers across California, New York, and Nevada. Our mission is to empower the world to discover cannabis by providing choice, access, and innovation through a modern, scalable, technology-first platform. Backed by Y Combinator and prominent investors, Nabis is rapidly expanding its U.S. footprint with the goal of becoming the largest and most influential global cannabis distribution network.

About the Role

We are seeking a skilled Platform Engineer to join our infrastructure team operating our AWS-based data and application platform. Having built the core system, we now need an experienced individual to enhance its resilience, security, and repeatability. You will own the critical systems that enable our application and data teams to ship code rapidly and safely, including CI/CD pipelines, Kubernetes operations, our managed PostgreSQL fleet, and the streaming/CDC backbone. This senior, hands-on role requires operational, security, and compliance rigor to scale effectively. You will set standards and drive best practices.

Responsibilities:

• CI/CD Pipelines: Own and evolve CI/CD pipelines, leading the migration from GitLab CI to GitHub Actions. Standardize reusable workflows and improve build/deploy speed and reliability.
• Kubernetes Operations: Operate and harden EKS clusters, managing upgrades, networking, autoscaling, security, and day-to-day reliability of workloads.
• PostgreSQL Fleet: Co-own our RDS/Aurora PostgreSQL fleet, focusing on performance tuning, replication, connection management, and backup/restore, in partnership with application engineers.
• Kafka & CDC: Operate our self-hosted Kafka platform (via Strimzi on Kubernetes) and Debezium-based CDC pipelines, ensuring connector health, schema evolution, and throughput.
• Data Lake: Provision and operate our data lake (Apache Iceberg tables in S3, Snowflake for querying, dbt for transformations), managing infrastructure, table/storage operations, access governance, and cost controls.
• dbt Workflows: Support analytics-engineering workflows on dbt, including environments, CI/CD, and automated testing/deployment.
• Infrastructure as Code: Own and extend infrastructure-as-code in Terraform, applying rigorous review, testing, and repeatability to infra changes.
• Security: Build security into the platform and pipelines, focusing on secrets management, least-privilege IAM, network segmentation, dependency scanning, and OWASP-aligned practices.
• SOC 2 Compliance: Contribute to maturing our SOC 2 posture through infrastructure controls, audit logging, evidence collection, and automation.
• Operational Maturity: Help mature operational practices, codifying standards, formalizing on-call and incident response, and contributing to capacity and reliability planning.
• Observability: Own observability (metrics, logging, tracing, alerting) to proactively identify and address issues.
• Cost Efficiency: Drive cost efficiency across the AWS footprint, framing trade-offs for business impact.

Qualifications:

• 5+ years of hands-on experience operating production infrastructure on AWS, demonstrating depth of operational experience through load, incidents, and growth.
• Demonstrated experience scaling infrastructure and operations through organizational growth, transforming systems from functional to resilient, secure, and repeatable.
• Deep, practical Kubernetes experience (ideally EKS), including cluster upgrades, network debugging, and resource/scaling behavior analysis.
• Strong production experience with RDS/Aurora PostgreSQL, including operational aspects like replication, performance, and backups.
• Solid command of CI/CD pipelines and associated disciplines; experience migrating/consolidating pipeline tooling (e.g., GitLab CI, GitHub Actions).
• Fluency with infrastructure as code, particularly Terraform.
• A strong security foundation, including practical familiarity with OWASP Top 10, secure pipeline/secrets practices, and least-privilege IAM.
• Hands-on experience supporting SOC 2 (or comparable frameworks like ISO 27001) from an infrastructure perspective.
• Experience provisioning and operating cloud data warehouses/lakehouses (Snowflake, Apache Iceberg), including access governance, performance, cost control, and dbt transformation workflows.
• Comfort working closely with systems, with strong Linux fundamentals and scripting/automation abilities (Bash plus Go, Python, or similar).

Compensation & Benefits:

• Unlimited Paid Time Off (PTO) and paid holidays.
• Competitive salary: Base Salary range of $145,000 - $165,000.
• Medical, Dental, and Vision insurance for all full-time employees.
• 401(k) plan with company match.

Equal Opportunity Employer

Nabis is committed to creating a diverse work environment and strongly encourages applications from individuals of all backgrounds. We do not discriminate based on race, gender, religion, color, national origin, sexual orientation, age, marital status, veteran status, or disability status. We strive to maintain a work culture free from discrimination and harassment.