Agentic Engineer II - SaaS Platform, Security & Compliance

About Wati 

Started as a WhatsApp team inbox in 2020, Wati has evolved into a full revenue orchestration system that goes beyond a single platform. We empower businesses that sell, support, and grow through conversations by observing customer intent in real-time, deciding the next best revenue action, and executing it seamlessly across marketing, sales, and support—all within WhatsApp and connected messaging channels.

Our Platform & AI Capabilities 

Wati is designed for scalability and intelligence. Our AI-native platform simplifies complex customer communication operations through a unified inbox, a robust multi-channel messaging infrastructure, and no-code automation. At the heart of our solution is Astra, our intelligent AI layer, which helps you create AI Agents for all customer interactions and all your messaging platforms. By integrating AI agents into the ecosystem, we enable businesses of all sizes to deliver measurable ROI and build deeper customer relationships.

Our Backing & Partnerships 

Trusted by over 16,000 customers across 190+ countries, Wati is proudly backed by world-class investors including Tiger Global, Sequoia Capital, DST Global, and Shopify. As a Premium-tier Partner of Meta and Google, we maintain the highest standards of platform excellence and integration.

Requirements

Secure Platform Services

• Design, build, and operate secure multi-tenant SaaS platform services: authentication, authorization, isolation, configuration management, audit logging, and data protection.
• Collaborate with SRE, data, and product teams to ensure secure data handling: flows, backup/restore, residency, and encryption (in transit and at rest).

Cowork with DevOps & Automation

• Collaborate with Platform/DevOps to integrate DevSecOps guardrails (SAST/DAST, scanning, image signing, policy-as-code) into CI/CD pipelines.
• Define reusable security patterns and paved-road templates (e.g., secure service baselines, reference pipeline stages) for implementation in the internal developer platform. 
• Partner with Platform/DevOps to maintain secure cloud, container, and Kubernetes baselines (hardened images, admission controls, least-privilege IAM, network segmentation) using infrastructure-as-code.

Security, Privacy & Compliance (SOC 2 / ISO 27001 / GDPR)

• Translate security, privacy, and compliance requirements (SOC 2, ISO 27001, GDPR) into concrete technical controls, infrastructure patterns, and platform capabilities.

• Work with security, legal, and compliance stakeholders to define control objectives and automatically collect audit-ready evidence (configuration snapshots, pipeline logs, access logs, change history).

Monitoring, Incident Response & Resilience

• Build and integrate logging, monitoring, and alerting for security-relevant events (authn/z flows, admin actions, configuration changes, policy violations) across all tenants and platform services.

• Support incident response for platform-level security issues: detection, triage, forensics, root-cause analysis, and design of long-term remediations.

• Design platform services for resilience and safe failure modes; contribute to security game-days and feed learnings back into platform design and automation.

AI-Augmented Engineering

• Use AI coding and security assistants to accelerate design, implementation, testing, and threat-model drafts—while rigorously reviewing and hardening all generated output.

• Experiment with embedding AI agents into platform and security workflows (e.g., summarizing noisy security logs, drafting policies, automating compliance evidence collection).

• Document and share best practices for safe, effective AI usage in engineering (prompt patterns, validation steps, data-handling guidelines).

Basic Qualifications

• 3–5 years of professional software development experience, including significant time on cloud-hosted or SaaS products.

• Strong coding skills in one or more backend/platform languages (TypeScript/Node.js, Java, Go, C#, or Python) with experience building and operating backend or platform services.

• Hands-on experience with at least one major cloud provider (AWS, GCP, or Azure) and infrastructure-as-code tools (Terraform, CloudFormation, CDK, or similar).

• Solid understanding of security fundamentals: IAM, encryption, web/API security, MFA, network security basics, and secure secret management.

• Practical experience using AI coding copilots or security assistants, with clear examples of when you rejected or corrected their output.

Preferred Qualifications

• Experience on a platform, security, or SRE team responsible for securing a multi-tenant SaaS product, including tenant isolation and shared platform services.

• Familiarity with compliance frameworks (SOC 2, ISO 27001, GDPR, HIPAA) and how they map to technical controls, logs, and audit evidence.

• Experience with CI/CD pipelines and integrating automated tests or checks into deployment workflows.

• Experience with container/Kubernetes security (image scanning, runtime controls, admission policies, secure baselines) and policy-as-code tooling (OPA, Kyverno) plus zero-trust concepts.

• Experience implementing or operating logging, monitoring, SIEM, or SSPM tooling in SaaS environments.

Behavioral Expectations

• Strong ownership of platform and security outcomes; comfortable working across product, security, Platform/DevOps, data, and compliance to drive secure solutions end-to-end.

• Clear communication of security, privacy, and compliance constraints to both engineers and non-technical stakeholders, with a focus on enabling safe, fast delivery rather than blocking.

• Pragmatic, data-driven approach to prioritizing security and compliance work in a fast-moving SaaS environment; willingness to mentor peers on secure-by-design patterns and AI-augmented engineering.