Senior DevOps Engineer

About Nabis

Nabis is the #1 licensed cannabis wholesale platform in the world, supplying $1B+ worth of cannabis products annually from hundreds of brands to retailers across California, New York, and Nevada. Our mission is to empower the world to discover cannabis by providing choice, access, and innovation.Through modern, scalable infrastructure, our mission is to empower the world to discover cannabis by providing choice, access, and innovation.

We’re at the forefront of this movement, building an innovative, technology-first platform to scale the entire cannabis industry. Backed by Y Combinator and investors, including DoorDash Co-Founder Stanley Tang, NFL Hall of Famer Joe Montana, Gmail creator Paul Buchheit, and Twitch co-founder Justin Kan, Nabis is rapidly expanding across the U.S. with the goal of becoming the largest and most influential cannabis distribution network globally.

Location Eligibility: This role is open to candidates based in the following states: CA, CO, FL, GA, IA, ID, IL, KS, MA, MD, ME, MI, MO, NJ, NV, NY, TN, TX, UT, VA, or WA. Applicants residing outside of these states will not be considered at this time.

About the Role

We're a platform engineering team operating the infrastructure behind a data and application platform on AWS. We've built the core (the 0-to-1) — now we need someone who has done the 1-to-2 before: taking proven-but-scrappy systems and making them resilient, secure, and repeatable as the organization grows. You'll own the systems that let our application and data teams ship safely and fast — CI/CD pipelines, Kubernetes operations, our managed Postgres fleet, and the streaming/CDC backbone — and you'll bring the operational, security, and compliance rigor that lets us scale without breaking. This is a hands-on senior role with real ownership: you'll set standards, not just follow them.

Responsibilities:

• Own and evolve our CI/CD pipelines, leading the in-flight migration from GitLab CI to GitHub Actions — driving the cutover with the team, standardizing reusable workflows, and improving build and deploy speed and reliability.
• Operate and harden our EKS clusters alongside the team: upgrades, networking, autoscaling, security, and the day-to-day reliability of the workloads running on them.
• Help own our RDS/Aurora Postgres fleet — performance tuning, replication, connection management, backup and restore — partnering with application engineers on schema and query concerns.
• Operate our Kafka platform (self-hosted on Kubernetes via Strimzi) and the Debezium-based CDC pipelines that depend on it, working with the team on connector health, schema evolution, and throughput.
• Help provision and operate our data lake: Apache Iceberg tables in S3 fed by the CDC pipeline above, with Snowflake as the query and compute layer and dbt for transformations. You'll own infrastructure management, table and storage operations, access governance, and cost controls — warehouse sizing, auto-suspend, and credit monitoring — keeping the lake reliable and affordable as data volume grows.
• Support analytics-engineering workflows on dbt — environments, CI/CD for dbt projects, automated testing and deployment — partnering with the data and analytics teams who own the models themselves.
• Own and extend our infrastructure-as-code in Terraform, treating infra changes with the same rigor as application code: review, testing, and repeatability.
• Help build security into the platform and pipelines: secrets management, least-privilege IAM, network segmentation, dependency and image scanning, and OWASP-aligned practices baked into CI/CD rather than bolted on after.
• Contribute to and help mature our SOC 2 posture from the infrastructure side — access and change-management controls, audit logging, evidence collection, and automation — working toward a compliance process that's continuous rather than a fire drill.
• Help mature our operational practices as we scale: codifying standards, formalizing on-call and incident response, and contributing to the capacity and reliability planning that keeps things stable through growth.
• Own observability alongside the team — metrics, logging, tracing, and alerting that catch problems before customers do.
• Help drive cost efficiency across the AWS footprint, framing tradeoffs in terms that the business can act on.

Qualifications:

• +5 years of hands-on experience operating production infrastructure on AWS — not just standing it up, but running it through real load, incidents, and growth. We're weighing depth of operational experience over breadth of tools on a résumé.
• Demonstrated experience scaling infrastructure and operations through organizational growth — you've taken systems from "it works" to "it's resilient, secure, and repeatable," and you know what tends to break at the next stage and how to get ahead of it.
• Deep, practical Kubernetes experience — ideally EKS — beyond "I've deployed to a cluster": you've upgraded clusters, debugged networking, and reasoned about resource and scaling behavior.
• Strong production experience with RDS/Aurora Postgres, including the operational side (replication, performance, backups).
• Solid command of CI/CD pipelines and the discipline behind them; comfortable migrating and consolidating pipeline tooling (e.g., GitLab CI and/or GitHub Actions).
• Fluency with infrastructure as code, especially Terraform.
• A real security foundation — practical familiarity with the OWASP Top 10, secure pipeline and secrets practices, and least-privilege IAM — and the instinct to build it in by default.
• Hands-on experience supporting SOC 2 (or comparable frameworks such as ISO 27001) from the infrastructure side: implementing and maintaining controls, producing audit evidence, and partnering with auditors.
• Experience provisioning and operating a cloud data warehouse or lakehouse — Snowflake and/or open table formats like Apache Iceberg — including the operational realities of access governance, performance, and cost control, plus familiarity with dbt-based transformation workflows.
• Comfort working close to the systems — strong Linux fundamentals and the ability to script/automate (Bash plus at least one of Go, Python, or similar).

Compensation & Benefits:

• Unlimited PTO and paid holidays
• Competitive salary
• Base Salary starting at 145,000- 165,000
• Medical/Dental/Vision offered to all full-time employees
• 401(k) plan with a match.
  
  
  

Nabis is an Equal Opportunity Employer

Nabis is seeking to create a diverse work environment because all teams are stronger with different perspectives and life experiences.