Sobre

• Ambush is a People Company. But what does that mean exactly? It means we care about our people as much as we care about building great products. We take a human-centered approach to identifying, retaining and integrating highly talented, long-term remote people into America’s best product and development team.

• We began our consulting journey in 2015 and have been growing ever since! We do that by delivering the best quality work possible for our clients. We are not afraid to take risks, and we always seek the best possible path to solve a problem, instead of just a quick makeshift solution. Thanks to our highly skilled team of engineers, we always perform tasks using our best abilities!

• We are passionate about what we do every day, and we can always count on our team to have our backs. Teamwork is one of our core values! We don’t go anywhere by ourselves. We are driven to achieve great things. And we are extremely helpful to everyone. We expect you to be a team player.

When you join us, you will

• -Develop full-stack security applications: Build, deploy, and maintain robust internal applications using modern frameworks (such as TypeScript and NestJS) within a shared monorepo environment.
• - Drive the evolution of security tooling: Lead the end-to-end design, implementation, and continuous improvement of software solutions that strengthen the company’s security foundations and defensive capabilities.
• -Advance our security maturity: Create automation and systems that enhance monitoring, detection, and incident response—reducing manual work while increasing accuracy and operational efficiency.
• -Serve as a security advisor to engineering teams: Provide technical guidance on secure architecture, conduct code and design reviews, and contribute to threat modeling to ensure secure development practices.
• -Safeguard platform reliability and trust: Ensure that all developed services are scalable, observable, and hardened against potential risks, supporting the integrity of core infrastructure systems.

Must Haves

• - Full-stack development expertise: Solid experience designing, building, and deploying end-to-end applications, with strong proficiency in backend technologies (TypeScript/Node.js, NestJS, Java) and modern frontend frameworks (React, Next.js, or equivalent).
• -Security-focused engineering mindset: In-depth understanding of application security principles, secure development practices, and familiarity with common vulnerability patterns such as those outlined in OWASP Top 10.
• -Modern architecture experience: Hands-on work within microservices-based systems and experience maintaining scalable, high-quality code in monorepo environments.
• -AI-augmented development: Comfortable integrating AI tools (e.g., GPT, Gemini, Cursor) into daily workflows for coding assistance, debugging, optimization, and security validation.
• -Cloud and infrastructure proficiency: Practical knowledge of AWS services (e.g., DynamoDB, SNS, Secrets Manager, EKS), containerized environments using Docker, and caching systems such as Redis.
• -Commitment to observability and quality: Strong belief in rigorous engineering practices, including automated testing with Jest, structured logging, and distributed tracing through tools like OpenTelemetry.
• -Interest in blockchain and digital assets: Genuine curiosity or prior experience in the cryptocurrency ecosystem, with an awareness of its specific security and operational challenges.