404 Assembly

📍 Remote | 🕒 Full-time | 🌐 Project from scratch
 

We are launching a new, high-impact journalism project with very high security requirements. The platform itself is not a cybersecurity product, but it will operate in a sensitive environment, where data protection, secure infrastructure, and secure communication protocols are absolutely critical.

The entire development process will follow strict security standards, both on the technical side and on the team collaboration side. This includes using secure communication channels, isolated development environments, and tightly controlled access protocols for all project management and technical activities.
 

We’re looking for an experienced Full Stack Developer (strong Middle or Senior level) who can join at the earliest stage and help build the product from scratch, with the potential to grow into a Tech Lead role.

✅ Requirements

• 5+ years of professional full stack development experience (specific stack is flexible — strong engineering background is what matters).
• Proven experience in building scalable web platforms from scratch.
• Solid understanding of secure development practices, including:
  • Working within secure SDLC (Software Development Life Cycle) frameworks.
  • Proper handling of secrets, keys, and credentials.
  • Ensuring code, data, and infrastructure security across all layers.
  • Applying least privilege, conducting secure code reviews, and working with isolated environments.
• Experience with CI/CD, code reviews, and modern deployment workflows.
• Ability to work independently, make technical decisions, and take ownership.
• Excellent communication and collaboration skills in a distributed, security-conscious team.
• Proactive approach — we value initiative and technical leadership.

🧱 Nice to Have

• Experience in system architecture design (modular systems, microservices, etc.).
• DevOps background: environment management, containerization, CI/CD pipeline setup.
• Cybersecurity experience, e.g., threat modeling, penetration testing, or working under ISO 27001 / SOC 2 / GDPR frameworks.
• Experience leading or mentoring developers.

🔐 Security & Communication Protocols

• All team communications will occur over secure, encrypted channels.
• Access to environments, repositories, and project tools will follow strict access control and auditing procedures.
• Project management workflows will be designed to minimize information exposure and ensure operational security at every stage.

🧭 Role Overview

You’ll be part of a compact, professional cross-functional team:

• Project Manager
• Business Analyst
• QA Engineer
• UI/UX Designer
• 2–3 Full Stack Developers (including you)

You’ll work closely with the core team to define and implement the technical architecture, contribute to secure infrastructure setup, and ensure that the platform meets the highest standards of security, reliability, and performance.

🚀 Why Join

• Build a high-impact journalism platform from the ground up.
• Work in a greenfield environment with modern tech, strong processes, and zero legacy.
• Be part of a tight, professional team where your expertise truly matters.
• Shape architecture, culture, and security practices from day one.
• Growth path toward a Tech Lead role.

📍 Remote | 🕒 Full-time | 🌐 Project from scratch

We’re building a new, high-impact platform. This is a greenfield project. We’re assembling a compact, senior team to build a product where user experience, clarity, and precision matter at every level.

We’re looking for a talented UI/UX Designer with 3+ years of experience designing mobile and web products, strong expertise in design systems, and the ability to work independently within a cross-functional team.

🧭 Role Overview

You’ll collaborate closely with:

• Project Manager
• Business Analyst
• Full Stack Developers

• QA Engineers

   

You’ll be responsible for the entire design cycle: from research, wireframes, and interactive prototypes — to polished UI design and developer handoff. Since this is a greenfield project, you’ll play a key role in defining the product’s visual language and user experience from the ground up.

✅ Requirements

• 3+ years of professional experience as a UI/UX Designer.
• Proven experience designing both mobile and web interfaces.
• Proactive design approach.
• Strong knowledge of modern design systems, UI libraries, and best practices for scalable design.
• Expertise in wireframing, prototyping, and UX flows.
• Deep understanding of responsive design, accessibility, and usability principles.
• Ability to work independently, communicate clearly, and collaborate with a distributed team.
• Proficiency in Figma.

• Experience preparing designs for developer handoff with proper documentation and components.

   

🧱 Nice to Have

• Experience designing desktop applications.
• Graphic design skills (branding, illustrations, marketing visuals).
• 3D design experience (UI elements, animations, or branding visuals).

WE ARE LOOKING FOR YOU! 

📍 Remote | 🕒 Full-time | 🌐 Project from scratch

We’re building a new, security-sensitive journalism platform in a confidential environment.
The product itself is not cybersecurity software — but it will operate under very strict security, compliance, and communication protocols.

We are looking for an experienced DevOps / SecOps Engineer who can design, implement, and maintain a secure infrastructure for a greenfield web platform. This person will play a foundational role in establishing the architecture, CI/CD pipelines, access control systems, and overall security posture of the project.

🧭 Role Overview

You will be responsible for:

• Architecting secure infrastructure (multi-environment, access-controlled, auditable).
• Implementing defense-in-depth principles across infrastructure, CI/CD, and application layers.
• Setting up secure CI/CD pipelines with secrets management and least privilege policies.
• Designing network isolation, zero-trust access, and secure communication workflows for all team members.
• Ensuring compliance with industry security frameworks and standards.
• Supporting security audits, penetration tests, and incident response procedures.

✅ Requirements

• 4+ years of professional experience in DevOps / SecOps / Infrastructure roles.
• Proven experience designing and managing secure architectures for production systems with sensitive data.
• Deep understanding of cloud security best practices (AWS / GCP / Azure), including:
  • VPC segmentation, private networking, security groups
  • IAM and role-based access control (RBAC)
  • Key & secret management (Vault, SSM, KMS, etc.)
• Expertise with secure CI/CD pipelines, including:
  • Secrets rotation
  • Signed artifacts and integrity checks
  • Static/dynamic security scanning and policy enforcement
• Experience implementing:
  • Zero-trust principles
  • Network & environment isolation
  • Secure artifact repositories and registries
• Solid understanding of secure SDLC frameworks and collaboration with development teams.
• Practical experience with security hardening (OS, containers, network).
• Familiarity with incident response, intrusion detection, monitoring, and log aggregation.
• Hands-on experience with compliance frameworks (ISO 27001, SOC 2, GDPR, NIST, or similar).

🧱 Nice to Have

• Background in penetration testing, threat modeling, or security assessments.
• Experience with Kubernetes security (OPA, PodSecurityPolicies, Admission Controllers).
• Familiarity with automated vulnerability management tools.
• Previous work in journalism, NGO, or sensitive-data environments.
• Certifications such as CISSP, CCSP, AWS Security Specialty, or equivalent are a plus.

🔐 Security & Communication

• All operations and communications occur over secure, encrypted channels.
• Infrastructure will follow zero-trust and least privilege principles.
• You will define access control, audit policies, and environment segregation from day one.
• You’ll be the key security authority inside the project team.

🚀 Why Join

• Build the entire infrastructure from scratch with full technical influence.
• Work in a compact, senior team on a meaningful journalism project.
• Define secure architecture and DevOps culture from day one.
• Growth path toward Security Lead / Infrastructure Lead as the platform scales.