Airwallex - Principal Software Engineer, Edge Team
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• Deep experience in cloud-native edge networking (API Gateway, DNS, CDN, GA, firewalls) • Proficiency with SDN concepts and tools (e.g., OpenDaylight, Envoy, NGINX/OpenResty, Kong, Apisix) • Familiar with Cloudflare, AWS or GCP Cloud Networking, techniques • Knowledge of hybrid/multi-cloud patterns and traffic engineering at scale • Hands-on with cloud firewall systems, WAF, rate limiting, and bot detection • Strategic Capabilities • A security-aware mindset with ability to balance protection and developer experience • Experience defining cross-team processes and governance frameworks • Strong communication skills and ability to lead across engineering and security teams • Experience supporting financial or regulated workloads • Familiarity with Kubernetes traffic management frameworks • Applicant Safety Policy: Fraud and Third-Party Recruiters • To protect you from recruitment scams, please be aware that Airwallex will not ask for bank details, sensitive ID numbers (i.e. passport), or any form of payment during the application or interview process. All official communication will come from an @airwallex.com email address. Please apply only through careers.airwallex.com or our official LinkedIn page. • Airwallex does not accept unsolicited resumes from search firms/recruiters. Airwallex will not pay any fees to search firms/recruiters if a candidate is submitted by a search firm/recruiter unless an agreement has been entered into with respect to specific open position(s). Search firms/recruiters submitting resumes to Airwallex on an unsolicited basis shall be deemed to accept this condition, regardless of any other provision to the contrary. • Equal opportunity
Responsibilities
• 🌐 Own the Edge Network Stack • Design and evolve the architecture for Airwallex's external traffic stack including: • API Gateways (routing, filtering, throttling) • DNS services (global resolution & routing) • CDNs (caching strategies and invalidation) • Global Accelerators (latency and route optimization) • 🔐 Define and Enforce Border Security • Partner with InfoSec to design and operationalize: • DDoS protection, bot mitigation, and anomaly detection (e.g., Cloud Armor, WAF) • Rate limiting and QoS policy enforcement for prioritized customer/partner APIs • Firewall rule governance and bad actor prevention mechanisms • Intrusion Prevention and Auth mechanisms at the border • 📦 Policy-Driven API Route Management • Build end-to-end processes and tooling for how engineers expose public APIs: • Define policy and controls for route registration, approval, and change management • Work with platform teams to enforce compliance across microservices and gateways • Contribute to internal tools for observability, access review, and lifecycle auditing • 🚦 Enable Global-Scale, Secure Performance • Establish reliability and quality of service (QoS) goals for critical paths (e.g., payments, onboarding, auth) • Design for hybrid/multi-cloud edge strategy and backbone traffic replication • Tune latency, failover, and availability posture across regions
Benefits
• Equity options mentioned as part of the benefits package. • Paid Time Off (PTO) is included in the job offerings. • Insurance coverage details are provided for employees and their families, including health insurance with a company contribution towards premiums based on salary tier; life insurance up to $250k per employee or family member; disability income protection of 6 months' pay if unable to work due to illness/injury. • Perks such as free meals, snacks and drinks are available in the office for employees during working hours. • Remote work options are offered with a flexible schedule that allows full or partial remote work based on role requirements; however, there is an expectation of being present at least 2 days per week within Melbourne city limits to maintain team cohesion and collaboration.
No credit card. Takes 10 seconds.