Apply on Employer Site

Truist · 4 months ago

Senior Software Engineer – Platform & Microservices Architecture

Richmond, VA

Full-time

Onsite

Senior Level

6+ years exp

Truist Bank is seeking a seasoned and hands-on Senior Software Engineer to lead the design and implementation of enterprise-grade microservices and platform capabilities. This role involves building resilient software systems that power mission-critical business functions while ensuring compliance and security standards are met.

BankingFinanceFinancial Services

No H1B

Responsibilities

Design, develop, and maintain high-scale, low-latency microservices in Java and Python that support enterprise platforms with stringent uptime, compliance, and observability requirements

Engineer event-driven architectures using Kafka or equivalent messaging platforms to enable asynchronous workflows, decoupled service communication, and scalable event sourcing

Develop and maintain Helm charts, Kubernetes manifests, and YAML-based configurations to deploy and manage cloud-native applications in production environments

Design and implement enterprise-scale reusable service patterns, including service discovery, distributed configuration, fault tolerance, and global failover strategies

Embed policy-as-code in CI/CD workflows using tools like OPA/Gatekeeper, Kyverno, or custom controls, enforcing security, compliance, and infrastructure governance at deploy time

Partner with security, compliance, and risk teams to codify controls into automated pipelines, ensuring software systems are audit-ready by default

Implement compliance-aware telemetry and alerting tied to controls such as data residency, encryption, access boundaries, and runtime immutability

Drive the adoption of platform-wide architectural standards for service-to-service communication, identity propagation, rate-limiting, and secret injection

Provide hands-on leadership in technical design reviews, deep dive troubleshooting, and performance tuning of distributed, containerized systems

Author and maintain technical documentation, platform onboarding guides, and reusable code templates to enable faster and safer developer onboarding

Qualification

JavaPythonKubernetesHelmEvent-driven architectureOpen Policy AgentCI/CD pipelinesInfrastructure as CodeMicroservices architectureLeadershipTechnical documentationCollaborationProblem-solving

Required

In-depth knowledge in information systems and ability to identify, apply, and implement best practices

Preferred

Master's degree in Engineering, Computer Science, or a related discipline

Experience in high-regulation industries (e.g., financial services, healthcare, automotive) with firsthand knowledge of compliance enforcement at code level

Experience with Open Policy Agent (OPA), Kyverno, or HashiCorp Sentinel for governance and control enforcement

Deep familiarity with enterprise system constraints including governance, scalability, compliance frameworks (e.g., SOC 2, PCI, NIST), and regulated workloads

Familiarity with zero-trust security patterns, mutual TLS (mTLS), service mesh (e.g., Istio or Linkerd), and container vulnerability scanning tools

6+ years of experience in software engineering, with a strong track record of enterprise-scale service delivery in production environments

Expert-level proficiency in Java and Python, with demonstrable experience building services deployed on Kubernetes using Helm and declarative configurations

Experience with event-driven patterns, including pub/sub, message queues, and streaming architectures

Contributions to internal frameworks or open-source tools that enable secure, scalable microservice development

Advanced understanding of platform resiliency, chaos engineering, and graceful degradation strategies under fault scenarios

Strong leadership presence in technical forums and the ability to drive architectural alignment across multiple teams

Strong understanding of platform architecture principles, multi-region deployments, and high-availability (HA) designs

Experience implementing policy-as-code in CI/CD pipelines and enforcing guardrails and operational risk controls via automated code and deployment policies

Proficient with GitOps, CI/CD pipelines (e.g., ArgoCD, Jenkins, GitHub Actions), and infrastructure-as-code tools (Terraform, Kustomize, etc.)

Working knowledge of container runtime security, runtime controls (e.g., SELinux, seccomp, AppArmor), and least privilege access models

Familiarity with SRE principles, including SLO/SLA/SI metrics and production incident response practices