Associate Architect Backend (NestJS / TypeScript / Microservices)

We at Confiz are hiring an Associate Architect – Backend with strong expertise in backend technologies, system architecture, and performance optimization. Join our team to design and build scalable, secure, and high-performing backend systems that power exceptional digital experiences for global enterprises..

Responsibilities

• Own microservices in NestJS (TypeScript): define module boundaries, version APIs, and ship resilient, well-tested services.
• Design internal communication: implement REST/gRPC/event-driven patterns (e.g., request/response, pub/sub), handle retries, timeouts, backoff, and circuit breakers.
• Implement secure JWT auth: access/refresh lifecycles, rotation, audience/issuer validation, revocation/blacklisting, and token storage best practices.
• Deliver payment integrations: integrate with gateways (e.g., Stripe/Adyen/Braintree), implement idempotent operations, handle captures/refunds/disputes, and reconcile via signed webhooks.
• Build and consume webhooks: define payload contracts, verify signatures/HMAC, ensure idempotency, and implement robust retry and DLQ strategies.
• Enable real-time features with WebSockets: use NestJS Gateways/Socket.IO or ws for presence, notifications, and fan-out at scale; secure and rate-limit connections.
• Use Redis/Valkey effectively: design cache keys/TTLs, apply cache-aside/write-through, implement distributed locks, queues/streams, pub/sub, and mitigate hot keys.
• Containerize and run locally: craft efficient multi-stage Docker builds, add healthchecks, and orchestrate multi-service dev stacks with docker-compose.
• Quality & reliability: write unit/integration/e2e tests (Jest/Supertest), add schema validation (class-validator/OpenAPI), and instrument with logs/metrics/traces.
• Collaborate across teams: review PRs, write concise design docs, and partner with product, frontend, and data to deliver measurable outcomes.
  
  

Requirements

• 8+ years building backend systems; 5+ years NestJS + TypeScript in production.
• Strong Docker and docker-compose skills (multi-stage builds, image slimming, healthchecks).
• Solid microservice design: domain boundaries, API versioning, idempotency, saga/choreography, and eventual consistency (outbox/inbox).
• Hands-on JWT implementation in distributed systems.
• Demonstrated payment experience (idempotency keys, reconciliation jobs) and webhooks (HMAC/signatures, replay protection, retries).
• Built and scaled WebSockets features in production.
• Proficiency with Redis/Valkey for caching and real-time patterns; strong SQL fundamentals (PostgreSQL/MySQL) and practical ORM experience (TypeORM/Prisma).
• Testing mindset with meaningful coverage and CI checks; working knowledge of security best practices (OWASP, secrets management, least privilege).
• Comfortable with telemetry (structured logs, metrics, tracing) and on-call ownership.
• Kong Gateway (or similar API gateway) for routing, auth, rate limiting, and observability.
• Kubernetes/Helm; service meshes (Istio/Linkerd).
• Event platforms (NATS/Kafka/RabbitMQ) and streaming patterns.
• GraphQL (Apollo/NestJS) including subscriptions.
  
  

We have an amazing team of 700+ individuals working on highly innovative enterprise projects & products. Our customer base includes Fortune 100 retail and CPG companies, leading store chains, fast-growth fintech, and multiple Silicon Valley startups.

What makes Confiz stand out is our focus on processes and culture. Confiz is ISO 9001:2015, 27001:2013 & 20000-1:2018 certified. We have a vibrant culture of learning via collaboration and making the workplace fun.

People who work with us work with cutting-edge technologies while contributing success to the company as well as to themselves.

To know more about Confiz Limited, visit: https://www.linkedin.com/company/confiz-pakistan/