Sr AWS and Infrastructure Engineer

About The Position

Requirements

• 8+ years of infrastructure engineering/operations experience, with 5+ years delivering and operating AWS production environments at scale.
• Expert-level understanding of AWS services and architecture patterns, including EC2, EBS, S3, VPC, IAM, CloudWatch, CloudTrail, load balancing, and scaling strategies.
• Deep Linux and Windows engineering expertise in cloud environments (hardening standards, patching strategy, automation, performance tuning, troubleshooting at scale).
• Expert-level IaC capability using Terraform and/or CloudFormation, including reusable frameworks, module design, version control, CI validation, and drift/compliance management.
• Advanced AWS networking design expertise: VPC architecture, routing, segmentation, NACL/security posture, VPN/Direct Connect, DNS fundamentals, and traffic management patterns.
• Security engineering depth: IAM design patterns, KMS/encryption strategy, audit logging, secure baselines, threat detection integration, and compliance control implementation.
• Strong observability and reliability engineering skills: monitoring strategy, alert design, log/metric correlation, SLO/SLA awareness, and operational readiness practices.
• Advanced automation/scripting proficiency (Python/Bash/PowerShell), with ability to build operational tooling and integrate automation into pipelines and runbooks.
• Ability to influence and communicate effectively with senior stakeholders, including translating complex technical risk/decisions into clear options and recommendations.
• Bachelor’s degree in Computer Science / IT / Engineering (or equivalent practical experience).
• AWS Professional-level certification required: AWS Certified Solutions Architect – Professional and/or AWS Certified DevOps Engineer – Professional (or equivalent expertise)

Nice To Haves

• Enterprise AWS connectivity and multi-account design: Transit Gateway, Direct Connect, VPC endpoints/PrivateLink, landing zones, cross-account IAM and governance.
• Strong AWS Systems Manager expertise (Automation, Patch Manager, Session Manager, Run Command, Inventory, Parameter Store) and standard runbook automation.
• Security services experience: GuardDuty, Security Hub, AWS Config, AWS Shield; familiarity with vulnerability management and compliance reporting.
• Experience operating regulated environments and implementing policy-as-code / guardrails at scale.
• Experience with AWS-managed databases (RDS/Aurora/DynamoDB) including availability, monitoring, backups, and performance troubleshooting.
• Strong CI/CD and GitOps maturity, including pipeline guardrails, change governance, and promotion strategies across environments.
• FinOps maturity exposure: chargeback/showback inputs, cost governance, savings tracking, and continuous optimization operating model.

Responsibilities

• Define and own the target-state AWS infrastructure architecture and operational standards for production environments, ensuring scalability, resilience, security, and alignment to business objectives.
• Act as the technical authority for Linux and Windows OS engineering on AWS, driving platform stability through proactive improvements, advanced troubleshooting, and performance tuning across complex environments.
• Establish enterprise-grade Infrastructure as Code (IaC) frameworks, reusable patterns, and governance using Terraform and/or CloudFormation; review and approve infrastructure changes for quality and risk.
• Lead security architecture and compliance implementation across IAM strategy, network segmentation, encryption/KMS, centralized logging/auditing, and continuous control validation in partnership with security and risk teams.
• Drive performance engineering and cost optimization strategy across AWS workloads, including right-sizing, scaling design, storage optimization, lifecycle policies, and standard optimization playbooks.
• Own DR/BCP architecture and readiness, including RTO/RPO definition support, recovery designs, runbooks, testing cadence, and continuous improvements based on lessons learned.
• Enable mature CI/CD and deployment practices by integrating infrastructure and platform controls with pipelines (CodePipeline/CodeDeploy and/or Jenkins/GitLab), including guardrails, policy-as-code, and release governance.
• Lead major incident and problem management for cloud infrastructure, providing deep technical leadership during outages, ensuring high-quality RCAs, and driving corrective/preventive actions and reliability improvements.
• Provide technical leadership across teams: mentor L1–L3 engineers, conduct design reviews, contribute to hiring/upskilling, and promote best practices and standardization.
• Maintain high-quality documentation and reference architectures, including standards, blueprints, operational procedures, and knowledge base articles.

Benefits

• unlimited paid time off
• a 401(k) plan
• comprehensive healthcare
• HSA matching
• ongoing learning opportunities