Cloud Engineer

Job Title:

Location:

Role Overview

As an AWS DevOps Engineer, you’ll own the end-to-end infrastructure lifecycle—from adhering to the design provided by architect and provisioning through deployment, monitoring, and optimization. You’ll collaborate closely with development teams to implement Infrastructure as Code, build robust CI/CD pipelines, enforce security and compliance guardrails, and integrate next-gen tools like Google Gemini/Copilot for automated code-quality and security checks.

Summary

DevOps Engineer with 4 - 6 years of experience in AWS infrastructure, CI/CD, and IaC, capable of designing secure, production-grade systems with zero-downtime deployments. The ideal candidate excels in automation, observability, and compliance within a collaborative engineering environment.

Top Preferred Technologies:

1. Terraform

   – core IaC tool for modular infrastructure design

2. Amazon EKS

   – container orchestration and deployment

3. Minikube / K3s

   – Similar dev configuration to mimic production

4. Helm

   – Application configuration within EKS with Helm Charts

5. Istio /Consul / Trafik

   – Tools to Strategize different deployment strategies

6. GitHub Actions / AWS CodePipeline + CodeBuild

   – modern CI/CD pipelines

7. Amazon CloudWatch

   – observability, custom metrics, and centralized logging

8. IAM, KMS & GuardDuty

   – for access control, encryption, and threat detection

9. SSM Parameter Store

   – for secure config and secret management

10. Python / Bash / Node.js

    – for scripting, automation, and Lambda integration

11. Gemini / Foundation models

    – Inference and hosting in AWS

Key Responsibilities

• Infrastructure as Code (IaC):

• Design, build, and maintain Terraform (or CloudFormation) modules for VPCs, EKS clusters, RDS, ElastiCache, S3, IAM, KMS, and networking across multiple Availability Zones.

• Produce clear architecture diagrams (Mermaid or draw.io) and documentation.

• CI/CD Pipeline Development:

• Implement GitHub Actions or AWS CodePipeline/CodeBuild workflows to run linting, unit tests, Terraform validation, Docker builds, and automated deployments (zero-downtime rolling updates) to ECS/EKS.

• Integrate unit tests (Jest, pytest) and configuration-driven services (SSM Parameter Store).

• Monitoring & Alerting:

• Define custom CloudWatch metrics (latency, error rates), create dashboards, and centralize application logs in CloudWatch Logs with structured outputs and PII filtration.

• Implement CloudWatch Alarms with SNS notifications for key thresholds (CPU, replica lag, 5xx errors).

• Security & Compliance:

• Enable and configure GuardDuty and AWS Config rules (e.g., public-CIDR security groups, unencrypted S3 or RDS).

• Enforce least-privilege IAM policies, key-management with KMS, and secure secret storage in SSM Parameter Store.

• Innovative Tooling Integration:

• Integrate Google Gemini / Copilot (or similar) into the CI pipeline for automated Terraform security scans and generation of actionable “security reports” as PR comments.

• Documentation & Collaboration:

• Maintain clear README files, module documentation, and step-by-step deployment guides.

• Participate in code reviews, design discussions, and post-mortems to continuously improve our DevOps practices.

Required Qualifications

• Experience:

• 3+ years in AWS DevOps or Site Reliability Engineering roles, designing and operating production-grade cloud infrastructure.

• Technical Skills:

• Terraform

  (preferred) or CloudFormation for IaC.

• Container orchestration:

  EKS with zero-downtime deployments. Minikube or K3S or similar dev env orchestrator.

• CI/CD:

  GitHub Actions, AWS CodePipeline, and CodeBuild (linting, testing, Docker, Terraform).

• Monitoring:

  CloudWatch Dashboards, custom metrics, log centralization, and alarm configurations.

• Security & Compliance:

  IAM policy design, KMS, GuardDuty, AWS Config, SSM Parameter Store.

• Scripting:

  Python, Bash, or Node.js for automation and Lambda functions.

• Soft Skills:

• Strong problem-solving mindset and attention to detail.

• Excellent written and verbal communication for documentation and cross-team collaboration.
• Ability to own projects end-to-end and deliver under tight timelines.

Preferred Qualifications

• Hands-on experience integrating third-party security or code-analysis APIs (e.g., Google Gemini, Prisma Cloud).
• Familiarity with monitoring and observability best practices, including custom metric creation.
• Exposure to multi-cloud environments or hybrid cloud architectures.
• Certification: AWS Certified DevOps Engineer – Professional or AWS Certified Solutions Architect – Associate.