Senior Cloud Infrastructure Engineer

Support a major client in building and hardening a secure, compliant, and scalable AWS-based infrastructure for an OpenSearch-driven AI semantic platform. Working closely with the AI Platform Engineering team, you will be responsible for designing the VPC architecture, managing complex IAM/KMS configurations, and ensuring that the entire environment is reproducible and production-ready.

Details

• Start Date: ASAP.

• Duration: longterm

• Location: 100% Remote.

• Project Language: English.

Responsibilities

• Infrastructure Hardening: Provision and secure an AWS environment specifically tailored for an OpenSearch-centric AI platform.

• IaC & Automation: Build compliant and reproducible deployments using Terraform and GitLab CI/CD pipelines.

• Network & Security: Design VPC architecture (subnetting, routing, NAT) and manage IAM roles, permission boundaries, and Security Groups.

• Encryption & Compliance: Oversee KMS key management, including rotation, access, and encryption policies.

• Observability: Implement comprehensive monitoring, logging, and auditing strategies using CloudWatch and CloudTrail.

• Reliability: Design and maintain backup and disaster recovery strategies for OpenSearch and containerized workloads.

• Orchestration: Deploy and manage applications on ECS (preferred) or EKS.

Requirements

• AWS Expertise: 5+ years of hands-on infrastructure engineering (VPC, IAM, KMS).

• OpenSearch: Proven expertise in provisioning and securing OpenSearch domains.

• Tooling: Mandatory experience with Terraform and GitLab CI/CD.

• Containers: Hands-on experience with ECS or EKS.

• Monitoring: Strong knowledge of AWS logging/auditing (CloudWatch, CloudTrail, audit logs).

Nice to Have

• Experience with OAuth2 / OIDC authentication flows.

• Knowledge of cloud cost governance and tagging standards.

• Familiarity with vulnerability management and cloud security best practices.