Senior AWS DevOps Engineer with Terraform and Kubernetes, Cloud Platform Core

Project overview

The Cloud Platform Core project delivers shared AWS and Kubernetes infrastructure used by multiple product and data teams worldwide. The platform underpins consumer facing digital products, internal data platforms, and supply chain systems, with a strong focus on reliability, scalability, security, and compliance.

Team

You will work as part of a globally distributed Cloud Platform team made up of DevOps and Platform Engineers. The team collaborates closely with product engineering, data, and security teams, using shared ownership, architecture reviews, and well defined standards to support multiple delivery teams.

Position overview

We are looking for a Senior AWS DevOps Engineer to design, build, and operate enterprise grade AWS infrastructure that supports critical digital platforms. You will take ownership of architectural decisions, improve infrastructure as code maturity, and help define how cloud platforms are built and operated at scale within a global engineering organisation.

Technology stack

AWS, AWS Organizations, Amazon EKS, Terraform Enterprise, GitHub Actions, Argo CD, Flux, Kubernetes, Karpenter, Prometheus, Grafana, OpenSearch, AWS Lambda, AWS IAM, AWS Secrets Manager, HashiCorp Vault, Amazon VPC, Transit Gateway, Route 53, ACM

Responsibilities

• Design and operate production AWS infrastructure using Terraform Enterprise, including multi account setups, remote state management, reusable module libraries, and policy enforcement aligned with global compliance requirements

• Own the full lifecycle of Amazon EKS clusters, including cluster provisioning, autoscaling strategies, security configuration, networking, upgrades, and add on management

• Design and maintain CI CD pipelines using GitHub Actions and GitOps tooling to support secure and auditable deployments for multiple engineering teams

• Develop automation using AWS Lambda and supporting scripts to improve platform reliability and operational efficiency

• Implement and maintain observability solutions for metrics, logging, and tracing, providing clear SLO and SLA visibility

• Apply security by design practices including IAM least privilege, secrets management, network segmentation, and continuous security monitoring

• Contribute to cloud cost governance through tagging strategies, cost allocation, and optimisation initiatives

• Mentor engineers, participate in architecture reviews, and contribute to internal standards, runbooks, and documentation

Requirements

• At least five years of experience in DevOps, Platform Engineering, or Cloud Infrastructure roles

• At least three years of hands on experience operating production workloads on AWS at enterprise scale

• Strong experience with Terraform, including module design, state management with S3 and DynamoDB locking, and multi environment strategies

• Hands on experience operating Amazon EKS beyond initial deployment, including networking, autoscaling, security standards, and stateful workloads

• Solid understanding of Kubernetes internals such as scheduling, RBAC, network policies, CRDs, autoscaling mechanisms, and resource management

• Experience with Python and or Bash for infrastructure automation and operational tooling

• Strong knowledge of AWS networking including VPC design, Transit Gateway, PrivateLink, Route 53, ACM, and cross account connectivity

• Experience working in regulated enterprise environments with change management and audit requirements

• Ability to communicate technical decisions clearly in English to both technical and non technical stakeholders

Nice to have

• Experience with GitOps tools such as Argo CD or Flux in multi cluster environments

• Familiarity with Crossplane or AWS service provisioning frameworks

What We Offer:

• Vacation days: Up to 26 business days per year.

• 10 illness/special days off per year (fully paid, no medical papers needed) for all contract types

• Health and life insurance (Luxmed)

• MyBenefit platform with Multisport option

• Internal psychological support service

• English language classes from the first working day

• Access to external learning platforms: O’Reilly, LinkedIn Learning, Udemy, and a wide catalog of diverse internal training

• Flexible workplace: work from the office, from home, or choose a hybrid option

• Tech Skills Mentoring Program

• Opportunities to develop as a public speaker, mentor, or technical interviewer

• Fully paid idle (bench) when not involved in a project

• Certification reimbursement (AWS, GCP, Microsoft, etc.)