Join us | Jobs & Careers | Thinslices

DevOps Engineer (senior)

Written by Paula Cristea | Sep 15, 2025 7:46:13 AM

We’re looking for a Senior DevOps Engineer who can take ownership of our AWS infrastructure and make it reliable, predictable, and easy to operate. Our systems run on ECS/Fargate with CDK-managed and manually-provisioned resources. Today, spinning up new environments is slow and error-prone, and our networking setup is overly complex. We need someone who can stabilize what exists, simplify it where possible, and set the foundation for long-term scalability.

This role is hands-on: understanding our current state, reducing complexity, improving CI/CD, fixing networking pain points, and building proper visibility into production.

This is not about over‑engineering. We need someone who can make things reliable, secure, and easy to operate at scale. If you enjoy bringing order to complex cloud estates and making production environments secure, observable, and predictable, we’d love to hear from you.

Responsibilities

  • Understand and document the current AWS landscape (multi-account, VPCs, networking, ECS/Fargate, CDK stacks, and the manually-created pieces we rely on).
  • Untangle and simplify networking (VPCs, transit configuration, DNS, TLS/mTLS, routing issues, and environment-to-environment connectivity).
  • Standardize our infrastructure using CDK and remove manual snowflake resources where possible.
  • Fix CI/CD pipelines (GitHub Actions), including environment-specific workflows, deployment rules, secrets management, and automated promos.
  • Improve environment creation so new dev/stage/test environments can be brought up consistently and without manual chaos.
  • Harden AWS security (IAM, S3 policies, encryption, CloudTrail, Security Hub, least privilege).
  • Improve observability with CloudWatch: logs, metrics, alarms, dashboards, runbooks, and rollback strategies.
  • Support developers by ensuring ECS/Fargate deployments, Lambdas, and networking don’t get in their way.
  • Continuously optimize cost, performance, and resiliency—and keep documentation up to date.

Knowledge and skills

  • Strong AWS experience, particularly with:

    • VPC, routing, TGW, Cloud WAN

    • IAM + SSO (Identity Center)

    • ECS/Fargate

    • S3, CloudFront, Lambda

    • CloudWatch, CloudTrail, Security Hub

  • Experience fixing and simplifying messy, partially-manual, partially-CDK infrastructure.

  • Solid understanding of production networking (site-to-site VPN, DNS, TLS).

  • Strong Infrastructure-as-Code skills with AWS CDK (modular design, environment isolation).

  • Practical CI/CD experience with GitHub Actions (policies, secrets, approvals, automated deploys).

  • Ability to produce clear documentation: diagrams, runbooks, and ownership models.

  • A pragmatic engineer who prefers stability and maintainability over fancy tools.

  • Strong English communication skills.

Nice to have

  • Azure & Microsoft ecosystem via Terraform (Azure provider): Azure AD/Entra ID, Intune, Conditional Access, Microsoft Sentinel, SharePoint.

  • Terraform GitHub Provider for repo/organization governance and automation.

  • Automated compliance: CIS Benchmarks, OWASP SAMM, ISO 27001 control implementation, secret scanning, SBOM generation.

  • Containers & platforms: Docker; Helm/Kustomize; GitOps tools (Flux or Argo CD); service mesh and networking (Istio, Cilium, eBPF); Kubernetes security contexts.
View full post