AWS DevOps Engineer

About the employer:

 Our Client ranks at the top of the leading companies providing services at the highest level, allowing us to build modern and efficient businesses. The client's objective is to change business operational and technological models and adapt them to a rapidly changing world.

Responsibilities:

• maintain and optimize core AWS infrastructure services such as EC2, EKS, ECR, S3, KMS, VPC, CloudWatch, and SageMaker,

• configure and manage VPC networking elements, including security groups, subnets, and transit gateways, to ensure secure and efficient connectivity,

• design and operate highly available Kafka clusters, including data replication across environments using tools like MirrorMaker,

• implement secure Kafka communication using TLS/SSL mutual authentication and encrypted channels,

• build and maintain Infrastructure as Code using Terraform, with a focus on modular and reusable AWS resource configurations,

• manage container-based workloads within Kubernetes (EKS) and work with Istio for service mesh integration and troubleshooting,

• oversee Docker image lifecycle in ECR, including optimization and security,

• develop and maintain CI/CD pipelines using Jenkins, ArgoCD, and other automation tools to support smooth deployments,

• set up and monitor observability stacks using AWS CloudWatch and Datadog, including alerting and logging systems for operational visibility,

• enforce high security standards by managing encryption keys with KMS, implementing auditing systems, and supporting internal security assessments,

• collaborate on access control policies and solutions, including mutual TLS, external authorization, and fine-grained AuthZ for secure service communication.

Requirements:

• proven experience with AWS services and infrastructure management, particularly EC2, EKS, VPC, S3, KMS, and CloudWatch,

• solid hands-on experience managing Kafka clusters in production, including cross-region replication and securing communication channels,

• proficiency with Terraform for defining infrastructure as code and building scalable, reusable modules,

• experience working with Kubernetes (EKS), including service mesh solutions such as Istio,

• familiarity with CI/CD tools like Jenkins and ArgoCD for automated delivery processes,

• strong knowledge of logging, monitoring, and alerting practices using CloudWatch and Datadog,

• understanding of cloud security principles, including encryption, key management (KMS), and access control best practices,

• experience implementing authentication and authorization frameworks (e.g., mTLS, external authorization filters, fine-grained policies),

• ability to work on complex, security-sensitive environments with a focus on compliance, reliability, and performance,

• strong communication skills and the ability to collaborate across engineering and security teams.

Our client offers:

• contract of employment (with additional life insurance, private healthcare with dental care, multisport card, my benefit platform, technical and language courses),
• B2B contract,
• remote work model,
• the comprehensive training program and development opportunities.