Senior DevOps Engineer

Role Summary: We’re hiring a Senior DevOps Engineer to own and continuously improve our CI/CD and developer enablement experience on an AWS-first, serverless platform. You’ll build reliable and secure deployment pipelines in GitHub Actions, improve automation testing workflows and reporting, strengthen observability and cost visibility, and provide pragmatic platform support (DNS/hosting) while maintaining a strong security posture (IAM, access controls, guardrails).

About you: You should be a clear communicator who partners well with product engineers. You are automation-first, pragmatic, and metrics driven. You prefer paved roads over bespoke fixes – someone who is happy documenting decisions and patterns for re-use.

Key Responsibilities

CI/CD Ownership

Own end-to-end CI/CD pipelines and release workflows across service using GitHub actions

Drive improvement of pipeline speed, reliability, repeatability, and deployment safety (environmental promotion, approvals, rollback)

Build and maintain reusable pipeline components (shared workflows, actions, templates) to standardize delivery

Developer Experience & test automation enablement

Improve developer workflow efficiency through automation, self-service tooling, and documented “golden paths”

Partner with engineers to support and evolve automated testing, including test execution, reporting, and feedback loops

Reduce developer toil by eliminating manual steps and improving failure diagnostics (faster root cause, clearer logs)

Observability, metrics, and cost reporting

Own platform observability strategy for serverless workloads: logging, metrics, alerting, dashboards, and traces (where relevant)

Establish and maintain operational KPIs (pipeline health, deploy success, reliability, MTTR)

Deliver cost visibility and reporting (FinOps-style): trends, key drivers, optimization opportunities, and budgeting support

Platform support (as needed)

Provide support for website hosting patterns and operational needs (as applicable)

Own/assist with domain management and DNS changes (safe change process, documentation, access controls)

Platform security & IAM

Own and improve IAM configuration and access patterns (least privilege, role design, secure defaults)

Embed security controls into CI/CD (secrets handling, permissions, pipeline hardening, scanning where applicable)

Maintain security posture and guardrails across AWS (and the smaller Azure footprint where relevant)

Collaboration & operational intelligence

Participate in incident response and follow-through (postmortems, preventative actions)

Document standards, runbooks, and platform patterns; mentor engineers on best practices

Qualifications

Deep hands-on AWS experience, including security fundamentals (IAM, networking basics, logging/monitoring)

Strong CI/CD and release engineering experience, specifically GitHub actions

Strong Infrastructure-as-code experience (Terraform required, CloudFormation strongly preferred)

Practical experience supporting serverless systems in production (AWS Lambda + event-driven AWS services)

Experience with observability (dashboards, alerting, metrics/logging) and operational response

Ability to own and improve developer experience (tooling mindset, empathy for dev workflows, automation-first)

Strong scripting/automation skills (Bash + Python or Go)

Azure experience as above

AWS Certification/s (e.g. AWS Certified Solutions Architect)

Integration of Generative AI service (e.g. AWS Bedrock, OpenSearch, etc.)

Advanced observability practices (OpenTelemetry, tracing, SLO/SLI design)

Cost optimization experience in serverless environments (Lambda tuning, DynamoDB patterns, log volume control)

Security tooling in CI/CD (dependency scanning, SBOMs, artifact signing/provenance)