DevOps Engineer

Role: Senior Infrastructure Engineer \[with Kubernetes \& Terraform]. Type: Remote working EST hours. Must be eligible for Secret Security Clearance. **Job Overview** We are seeking a Senior Infrastructure Engineer with a deep specialization in Security Design to lead the evolution of our cloud\-native ecosystem. In this role, you will be responsible for architecting, building, and maintaining highly available AWS infrastructure while ensuring that security is not an afterthought, but a core component of the design. You will bridge the gap between systems engineering and cyber defense, building resilient platforms that are "secure by design." Key Responsibilities * **Infrastructure Security Architecture:** Lead the design and implementation of secure AWS infrastructure, ensuring VPC patterns, peering, and transit gateways follow strict security segmentation. * **Kubernetes Platform Engineering:** Architect and manage production\-grade EKS clusters using Docker and Kubernetes, implementing advanced security controls including OPA/Gatekeeper and workload identity. * **CI/CD Automation:** Design and maintain secure automation pipelines using **GitHub Actions** , ensuring security checks are integrated into the deployment lifecycle. * **Automated Security Infrastructure:** Build and maintain central identity and access systems using **Keycloak** , integrating OIDC/OAuth and LDAP across the enterprise. * **Security as Code:** Develop modular, reusable **Terraform** templates and **YAML** configurations that incorporate automated compliance checks and security best practices. * **Data \& Secret Protection:** Manage and secure **Postgres DB** instances, including encryption strategies and secret management workflows (AWS KMS) to ensure zero\-trust data handling. * **Defensive Automation:** Develop custom **Python** \-based tooling to automate infrastructure audits, remediation of drift, and security response workflows. Must\-Have Qualifications * 10\+ years in Infrastructure or Systems Engineering with a proven track record of designing secure large\-scale environments. * Expert\-level mastery of **AWS** , **Kubernetes** , and **Docker** . * **Mandatory proficiency in Python** for infrastructure automation and security tool development. * Hands\-on experience building and managing pipelines with **GitHub Actions** . * Expert\-level **Terraform** experience and mastery of **YAML** for configuration management. * Practical experience designing and deploying **Keycloak** and OIDC/OAuth protocols. * Experience managing and securing **Postgres** relational databases. Nice to Have * **Alternative Tools:** Experience with Jenkins, Azure DevOps (ADO), or Ruby scripting. * **Shell Scripting:** Proficiency in Bash or Shell for system\-level maintenance. * **Certifications:** AWS Certified Solutions Architect or AWS Certified Security \- Specialty. * **Regulatory Knowledge:** Experience designing for compliance frameworks such as SOC2, ISO 27001, or NIST. **Use of Artificial Intelligence in Hiring** The Company may use artificial intelligence (AI) enabled tools to assist with certain aspects of the recruitment process, such as resume screening and candidate matching. All employment decisions are made by human reviewers. The Company uses AI responsibly and in compliance with applicable employment, privacy, data protection, and human rights laws of Ontario.