• Manage and improve CDN configuration including caching rules, redirects, and traffic routing across a globally distributed edge • Triage CDN related production issues through log analysis and performance investigations for high traffic events • Review merge requests from product and platform engineering teams and advise on cache behavior and edge performance • Build and maintain CI CD pipelines in GitLab CI for safely delivering CDN configuration changes • Partner with development teams across US and EU time zones to onboard new services behind the CDN • Maintain documentation, runbooks, and operational procedures while contributing to monitoring and alerting on edge traffic

• Platform & Infrastructure: Design, build, and maintain cloud infrastructure using infrastructure-as-code (Terraform) on GCP • Manage and evolve our Kubernetes platform, including cluster operations, workload configuration, and service mesh (Istio) • Develop and improve internal tooling that abstracts cloud complexity and improves the developer experience • Collaborate with product engineering teams to understand service deployment needs and deliver infrastructure solutions • Reliability & Observability: Monitor platform health using Datadog; proactively identify and resolve performance, availability, and security issues • Participate in on-call rotation and incident response; drive blameless post-mortems and eliminate recurring issues at their root cause • Define and track service-level indicators and objectives (SLIs/SLOs) for critical platform components • Implement and refine alerting, dashboards, and runbooks that reduce mean time to resolution • Security & Compliance: Embed security best practices into infrastructure workflows (DevSecOps) — not as an afterthought, but as a design principle • Help maintain cloud security posture, IAM hygiene, and policy guardrails across our cloud environment • Stay current with cloud security developments and proactively surface risks to the team • Execute and maintain our automated disaster recovery processes • Collaboration & Growth: Work closely with product engineering teams to understand their needs and remove infrastructure friction • Document systems, processes, and architectural decisions clearly so knowledge is shared, not siloed • Recommend improvements to tooling, architecture, and processes — and help drive them to completion • Keep current with the evolving cloud-native ecosystem and bring relevant knowledge back to the team

Role Description We're looking for a DevOps Engineer to own the day-to-day health of our AWS infrastructure; keeping it secure, reliable, cost-efficient, and ready to scale. Our platform handles sensitive financial data for some of the largest industrial operators in North America. The security and reliability bar is high, and we need someone who treats it that way, not as paperwork, but as core craft. This isn't a role where you'll need to invent a brand-new platform from scratch. We need someone dependable who can step into our AWS environment, understand it quickly, keep it healthy, and make it better week over week. When the infrastructure is humming, we want someone who can roll up their sleeves and contribute to product code, internal tooling, or automation projects. That cross-functional ability is a real asset on a small team. Qualifications - 3+ years of professional DevOps, SRE, or Cloud Engineering experience - Strong hands-on AWS experience - Strong security knowledge and instincts - Comfortable with Linux, shell scripting, and at least one general-purpose programming language (Python, Node.js, PHP, Go, or similar) - Experience with Infrastructure as Code (Terraform, CloudFormation, or CDK) - Experience with CI/CD tooling - Familiarity with relational databases (MySQL preferred) - Solid communication skills Requirements - Operate, maintain, and improve our AWS environment (EC2, RDS, S3, Lambda, ALB, Auto Scaling, Route 53, CloudWatch, and the rest) - Manage IAM policies, roles, and access boundaries with care - Monitor performance, reliability, and cost; surface and act on issues before they become problems - Build and maintain Infrastructure as Code (Terraform, CloudFormation, or CDK) - Own backup, disaster recovery, and incident response procedures - Apply AWS security best practices end-to-end - Review and harden the environment against common threats - Maintain audit logging and observability - Respond to security questionnaires, vendor reviews, and customer compliance requests - Stay current on AWS security advisories and apply patches and mitigations promptly - Maintain and improve our build, test, and deployment pipelines - Support our production MySQL databases: backups, monitoring, query performance, schema migrations - When DevOps work is light, contribute to product code, internal tools, or automation projects - Work closely with our Engineering Lead and the rest of the engineering team - Participate in code reviews, technical discussions, and knowledge sharing - Communicate progress, blockers, and recommendations clearly and early Benefits - Meaningful stock options - Excellent medical, dental, and vision plans - Real autonomy and real accountability - New MacBook and accessories

• Operate production environments with a "security-first" mindset, monitoring both availability and potential threats. • Build and maintain secure IaC to manage platform scaling and consistency. • Ensure the success of security audits through automated compliance checks and rigorous evidence collection. • Bridge the gap between development, security, and operations to foster a robust DevSecOps culture within the wider Engineering department. • Manage core AWS services (EKS, RDS, S3, Lambda) with a focus on encryption, least-privilege access, and service reliability. • Develop and refine strategies for monitoring system health and security events using tools like OpenSearch, Prometheus, and Grafana. • Ensure all AWS environments meet relevant security standards. Implement and monitor "Policy as Code" using Terraform to automate audit-readiness. • Maintain configurations for automation tools, secure deployments, and vulnerability scans. Work with standardized SDLC tools to ensure consistent delivery to production. • Work closely with the teams and Software Engineers to ensure application deployments are successful, working as intended, and compliant with security standards. • Provide leadership and guidance on secure infrastructure practices to other Software Engineers across the organization. • Responding to operational incidents when necessary. We aim to minimize unnecessary paging and build fault-tolerant systems that reduce operational load.