Senior Cloud Infrastructure Engineer

Support a major client in building and hardening a secure, compliant, and scalable AWS-based infrastructure for an OpenSearch-driven AI semantic platform. Working closely with the AI Platform Engineering team, you will be responsible for designing the VPC architecture, managing complex IAM/KMS configurations, and ensuring that the entire environment is reproducible and production-ready. Details • Start Date: ASAP. • Duration: longterm • Location: 100% Remote. • Project Language: English. Responsibilities • Infrastructure Hardening: Provision and secure an AWS environment specifically tailored for an OpenSearch-centric AI platform. • IaC & Automation: Build compliant and reproducible deployments using Terraform and GitLab CI/CD pipelines. • Network & Security: Design VPC architecture (subnetting, routing, NAT) and manage IAM roles, permission boundaries, and Security Groups. • Encryption & Compliance: Oversee KMS key management, including rotation, access, and encryption policies. • Observability: Implement comprehensive monitoring, logging, and auditing strategies using CloudWatch and CloudTrail. • Reliability: Design and maintain backup and disaster recovery strategies for OpenSearch and containerized workloads. • Orchestration: Deploy and manage applications on ECS (preferred) or EKS. Requirements • AWS Expertise: 5+ years of hands-on infrastructure engineering (VPC, IAM, KMS). • OpenSearch: Proven expertise in provisioning and securing OpenSearch domains. • Tooling: Mandatory experience with Terraform and GitLab CI/CD. • Containers: Hands-on experience with ECS or EKS. • Monitoring: Strong knowledge of AWS logging/auditing (CloudWatch, CloudTrail, audit logs). Nice to Have • Experience with OAuth2 / OIDC authentication flows. • Knowledge of cloud cost governance and tagging standards. • Familiarity with vulnerability management and cloud security best practices.