Cloud DevOps Engineer

RiPSIM Technologies is hiring a Cloud DevOps Engineer to build, operate, and secure the AWS infrastructure supporting our regulated services platform. This is a hands-on individual contributor role.

The right candidate has spent their career as a cloud engineer with a security focus and is energized by small, fast-moving teams where individual contributions have visible impact. The work spans hands-on infrastructure engineering and security operations.

Responsibilities

• Design, deploy, and maintain Terraform modules across our AWS organization
• Develop and maintain serverless automation using AWS Lambda for security operations, monitoring, and compliance reporting
• Operate and harden Kubernetes workloads, including troubleshooting deployments and contributing to cluster security
• Build and maintain CI/CD pipeline security, including IaC scanning, SAST/DAST integration, and policy enforcement
• Operate cloud security tooling including monitoring, threat detection, vulnerability management, incident response, and log investigation
• Investigate and remediate security findings, including vulnerability remediation, configuration drift, and audit-identified gaps
• Review IAM policies, access controls, and configuration baselines across the AWS organization
• Execute recurring compliance activities including firewall reviews, certificate audits, vulnerability scans, and change management documentation
• Contribute to security documentation, including policies, procedures, standard operating procedures, and audit evidence
• Collaborate with cloud operations, security operations, and application support teams on cross-functional initiatives
• Contribute to architecture decisions and grow ownership of cloud security operations over time

Do you have experience in Vulnerability management?, * 4-7 years of operational cloud engineering experience, with the most recent 2+ years specifically in AWS production environments

• Hands-on Terraform development experience, including writing and maintaining modules across cloud environments
• Kubernetes and/or ECS experience, including deployment, security hardening, and troubleshooting
• Working knowledge of AWS networking and firewall concepts, including VPCs, security groups, NACLs, and route tables
• Demonstrable security focus: IAM governance, encryption at rest and in transit, certificate lifecycle management, security automation, vulnerability management and remediation, CI/CD pipeline security
• Hands-on experience contributing to security and compliance work, including documentation, control implementation, or audit evidence production
• Proficiency in Python and Bash scripting
• U.S. Citizenship required

Preferred Background

• Prior experience at a startup or midsize company, where engineers wear multiple hats and operate with broad scope
• Designed and implemented security controls in highly regulated environments
• Designed and implemented cryptographic key management and PKI infrastructure
• Designed and implemented network and firewall architectures, including AWS security groups, NACLs, VPC architecture, and network segmentation
• Designed and implemented managed message broker deployments such as Amazon MQ (RabbitMQ), Kafka, or equivalent
• Designed and implemented secure managed database deployments (RDS, Aurora, or equivalent)
• Designed and implemented log investigation and observability pipelines (Elasticsearch, Kibana, Graylog, Splunk, or equivalent)
• Hands-on security and compliance remediation experience, including closing audit findings, remediating vulnerability scan results, and tracking corrective actions through resolution
• Experience gathering, organizing, and presenting audit evidence for compliance assessments and external auditors
• Prior work in telecommunications, financial services, healthcare, or government sectors
• Familiarity with compliance frameworks such as ISO 27001, SOC 2, or NIST 800-53
• Active or recent federal clearance is a plus, but not required
• Demonstrated commitment to professional development through certifications, advanced training, or continued education in cloud security domains

Pulled from the full job description

• 401(k)
• Health insurance
• 401(k) matching
• Paid time off
• Vision insurance
• Dental insurance
• Life insurance, * 401(k)
• 401(k) matching
• Dental insurance
• Flexible schedule
• Health insurance
• Life insurance
• Paid time off
• Vision insurance