Systems Engineer - AWS Infrastructure, IAM...

We're seeking a Systems Engineer with deep experience in AWS infrastructure and a strong focus on identity and access management (IAM) and DevOps automation. In this role, you will design, build, secure, and automate cloud infrastructure across services such as S3, EC2, Lambda, and Elastic Beanstalk, while driving operational excellence through Infrastructure as Code (IaC), CI/CD, monitoring, and reliability best practices.

You'll partner closely with application teams, security, and platform engineering to deliver scalable, secure, and repeatable AWS environments that support modern delivery and operational needs.

This is a hybrid role in Cincinnati, OH - 3 days onsite one week, 2 days onsite the next.

AWS Infrastructure & Operations

Design, deploy, and manage AWS infrastructure leveraging S3, EC2, Lambda, Elastic Beanstalk, and supporting services (e.g., VPC, CloudWatch, CloudTrail, ALB/ELB, Route 53 as applicable).

Maintain and improve environment stability, scalability, and cost efficiency through proactive performance tuning and FinOps-minded practices.

Troubleshoot complex infrastructure and application deployment issues; perform root-cause analysis and implement preventative measures.

IAM, Security & Governance

Architect and manage IAM roles, policies, permission boundaries, and service roles using least-privilege principles.

Implement identity patterns for workloads (e.g., role-based access, temporary credentials, policy standardization).

Support security controls, auditing, and compliance through logging, monitoring, and policy guardrails (e.g., CloudTrail, Config, access reviews).

DevOps Automation & Infrastructure as Code

Build and maintain IaC using Terraform and/or AWS CloudFormation, ensuring repeatable, version-controlled infrastructure.

Develop and maintain CI/CD pipelines (e.g., GitHub Actions, Jenkins, GitLab CI, AWS CodePipeline/CodeBuild) to automate builds, deployments, and infrastructure changes.

Automate operational workflows (patching, backups, provisioning, environment promotion) using scripting (Python/Bash) and AWS automation services.

Observability & Reliability

Implement robust monitoring, alerting, and dashboards using CloudWatch, log aggregation, and APM tools as applicable.

Improve operational readiness with runbooks, incident response procedures, and SRE-style practices (SLOs/SLIs where appropriate).

Participate in an on-call rotation (if applicable) and drive continuous improvement post-incident.

3+ years experience supporting production infrastructure in AWS (or equivalent cloud with strong AWS hands-on).

Strong working knowledge of:

S3 (policies, encryption, lifecycle rules, access controls)

EC2 (AMIs, autoscaling, security groups, EBS, patching strategies)

Lambda (deployments, permissions, triggers, monitoring)

Elastic Beanstalk (environment management, deployment strategies, scaling)

IAM (roles, policies, trust relationships, least privilege)

Proven experience with Infrastructure as Code (Terraform and/or CloudFormation).

Experience building or supporting CI/CD pipelines and automated deployment workflows.

Proficiency with Linux fundamentals and scripting/automation (Python and/or Bash).

Familiarity with networking concepts (VPCs, subnets, routing, DNS, load balancing). AWS certifications (one or more): Solutions Architect, SysOps Administrator, DevOps Engineer.

Experience with containers and orchestration (ECS/EKS, Docker) and/or serverless frameworks.

Familiarity with secrets management (AWS Secrets Manager / Parameter Store) and KMS encryption patterns.

Experience with configuration management tooling (Ansible, Chef, Puppet) and/or golden image pipelines.

Exposure to governance tooling and controls (AWS Config, SCPs/Organizations, security posture tools).

Understanding of cost optimization practices (rightsizing, reserved instances/savings plans, storage tiering).