DevOps Architect

Lead DevOps transformation and platform engineering for enterprise clients: design and implement CI/CD platforms, Kubernetes/EKS infrastructure, IaC (Terraform/CloudFormation/CDK), observability, and DevSecOps integrations; mentor client teams, run workshops, troubleshoot pipelines, and ensure reliability, security, and compliance., Effectual Senior DevOps Architects are responsible for technical leadership of Professional Services projects. They partner with Engagement Managers (EMs) to deliver an exceptional customer and delivery team experience. Effectual DevOps Architects are "Brand Ambassadors" and are expected to demonstrate Effectual's experience and expertise through the delivery of high-quality, leading-practice solutions to customers. Aligning business technology with an organization's strategy and goals can often be a complex and overwhelming process without the right tools and expertise. A Glimpse into the Daily Routine of a Senior DevOps Architect, Design DevOps Platforms

• Architect CI/CD platforms and Kubernetes infrastructure using best practices
• Design automation frameworks, observability strategies, and security integration patterns
• Build enterprise-scale DevOps platforms with multi-tenancy and compliance requirements

Automate & Optimize

• Develop Infrastructure-as-Code using Terraform, CloudFormation, and AWS CDK
• Create CI/CD pipelines, automation scripts (Python, Go, Bash), and configuration management
• Optimize infrastructure for reliability, cost efficiency, security, and observability

Enable Client Success

• Provide technical guidance and DevOps mentorship to client engineering teams
• Lead DevOps transformation workshops, knowledge transfer sessions, and incident response
• Troubleshoot complex infrastructure and pipeline challenges; create comprehensive documentation, * Lead integration of comprehensive security scanning (SAST, DAST, container, IaC) with automated remediation workflows
• Lead implementation of compliance frameworks (SOC 2, HIPAA, PCI-DSS, FedRAMP)
• Architect enterprise secret management with rotation, audit, and encryption
• Design comprehensive IAM strategies with least-privilege, service accounts, and OIDC federation
• Implement policy-as-code tools (Open Policy Agent, Falco, Kyverno); partner with security teams to establish DevSecOps culture

• 7+ years of continual, prior experience in DevOps architecture
• 7+ years architecting and building AWS infrastructure
• 7+ years of DevOps toolchain experience (e.g., GitHub, GitLab, AWS Code* Suite)
• AWS experience within the past year, with knowledge of primary AWS services (Compute, Storage, Networking, RDS)
• Strong track record of implementing AWS services in a variety of distributed computing environments
• Experience facilitating discussions with senior leadership regarding technical/architectural trade-offs, best practices, and risk mitigation
• Experience leading highly available and fault-tolerant enterprise and web-scale software deployments
• Experience managing data center or cloud operations, including data assurance, monitoring, alerting, and notifications
• Demonstrated ability to think strategically about business, product, and technical challenges
• Strong working knowledge of leading AWS cloud security practices
• Proficient in developing Infrastructure-as-Code (e.g., Terraform, AWS CloudFormation)
• Proficient in coding configuration management tooling (e.g., Ansible, Chef, Puppet)
• Proficient in one or more programming/scripting languages (e.g., Python, Java, Node)
• Demonstrable knowledge of Agile and Waterfall SDLC methodologies
• Ability to work with multiple clients in parallel, with strong attention to detail
• Exceptional communication and time management skills
• Ability to work EST with flexibility for different time zones

Technical Skills

Kubernetes Architecture & Security

• Expert proficiency in architecting secure, scalable Kubernetes and EKS platforms with advanced security, networking, and integration patterns
• Design and enforce comprehensive RBAC, network policies, admission controllers, and guardrails
• Architect and secure complex multi-tenant environments with namespace isolation and CNI strategies
• Architect custom operators, admission webhooks, platform extensions, and service mesh implementations (Istio, Linkerd, Consul Connect), * Expert proficiency in Terraform (module design, state management, workspace strategies, CI/CD integration) and CloudFormation (StackSets, nested stacks, cross-account deployments)
• Expert in Ansible automation framework design and enterprise playbook architecture; expert in AWS CDK patterns, custom constructs, and multi-stack applications
• 5+ years of advanced IaC experience; implement security scanning (Checkov, tfsec, Terrascan) in CI/CD pipelines

CI/CD Pipeline Architecture

• Architect enterprise CI/CD platforms (Jenkins, GitLab CI, GitHub Actions) with security, compliance, and scalability
• Architect AWS CodePipeline with cross-account, multi-region deployments; lead GitOps implementations (ArgoCD, Flux) with progressive delivery
• 5+ years of CI/CD architecture with platform engineering focus

Monitoring & Observability

• Expert in architecting enterprise observability platforms: Prometheus (HA, federation, Thanos), Grafana (RBAC, provisioning), ELK/EFK (centralized logging, security, retention)
• Lead APM architecture with Datadog/New Relic (custom metrics, distributed tracing, SLOs); expert in CloudWatch cross-account observability
• Implement SRE practices: SLIs, SLOs, error budgets, and incident response frameworks

Scripting & Automation

• Expert in Python (framework development, complex automation, API development) and Bash/Shell (advanced scripting with error handling and testing)
• Advanced PowerShell for Windows automation and cross-platform scripting; proficient in Go for cloud-native tooling and operators

Required Professional Competencies

• Ability to translate technical concepts for executive audiences
• Ability to build consensus across stakeholders without direct authority
• Strong problem-solving, analytical, and collaboration skills

Required Certifications

• AWS Certified Solutions Architect - Associate (Current or Expired)

Nice-to-Have Skills and Experience

• Multi-cloud experience (AWS, Azure, GCP)
• Compliance framework expertise (PCI-DSS, HIPAA, SOC 2)
• AWS CDK, database migration, and modernization experience
• FinOps practices and cost optimization expertise
• Agile/Scrum methodology experience

Nice-to-Have Certifications

• AWS Certified SysOps Administrator - Associate
• AWS Certified Security - Specialty
• AWS Certified DevOps Engineer - Professional
• AWS Certified Advanced Networking - Specialty
• HashiCorp Certified: Terraform Associate
• Kubernetes certifications (CKA, CKAD) and container orchestration experience (ECS, EKS), The work is generally performed in an office environment. Physical demands include sitting, keyboarding, verbal communication, and written communication. Employees are occasionally required to stand; walk; reach with hands and arms; climb or balance; and stoop, kneel, crouch, or crawl. The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodation may be made to enable individuals with disabilities to perform the functions.

Full-time employees are eligible to participate in our employee benefit programs:

• Medical, dental, and vision health insurances
• Short term disability, long term disability, and life insurances
• 401k with company match
• Paid time off (PTO) (120 hours PTO that accrue over one year)
• Paid time off for major holidays (14 days per year)
• These and any other employee benefit offerings are subject to management's discretion and may change at any time.

This job description may not be inclusive of all assigned duties, responsibilities, or aspects of the job described, and may be amended anytime at the sole discretion of the Employer. Duties and responsibilities are subject to possible modification to reasonably accommodate individuals with disabilities. To perform this job successfully, the incumbents will possess the skills, aptitudes, and abilities to perform each duty proficiently. This document does not create an employment contract, implied or otherwise, other than an "at will" relationship. Effectual Inc. is an EEO employer and does not discriminate on the basis of any protected classification in its hiring, promoting, or any other job-related opportunity.