Senior Aws Infrastructure Engineer

Belmoney
Municipality of Coslada, Spain
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Municipality of Coslada, Spain

Tech stack

Amazon Web Services (AWS)
Amazon Web Services (AWS)
Amazon Web Services (AWS)
Bash
Google BigQuery
Cloud Computing
Cloud Computing Security
Continuous Integration
Data Infrastructure
DevOps
Github
Identity and Access Management
Python
Key Management
Network Segmentation
PCI Data Security Standards
Powershell
Software Vulnerability Management
Data Logging
Scripting (Bash/Python/Go/Ruby)
Google Cloud Platform
Amazon Web Services (AWS)
Cloudformation
Amazon Web Services (AWS)
Gitlab-ci
Kubernetes
Infrastructure Automation Frameworks
Functional Programming
Cloudwatch
Terraform
Jenkins

Job description

Role SummaryNo deje pasar esta oportunidad, inscríbase rápidamente si su experiencia y habilidades coinciden con lo que se indica en la siguiente descripción.As Senior AWS Infrastructure Engineer at Belmoney, you will be the primary owner of our cloud infrastructure.You will design, build, and maintain our AWS environment with security, resilience, and regulatory compliance at the core.You will work closely with the development teams, security officers, and management to ensure our infrastructure meets the requirements of ISO , DORA, and PCI DSS, while driving continuous improvementand operational excellence.Infrastructure Management & Engineering Design, deploy, and maintain scalable, secure, and highly available AWS infrastructure Own and evolve infrastructure-as-code (IaC) practices using Terraform or AWS CloudFormation Manage networking, VPCs, security groups, IAM policies, and access controls Implement and maintain CI/CD pipelines for infrastructure deployments Oversee monitoring, alerting, and observability using AWS-native tools (CloudWatch, Security Hub, GuardDuty) and third-party platforms* Manage cost optimisation, capacity planning, and infrastructure performanceCompliance & Security* Implement and maintain technical controls aligned with ISO ***** requirements* Support DORA (Digital Operational Resilience Act) compliance: ICT riskmanagement, incident reporting, resilience testing, and third-party risk* Maintain and improve PCI DSS compliance for cardholder data environments, including segmentation, logging, and access control* Conduct regular risk assessments, vulnerability management, and remediationtracking* Produce and maintain compliance evidence, audit logs, and technical documentation for regulators and auditors* Participate in internal and external audits, providing infrastructure-related evidence and explanationsReporting & Structured Operations* Produce regular infrastructure status reports and KPI dashboards for management* Maintain up-to-date architecture diagrams, runbooks, and operational documentation* Track and report on incidents, change management, and patching activities in a structured manner* Contribute to Business Continuity and Disaster Recovery planning and testingRequired Skills & Experience* 5+ years of hands-on experience in AW infrastructure engineering* Strong expertise in core AWS services: EC2, RDS, S3, VPC, IAM, Lambda,ECS/EKS, CloudTrail, KMS, WAF* Proven experience working in environments subject to ISO , DORA, and/orPCI DSS Solid understanding of cloud security best practices: encryption, secretsmanagement, least-privilege IAM, network segmentation Proficiency with infrastructure-as-code tools (Terraform preferred, CloudFormationaccepted) Experience with CI/CD tools (GitLab CI, GitHub Actions, Jenkins, or equivalent) Strong scripting skills: Python, Bash, or PowerShell Structured, methodical approach to work: able to follow and implement changemanagement processes, incident procedures, and operational runbooks* Experience producing technical reporting and documentation for both technical andnon-technical audiences* Fluent in English (written and spoken)Nice to Have* Experience with Google Cloud Platform (GCP) - networking, GKE, BigQuery, orSecurity Command Center* Knowledge of the NBB/ECB regulatory landscape for payment institutions* AWS certifications: Solutions Architect Professional, Security Specialty, or DevOpsEngineer xqysrnh Professional* Experience with container orchestration (Kubernetes / EKS)* Background in financial services, fintech, or a regulated industryWho You Are* A seasoned infrastructure professional who thrives in regulated environments andunderstands that compliance and engineering excellence go hand in hand* Rigorous and organised: you document your work, follow processes, andcommunicate clearly* Proactive in identifying risks and proposing pragmatic solutions before they becomeincidents* Comfortable acting as an internal expert, bridging the gap between technicalimplementation and compliance/audit requirements* Autonomous but collaborative - you can own a domain while working effectivelyacross teamsWhat We Offer* A key role in a growing, regulated fintech with real ownership of the infrastructuredomain* Direct exposure to compliance work at the intersection of technology and financialregulation* Collaborative, transparent working environment with short decision lines* Competitive salary package with benefits* Based in Madrid, Spain (on-site)

Requirements

  • 5+ years of hands-on experience in AW infrastructure engineering

  • Strong expertise in core AWS services: EC2, RDS, S3, VPC, IAM, Lambda, ECS/EKS, CloudTrail, KMS, WAF

  • Proven experience working in environments subject to ISO *****, DORA, and/or PCI DSS

  • Solid understanding of cloud security best practices: encryption, secrets management, least-privilege IAM, network segmentation

  • Proficiency with infrastructure-as-code tools (Terraform preferred, CloudFormation accepted)

  • Experience with CI/CD tools (GitLab CI, GitHub Actions, Jenkins, or equivalent)

  • Strong scripting skills: Python, Bash, or PowerShell

  • Structured, methodical approach to work: able to follow and implement change management processes, incident procedures, and operational runbooks

  • Experience producing technical reporting and documentation for both technical and non-technical audiences

  • Fluent in English (written and spoken) Nice to Have

  • Experience with Google Cloud Platform (GCP) - networking, GKE, BigQuery, or Security Command Center

  • Knowledge of the NBB/ECB regulatory landscape for payment institutions

  • AWS certifications: Solutions Architect Professional, Security Specialty, or DevOps Engineer xqysrnh Professional

  • Experience with container orchestration (Kubernetes / EKS)

  • Background in financial services, fintech, or a regulated industry Who You Are

  • A seasoned infrastructure professional who thrives in regulated environments and understands that compliance and engineering excellence go hand in hand

  • Rigorous and organised: you document your work, follow processes, and communicate clearly

  • Proactive in identifying risks and proposing pragmatic solutions before they become incidents

  • Comfortable acting as an internal expert, bridging the gap between technical implementation and compliance/audit requirements

  • Autonomous but collaborative - you can own a domain while working effectively across teams

Benefits & conditions

  • A key role in a growing, regulated fintech with real ownership of the infrastructure domain

  • Direct exposure to compliance work at the intersection of technology and financial regulation

  • Collaborative, transparent working environment with short decision lines

  • Competitive salary package with benefits

  • Based in Madrid, Spain (on-site)

Apply for this position