Cloud DevOps Engineer

About the Role

RiPSIM Technologies is hiring a Cloud DevOps Engineer to build, operate, and secure the AWS infrastructure supporting our regulated services platform. This is a hands-on individual contributor role.

The right candidate has spent their career as a cloud engineer with a security focus and is energized by small, fast-moving teams where individual contributions have visible impact. The work spans hands-on infrastructure engineering and security operations.

Responsibilities

• Design, deploy, and maintain Terraform modules across our AWS organization

• Develop and maintain serverless automation using AWS Lambda for security operations, monitoring, and compliance reporting

• Operate and harden Kubernetes workloads, including troubleshooting deployments and contributing to cluster security

• Build and maintain CI/CD pipeline security, including IaC scanning, SAST/DAST integration, and policy enforcement

• Operate cloud security tooling including monitoring, threat detection, vulnerability management, incident response, and log investigation

• Investigate and remediate security findings, including vulnerability remediation, configuration drift, and audit-identified gaps

• Review IAM policies, access controls, and configuration baselines across the AWS organization

• Execute recurring compliance activities including firewall reviews, certificate audits, vulnerability scans, and change management documentation

• Contribute to security documentation, including policies, procedures, standard operating procedures, and audit evidence

• Collaborate with cloud operations, security operations, and application support teams on cross-functional initiatives

• Contribute to architecture decisions and grow ownership of cloud security operations over time

Qualifications

• 4-7 years of operational cloud engineering experience, with the most recent 2+ years specifically in AWS production environments

• Hands-on Terraform development experience, including writing and maintaining modules across cloud environments

• Kubernetes and/or ECS experience, including deployment, security hardening, and troubleshooting

• Working knowledge of AWS networking and firewall concepts, including VPCs, security groups, NACLs, and route tables

• Demonstrable security focus: IAM governance, encryption at rest and in transit, certificate lifecycle management, security automation, vulnerability management and remediation, CI/CD pipeline security

• Hands-on experience contributing to security and compliance work, including documentation, control implementation, or audit evidence production

• Proficiency in Python and Bash scripting

• U.S. Citizenship required

Preferred Background

• Prior experience at a startup or midsize company, where engineers wear multiple hats and operate with broad scope

• Designed and implemented security controls in highly regulated environments

• Designed and implemented cryptographic key management and PKI infrastructure

• Designed and implemented network and firewall architectures, including AWS security groups, NACLs, VPC architecture, and network segmentation

• Designed and implemented managed message broker deployments such as Amazon MQ (RabbitMQ), Kafka, or equivalent

• Designed and implemented secure managed database deployments (RDS, Aurora, or equivalent)

• Designed and implemented log investigation and observability pipelines (Elasticsearch, Kibana, Graylog, Splunk, or equivalent)

• Hands-on security and compliance remediation experience, including closing audit findings, remediating vulnerability scan results, and tracking corrective actions through resolution

• Experience gathering, organizing, and presenting audit evidence for compliance assessments and external auditors

• Prior work in telecommunications, financial services, healthcare, or government sectors

• Familiarity with compliance frameworks such as ISO 27001, SOC 2, or NIST 800-53

• Active or recent federal clearance is a plus, but not required

• Demonstrated commitment to professional development through certifications, advanced training, or continued education in cloud security domains

Job Type: Full-time

Pay: From $130,000.00 per year

Benefits:

• 401(k)

• 401(k) matching

• Dental insurance

• Flexible schedule

• Health insurance

• Life insurance

• Paid time off

• Vision insurance

Work Location: Hybrid remote in Ashburn, VA 20147