We are looking for a platform engineer from Brazil, Argentina, or Colombia.
Responsibilities
Architect and maintain Infrastructure as Code practices using Terraform across 8+ AWS accounts, including reusable module libraries and layered state architecture.
Design and implement reusable Terraform modules consumed by multiple product teams while driving standards for state management, provider configuration, and security scanning.
Evolve and maintain the Kubernetes platform on EKS, leveraging technologies such as Cilium CNI, Karpenter, KubeBlocks, and VictoriaMetrics.
Build and improve golden paths that enable engineering teams to efficiently deploy, operate, and scale services on Kubernetes.
Own and enhance the CI/CD platform, including development and maintenance of CircleCI orbs, deployment automation, and pipeline architecture improvements.
Evaluate, recommend, and support migrations to new CI/CD platforms and tooling where appropriate.
Improve developer experience by building self-service tooling and internal platforms that reduce operational overhead for product engineering teams.
Design infrastructure abstractions that empower teams to manage their services independently without requiring deep AWS expertise.
Design and maintain security architecture across a multi-account AWS environment, including IAM strategies, WAFv2 rule sets, and compliance/security tooling such as Security Hub, GuardDuty, Inspector, and CloudTrail.
Drive security and reliability improvements identified through incident reviews and post-mortems.
Research, evaluate, and recommend new technologies, tools, and approaches through structured technical investigations and proof-of-concept initiatives.
Document findings, provide technical recommendations, and drive adoption of new platform and infrastructure solutions across the organization.
Requirements
Advanced Level of English
Strong experience with Infrastructure as Code using Terraform (HCL), including complex module authoring, multi-provider configurations, layered state architecture, remote state management, and infrastructure security scanning practices.
Extensive AWS experience across a broad range of services, including ECS, EKS, EC2, Lambda, VPC networking, WAFv2, Route 53, RDS, Aurora, ElastiCache, S3, IAM, KMS, ACM, and AWS security/compliance services such as Security Hub, GuardDuty, CloudTrail, AWS Config, and Inspector.
Strong Kubernetes experience, including EKS cluster lifecycle management, Karpenter, Cilium CNI, Helm, workload orchestration patterns, Kubernetes Operators, and storage management.
Strong CI/CD and deployment automation experience, including CircleCI orb development, pipeline design, Docker containerization, ECR management, and deployment strategies for ECS, EC2/ASGs, and Lambda-based workloads.
Working proficiency in Python 3 for operational tooling, Lambda functions, and CLI development, with familiarity in boto3, pytest, type annotations, and modern Python packaging practices.
Bonus Points
Bachelor’s Degree in Computer Science, Systems Engineering or related fields
Experience with Grafana, PromQL, and dashboard-as-code practices using Terraform.
Familiarity with FinOps and AWS cost optimization strategies.
Experience managing Cloudflare DNS/CDN configurations via Terraform.
Exposure to GitLab CI, OPA/Conftest, ECS Service Connect, and AWS SCPs.
Familiarity with Renovate, OpenTofu, and Golden AMI strategies.