Design, build, and maintain secure, automated AWS cloud-native environments (serverless APIs, event-driven workflows, containerized services). Implement IaC, GitLab CI/CD pipelines, security controls, observability, and production-grade operations for highly reliable, governed systems. Support databases, networking, and incident readiness while partnering with engineering and security stakeholders.
DevSecOps Engineer / AWS Cloud Engineer (Serverless, CI/CD, IaC, ECS Fargate)
Location: Remote
Role Summary
We are seeking a highly skilled AWS Cloud / DevSecOps Engineer to design, build, and maintain secure, scalable, highly automated cloud-native environments on AWS. This role will lead the engineering of production-grade serverless APIs, event-driven workflows, and containerized services, while embedding security and operational excellence into every stage of the delivery lifecycle (infrastructure, pipelines, runtime, and monitoring). You will partner closely with application engineers (frontend and backend), architects, and security stakeholders to deliver mission-critical systems with strong reliability, performance, and governance.
Key Responsibilities
Cloud architecture & delivery
Location: Remote
Role Summary
We are seeking a highly skilled AWS Cloud / DevSecOps Engineer to design, build, and maintain secure, scalable, highly automated cloud-native environments on AWS. This role will lead the engineering of production-grade serverless APIs, event-driven workflows, and containerized services, while embedding security and operational excellence into every stage of the delivery lifecycle (infrastructure, pipelines, runtime, and monitoring). You will partner closely with application engineers (frontend and backend), architects, and security stakeholders to deliver mission-critical systems with strong reliability, performance, and governance.
Key Responsibilities
Cloud architecture & delivery
- Design and implement cloud-native architectures on AWS, emphasizing serverless-first patterns where appropriate.
- Build and maintain production-ready serverless APIs using AWS Lambda, API Gateway, and related integration patterns (authorizers, throttling, request validation, WAF integration as needed).
- Create event-driven workflows and orchestration using AWS Step Functions, including retries, error handling, idempotency, and observability.
- Design and maintain containerized workloads using Docker and Amazon ECS on Fargate, including task definitions, scaling, service discovery, and secure networking.
- Develop and manage infrastructure using AWS CloudFormation (and/or complementary IaC practices as applicable), ensuring reusability, composability, and environment parity (dev/test/prod).
- Implement guardrails for consistent provisioning: tagging standards, baseline security controls, secrets handling, and standardized logging/monitoring.
- Manage VPC, subnets, routing, security groups, NACLs, endpoints, and connectivity patterns for secure, least-privilege architectures.
- Build and maintain GitLab CI/CD pipelines for automated testing, security checks, deployments, and rollbacks across multiple environments.
- Automate release workflows for serverless and container platforms (blue/green or canary strategies where applicable).
- Implement pipeline-integrated security controls (e.g., dependency scanning, container scanning, IaC scanning, policy-as-code where applicable) and ensure audit-ready traceability.
- Architect secure AWS environments leveraging IAM (least privilege, role-based access, permission boundaries where useful), encryption (KMS), and secure secrets management.
- Implement logging and detection best practices using services such as CloudWatch Logs/Metrics/Alarms, CloudTrail, and centralized log aggregation patterns.
- Ensure secure configuration and operational readiness: patching/immutability strategies, secure image practices, runtime hardening, and incident response readiness.
- Design and maintain MySQL / Amazon RDS environments, including backups, parameter tuning, maintenance windows, read replicas (if needed), and secure connectivity.
- Support application teams with data-access patterns, migrations, and reliability considerations (connection management for serverless, pooling/proxy patterns where applicable).
- Hands-on expertise building serverless solutions with AWS Lambda, API Gateway, and Step Functions in production.
- Strong experience with AWS CloudFormation for provisioning and managing environments.
- Strong CI/CD experience, specifically building and operating GitLab CI/CD pipelines.
- Strong container expertise with Docker and running workloads on ECS Fargate (services, tasks, scaling, networking).
- Demonstrated experience architecting secure AWS environments using IAM, VPC/networking, encryption, and logging/auditing best practices.
- Experience designing/operating MySQL / Amazon RDS in production.
- Strong scripting/automation skills (e.g., Python and/or Bash) to streamline workflows and reduce toil.
- Ability to collaborate effectively with frontend/backend engineering teams and translate requirements into secure, automated platform capabilities.
- Security+ or higher certification
- AWS Cloud Practitioner certification or higher
- TS security clearance or the ability to obtain one
- Familiarity with AWS CDK or Terraform (even if CloudFormation remains primary).
- Experience with API security patterns: OAuth/OIDC integration, JWT authorizers, rate limiting/throttling, WAF, mTLS (where required).
- Experience with secrets management (e.g., AWS Secrets Manager / SSM Parameter Store) and key management (KMS).
- Observability stack experience beyond basics: structured logging, tracing (e.g., X-Ray/OpenTelemetry patterns), metrics-driven alerting.
- Experience implementing policy-as-code and governance (e.g., SCPs/Organizations, config rules, control frameworks).
- Experience with performance/cost optimization for serverless and Fargate workloads.
- Prior experience in regulated environments requiring audit evidence and secure SDLC controls.
- DevSecOps mindset: security and automation as first-class design principles.
- Systems thinking: understands tradeoffs across reliability, latency, cost, and security.
- Engineering rigor: version control, reviews, testing, change management, and documentation.
- Operational ownership: can carry systems from build → run with strong on-call hygiene.
- Clear communication: able to explain architecture decisions to technical and non-technical stakeholders.
Similar Jobs
Artificial Intelligence • Information Technology • Machine Learning • Software • Analytics • Consulting • Financial Services
Design, implement, and operate secure, automated cloud infrastructure and CI/CD pipelines. Use IaC (Terraform/Ansible), Kubernetes (Helm, RBAC, service mesh, GitOps), and AWS serverless to deliver mission-critical public health solutions while supporting production incidents and continuous improvement.
Top Skills:
AngularAnsibleApi GatewayAWSAws LambdaCi/CdCloudfrontConfluenceEmrGitGitopsHelmJava SpringJenkinsJIRAKubernetesKubernetes RbacLinuxPythonSagemakerScalaService MeshShell ScriptingSparkTerraform
Cloud • Security • Cybersecurity
Lead design, implementation, and maintenance of enterprise DevSecOps solutions and CI/CD pipelines. Integrate security (SAST/DAST/SCA, container/image scanning, secret detection, fuzz testing) and testing (functional, integration, performance) across the SDLC. Build IaC for hybrid cloud/on-prem environments (Azure/AKS), support ATO/compliance (NIST 800-53, Zero Trust, M-21-31), mentor teams, and drive DevSecOps automation, audit readiness, and continuous improvement.
Top Skills:
Application GatewayAzure App ServicesAzure Key VaultAzure Kubernetes Service (Aks)Azure Virtual MachinesC#Ci/CdContainer/Image ScanningContainerizationCyberarkDastDockerFuzz TestingGithub Advanced SecurityGithub CloudGithub CopilotGithub EnterpriseInfrastructure As Code (Iac)JavaJfrog ArtifactoryJfrog XrayKubernetesAzurePythonSastScaSecret DetectionServicenowSonarqubeSubject7Terraform
Other
Maintain and extend infrastructure-as-code (Terraform/OpenTofu) and configuration-as-code (Ansible). Build and improve GitHub Actions CI/CD, support Docker/Kubernetes/Helm delivery, integrate SAST, secrets scanning, policy-as-code, and container security into pipelines. Participate in agile ceremonies and documentation.
Top Skills:
AnsibleAWSBashContainer Security ScanningDockerGitGithub ActionsHashicorp VaultHelmKubernetesOpentofuPolicy-As-CodePythonRbacSastSecrets ScanningTerraform
What you need to know about the Austin Tech Scene
Austin has a diverse and thriving tech ecosystem thanks to home-grown companies like Dell and major campuses for IBM, AMD and Apple. The state’s flagship university, the University of Texas at Austin, is known for its engineering school, and the city is known for its annual South by Southwest tech and media conference. Austin’s tech scene spans many verticals, but it’s particularly known for hardware, including semiconductors, as well as AI, biotechnology and cloud computing. And its food and music scene, low taxes and favorable climate has made the city a destination for tech workers from across the country.
Key Facts About Austin Tech
- Number of Tech Workers: 180,500; 13.7% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Dell, IBM, AMD, Apple, Alphabet
- Key Industries: Artificial intelligence, hardware, cloud computing, software, healthtech
- Funding Landscape: $4.5 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Live Oak Ventures, Austin Ventures, Hinge Capital, Gigafund, KdT Ventures, Next Coast Ventures, Silverton Partners
- Research Centers and Universities: University of Texas, Southwestern University, Texas State University, Center for Complex Quantum Systems, Oden Institute for Computational Engineering and Sciences, Texas Advanced Computing Center
