Brightline Interactive is seeking an experienced Amazon Web Services (AWS) Cloud Engineer with 5+ years of hands-on experience designing, implementing, and supporting secure, scalable, and highly available infrastructure in AWS.
This role is technical and delivery-focused, requiring deep knowledge of cloud-native services, infrastructure as code (IaC), Kubernetes at scale, and secure architectural practices. Experience with AWS GovCloud (IL4/IL5) is a strong differentiator.
The ideal candidate will have a proven history of building, deploying, and maintaining production cloud infrastructure, not just designing in theory. You must be proficient in automating cloud environments using tools such as Terraform, Packer, and Ansible, and be capable of integrating and managing CI/CD pipelines within AWS. A strong emphasis on AWS security best practices and zero trust architecture is essential.

Technology Capabilities and Experience:

• 5+ years of hands-on experience with AWS, including deployment, configuration, and lifecycle management of production cloud infrastructure.
• Deep expertise with AWS core services, including but not limited to: EC2, S3, RDS, VPC, IAM, Route 53, ELB, Auto Scaling, EBS, EFS, Lambda, CloudWatch, CloudTrail, Config, SNS/SQS.
• Proven ability to design and manage secure, multi-tier VPC architectures, including site-to-site VPNs, Transit Gateways, Direct Connect, private/public subnet strategies, and hybrid cloud connectivity.
• Strong understanding of network topologies and routing within AWS VPCs
• Strong implementation experience with Infrastructure as Code (IaC) using Terraform, Packer and Ansible, with a focus on reusable, modular, and version-controlled automation.
• Direct experience deploying and operating Kubernetes clusters in AWS (Amazon EKS) at scale, including configuration of node groups, autoscaling, network policies, ingress controllers, and secrets management.
• Strong understanding of containerization, Docker, and container security concepts.
• Proficient in integrating and maintaining CI/CD pipelines using GitLab CI and FluxCD.
• Expert knowledge of IAM design and governance, including creation and management of custom roles, policies, permission boundaries, cross-account roles, OIDC/SAMLSSO integrations, and service-linked roles.
• Demonstrated knowledge of AWS security best practices, including encryption (KMS, SSL/TLS), secrets management (AWS Secrets Manager, Parameter Store), patch management, logging/alerting (CloudWatch, GuardDuty, Security Hub), and security automation.
• Experience working in or deploying solutions to AWS GovCloud (US), including a solid understanding of FedRAMP High, DoD IL4/IL5, NIST 800-53, and other compliance frameworks.
• Proficiency with scripting languages (e.g., PowerShell, Bash, or Python) for automation and toolchain integration.
• Capable of troubleshooting complex distributed systems, including network, performance, application, and container-related issues across cloud-native environments.
• Familiarity with monitoring and observability stacks such as CloudWatch.
• Strong experience with cloud cost optimization, tagging strategies, and right-sizing practices.
• Comfortable participating in architecture reviews, code reviews, and building automation tools and templates for team-wide reuse.
• Bachelor’s degree in Computer Science, Information Systems, Engineering, or related technical field.

PREFERRED QUALIFICATIONS:

• AWS Certifications (e.g., Solutions Architect Professional, DevOps Engineer, Security Specialty).
• Experience with zero downtime deployments, blue/green, or canary strategies.
• Experience with container security, image scanning, runtime policies, and admission controllers.
• Experience with Linux system administration and secure OS hardening.
• Familiarity with DoD/DISA STIGs, NIST 800-53, or other government security benchmarks.
• Experience with multi-account AWS environments
• Prior work with air-gapped environments or hybrid cloud setups (on-prem + AWS).

Please refer the Job description for details