Description : DevOps Engineer AWS (68 Years Experience)

Location : Kochi, India

Company : Softobiz Technologies

Department : Cloud, DevOps & Platform Engineering

Role Type : Full-time

Role Overview :

Softobiz is looking for an experienced AWS DevOps Engineer (68 years) who can architect, deploy, secure, and optimize large-scale AWS environments.

This role supports enterprise clients across the USA, Australia, APAC (including Sydney Markets Limited, FirstPath, Oroton), and internal Softobiz products.

You will work across infrastructure automation, CI/CD, containers, microservices, network security, monitoring, data platforms, and zero-trust security principles.

Key Responsibilities :

AWS Infrastructure Engineering :

Design, build, and manage production-grade cloud infrastructure using AWS best practices and Well-Architected Framework pillars.

You Will Provision And Maintain :

- VPC, Subnets, NAT, Security Groups, NACLs

- EC2, ECS/Fargate, EKS

- Lambda serverless workloads

- RDS (MySQL/PostgreSQL), DynamoDB, ElastiCache (Redis)

- S3 (with versioning, replication, lifecycle rules)

- API Gateway, Application Load Balancer, NLB

- AWS WAF, CloudFront

- Secrets Manager & KMS

- CloudWatch, CloudTrail, Config

Support multi-environment deployments (Dev/Test/UAT/Prod) with strong isolation and tagging governance.

CI/CD & Automation :

Build scalable CI/CD pipelines using :

- AWS CodePipeline, CodeBuild, CodeDeploy

- OR GitHub Actions / Bitbucket Pipelines

Automate deployments for :

- NET Core APIs

- Node.js / Express services

- React/Next.js frontends

- Container workloads

Implement :

- Blue/Green & Canary deployments

- Automated rollback strategies

- Secretless pipeline execution (AWS IAM roles)

Infrastructure as Code (IaC) :

Author, modularize, and maintain IaC using :

- Terraform (preferred) or AWS CloudFormation

- Manage remote state, workspaces, environment-specific variables.

- Ensure resources follow Well-Architected Framework, cost tagging, and naming standards.

Security, Compliance & Best Practices :

- Implement enterprise-grade AWS security controls with Zero Trust, least privilege, and shift-left security.

Key Responsibilities :

Enforce IAM best practices :

- No long-lived credentials

- Role-based access ONLY

- Cross-account IAM roles where required

- Harden VPC, SGs, NACLs, encryption policies.

Enforce private access patterns :

- VPC Endpoints for S3, DynamoDB, Secrets Manager

- No public internet exposure unless required

- Set up AWS WAF & Shield protections.

- Enable CloudTrail, GuardDuty, Security Hub.

- Implement KMS encryption across services.

- Apply CIS benchmarks for EC2, EKS, IAM, RDS.

- Automate vulnerability scanning with Amazon Inspector or third-party tools.

Observability, Logging & Reliability :

- Set up CloudWatch metrics, logs, alarms, dashboards.

- Implement structured logging (JSON-based) for microservices.

- Configure distributed tracing (X-Ray).

- Define SLIs/SLOs and error budget monitoring.

- Implement auto-scaling for ECS/EKS/EC2 based on usage patterns.

Containers & Microservices :

Architect and maintain workloads on : ECS (Fargate/EC2), EKS (Kubernetes)

- Optimize Docker images (multi-stage builds, caching).

- Implement service mesh (App Mesh, Istio on EKS) preferred but optional.

- Utilize AWS App Mesh, Parameter Store, or Secret Manager for secure config injection.

Collaboration & Delivery :

- Work closely with architects, developers, and project managers.

- Participate in design reviews and ensure infra aligns with AWS best practices.

- Support production releases, DR drills, capacity planning, and RCAs.

- Mentor junior DevOps engineers in the Kochi team.

Core Skills :

Required Skills & Experience :

6 to 8 years hands-on AWS DevOps experience.

Strong expertise in :

- Terraform (mandatory)

- EC2, ECS, EKS, Lambda

- API Gateway, ALB/NLB

- VPC, Route 53, IAM, WAF

- RDS, DynamoDB, ElastiCache

- GitHub Actions or AWS CodePipeline

- ECR, Docker, container deployment patterns

Security Skills :

Deep understanding of :

- IAM role-based access

- Encryption at rest/in transit

- PrivateLink & VPC Endpoints

- WAF, GuardDuty, Security Hub

- KMS, Secrets Manager

- AWS Organizations & SCPs (nice to have)

Soft Skills :

- Strong problem-solving & debugging skills.

- Excellent communication with global teams.

- Ability to manage simultaneous projects.

- Strong documentation and ownership mindset.

Nice-to-Have Skills :

Experience with :

- EKS service mesh

- GitOps (ArgoCD/Flux)

- AWS Step Functions

- EventBridge patterns

- AWS SQS/SNS/Kinesis

- Serverless Framework

- FinOps & cost optimization strategies

- AI integrations (Bedrock, Sagemaker)

Certifications :

- AWS Solutions Architect Associate/Professional

- AWS DevOps Engineer Professional