This is a fully remote position, open to applicants in Portugal.

• Design, implement, and manage AWS infrastructure across various accounts and environments.

• Develop and oversee Infrastructure as Code, including Terraform modules, pipelines, and drift detection.

• Take ownership of identity and access management, covering SSO integration, Keycloak realms, IdP federation, and RBAC.

• Manage HashiCorp Vault for secrets management, including policies, authentication methods, dynamic credentials, and rotation.

• Create and sustain the observability stack, utilizing Prometheus, Grafana, dashboards, and alerting systems.

• Implement landing zones, account vending, networking configurations, and guardrails.

• Collaborate with security and SRE teams on compliance, system hardening, and incident response.

• Automate operational tasks, such as provisioning, access reviews, and certificate and secret rotations.

• Document architecture, runbooks, and onboarding materials.

• Participate in the on-call rotation for platform services.

• At least 3 years of experience in cloud, platform, or DevOps engineering roles.

• Strong practical knowledge of AWS services (Organizations, IAM, VPC, EC2, RDS, EKS/ECS, Lambda, S3, KMS).

• Proficient in Infrastructure as Code (IaC) with Terraform in a production environment (modules, state management, CI/CD).

• Hands-on experience with Keycloak in production, including realms, clients, identity brokering, and OIDC/SAML integration.

• Production experience with HashiCorp Vault, including policies, secret engines, and authentication methods.

• Familiarity with SSO and federation technologies, including OIDC, SAML, and SCIM.

• Experience in observability using Prometheus and Grafana, including dashboards, PromQL, and Alertmanager.

• Strong knowledge of Linux, networking (L2/L3, VLAN/VXLAN), and scripting languages (Python/Bash/Go).

• Experience with Git-based workflows, including peer review and CI processes.

• A friendly, young, and multicultural team with approachable leadership.

• Opportunity to contribute to a dynamic business during its growth phase.

• High degree of autonomy, encouragement for innovative ideas, and implementation of best practices.

• Continuous personal development with a training budget and opportunities for growth alongside the company, learning from industry leaders.

• Competitive compensation, regular salary reviews, and performance-based incentive schemes.

• A vibrant company culture, featuring team activities and global celebrations.

• Visa and work permit assistance if necessary.

• Fully remote work with provision of a laptop or reimbursement for necessary equipment.

Cloud Engineer

People also viewed