Senior Infrastructure Engineer, AWS

This is a fully remote position, open to applicants in United Kingdom.

📋 Description

• About usuMed: We are a healthtech and data platform revolutionizing clinical research using real-world and patient-generated data. Our platform facilitates rapid, decentralized research and high-quality data generation within a global healthcare network.

• As we enhance our next-generation data platform, we are committed to building robust infrastructure foundations that support secure, reliable, and compliant data and application workflows.

• Role Overview: We are seeking a Senior Infrastructure Engineer (AWS) to oversee our cloud and hybrid infrastructure.

• This position is responsible for designing, securing, and managing our AWS environment, overseeing access and identity across teams, and facilitating integration with third-party and on-premise systems (e.g., TPP).

• A crucial aspect of this role involves minimizing operational overhead by refining infrastructure design, access models, and system standardization. You will play an essential role in transitioning us from reactive infrastructure management to a scalable, well-governed platform.

• You will serve as the primary authority on infrastructure-related decisions and best practices throughout the organization.

⛳️ Requirements

• AWS Infrastructure Ownership

• - Own and manage usuMed’s AWS environment across development, staging, and production.

• - Design and maintain VPCs, networking, and environment isolation.

• - Manage core services including EC2, ECS/Fargate, RDS, S3, and Redshift.

• - Implement and maintain Infrastructure-as-Code (Terraform or equivalent).

• - Manage cloud-hosted databases (e.g., RDS), including provisioning, access control, backup/restore, and security configuration.

• Access & Identity Management (High Priority)

• - Design and manage IAM roles, policies, and permission models.

• - Provision secure access for internal teams, external collaborators, and offshore teams.

• - Enable secure connectivity via:

• - IAM / AWS Identity Center.

• - Role-based access.

• - Bastion hosts / tunnel servers where necessary.

• - Enhance and standardize access models and patterns to reduce manual provisioning.

• Hybrid & Third-Party System Management

• - Lead the setup and ongoing management of third-party/on-premise systems (e.g., TPP Hub/Reporting Unit).

• - Provision and manage VM-based environments (Linux/Windows).

• - Configure networking and connectivity (VPNs, IP whitelisting, firewall rules).

• - Troubleshoot and resolve issues across AWS and vendor-managed systems.

• - Collaborate directly with external vendors to facilitate deployment and maintenance.

• - Document setup, dependencies, and recovery processes.

• - Provide occasional support for issues in third-party systems implemented in external environments (e.g., GP practice systems), including troubleshooting installation or connectivity issues in partnership with end users and vendors.

• Reliability, Backup & Disaster Recovery

• - Define and implement backup strategies for all critical systems.

• - Own disaster recovery planning (RTO/RPO), execution, and testing.

• - Regularly test restore and failover processes.

• - Enhance system resilience and minimize operational risk.

• Monitoring, Security & Compliance

• - Implement and maintain monitoring, logging, and alerting (CloudWatch, DataDog).

• - Ensure infrastructure aligns with security best practices and ISO 27001 standards.

• - Maintain auditability of access and system activity (CloudTrail, logging).

• - Support vulnerability management and incident readiness.

• Infrastructure Hygiene & Cost Management

• - Identify and eliminate unused or underutilized resources.

• - Implement tagging, cost allocation, and cost optimization practices.

• - Maintain a clean, well-structured AWS environment.

• Platform & Automation Improvements

• - Automate provisioning and operational workflows.

• - Reduce manual and repetitive infrastructure tasks.

• - Enhance system design to minimize incidents and operational overhead.

• Required Experience

• - 5+ years of experience in infrastructure / DevOps roles.

• - Strong hands-on experience with AWS (VPC, EC2, ECS/Fargate, S3, RDS, Redshift).

• - Proven experience managing multi-account AWS environments.

• - Experience in designing and managing secure, auditable access to AWS resources, including data platforms.

• - Strong understanding of networking (VPCs, VPNs, routing, security groups).

• - Experience with Infrastructure-as-Code (Terraform or CloudFormation).

• - Experience with backup, restore, and disaster recovery planning and testing.

• - Strong Linux and scripting skills (Bash/Python).

• - Experience with monitoring tools (DataDog, CloudWatch).

• - Comfortable troubleshooting issues in external or user-managed environments where infrastructure is not directly controlled.

• **Desirable Experience:**

• - Experience integrating with on-premise or third-party systems.

• - Experience working in regulated environments (ISO 27001, HIPAA, GxP).

• - Exposure to Windows-based environments (for hybrid/vendor systems).

🏝️ Benefits

• - Private Health Insurance to ensure you are well-covered.

• - Pension Plan to assist you in securing your future.

• - Ample Paid Time Off for your well-deserved breaks.

• - Work From Home equipment budget for a comfortable workspace.

• - Flexible Benefits platform customized to your needs.

• - Enjoy your Birthday Day Off on us!

• - Eye-test vouchers for Specsavers to care for your eyesight.

• - Coworking policy – connect with the team as often as once a week.