AWS Cloud DevSecOps Engineer

IMPORTANT: We will only process applications of those who will apply through this link
https://planetart.applytojob.com/apply/IiW8ik8GwW/AWS-Cloud-DevSecOps-Engineer

AWS Cloud DevSecOps Engineer

Company and Vision
PlanetArt’s vision is to be the leading seller of personalized and make-on-demand products worldwide. We
provide consumers with unmatched tools and content and an unparalleled end-to-end customer experience
that result in high-quality, meaningful finished products and memorable celebrations of live events.
The company’s brands include the popular FreePrints and FreePrints Photobooks apps, the industry-leading SimplytoImpress card and stationery site, and Personal Creations, CafePress, and ISeeMe! Visit
www.planetart.com to learn more about our brands.
We have more than 500 team members across multiple offices, primarily in Calabasas CA, San Diego CA,
Woodridge IL, Minneapolis, MN, and Pleasanton, CA. We also have team members in two company-owned
offices in China, as well as in Europe.

Job Overview
We are looking for a highly skilled and detail-oriented DevSecOps Engineer to join our team and take
ownership of provisioning and creating CI/CD pipelines following best industry practices. The ideal candidate
will focus on deploying infrastructure and services efficiently and securely, ensuring seamless integration, and
documenting the entire process (in markdown).
Note: This role does not require deep knowledge of individual AWS service operations (e.g., how to create
data pipelines in EMR), but it does require a strong understanding of how to deploy and maintain these
services effectively and securely. Additionally, the ability to document these deployments thoroughly is
essential.

What You’ll Do
Key Responsibilities
Develop CI/CD pipelines using industry best practices. Implement and maintain CICD pipelines using Jenkins, GitHub, and GitHub Actions.
Utilize infrastructure-as-code tools like Terraform, Helm, and Ansible to provision resources, automate deployments, and configuration maintenance.
Deploy and manage AWS infrastructure (VPC, IAM, EC2, ECR, S3, EKS, EMR, SageMaker, MWAA, Secrets Manager, CodeDeploy, CloudWatch, Service Quota, Glue, Lambda, MSK, MAF).
Collaborate with development teams to ensure smooth deployment processes.
Create comprehensive markdown documentation for all deployed pipelines and infrastructure, enabling future maintenance and scalability.
Enforce security best practices in the CI/CD process, including managing AWS security controls, IAM permissions, secrets management, and familiarity with tools such as Snyk and DryRunSecurity.
Ensure best practices for service reliability and scalability through proper monitoring and logging.
Monitor, troubleshoot, and improve infrastructure performance using monitoring tools like Prometheus, Grafana, CloudWatch, and Splunk.


What You Should Have
Skills, Qualifications, and Requirements
Expertise in CI/CD tools and processes (Jenkins, GitHub Actions, Docker, Kubernetes, Helm, Terraform, Ansible).
Strong experience with deploying and managing the availability of AWS services (VPC, IAM, EC2, ECR, S3, EKS, EMR, SageMaker, MWAA, Secrets Manager, CodeDeploy, CloudWatch, Service Quota, Glue, Lambda, MSK, MAF, Redshift, Aurora, RDS, and more).
Familiarity with container orchestrations.
Strong understanding of managing and implementing webhooks in AWS VPC environments.
Strong knowledge of GitHub organization and management, ensuring efficient multi-department structuring and separation of concerns within a single repository.
Proficiency in Bash/UNIX Shell scripting and AWS CLI for cloud automation tasks.
Strong experience in monitoring and logging tools (Prometheus, Grafana, CloudWatch, Splunk).
Excellent markdown documentation skills, ensuring all processes and systems are clearly outlined for future reference.
Experience with infrastructure security best practices.
Knowledge of cloud cost management tools and best practices.
Strong knowledge of networking concepts, including TCP/IP, DNS, firewalls, load balancing, and container networking. Experience configuring and managing VPCs, subnets, route tables, and security groups in cloud environments in AWS.
Experience with configuring and managing NGINX load balancers.
Ability to monitor and secure traffic flows across services deployed in cloud environments and container orchestration platforms like Kubernetes.

Nice to Have:
Familiarity with testing methodologies (e.g., PyTest, Selenium, JUnit, MockIt, Robot Framework, Nose2, Cucumber) and their integration into CI/CD pipelines.
Familiarity with Deployment Strategies that minimize risk, downtime, and user impact.
Familiarity with Go or Ruby for infrastructure tools is a plus.

What You Can Expect
Working Conditions
The position requires long-term and fully remote work scheduled from (ex. 8:00 AM - 5:00 PM US Pacific Time)
Position requires regular, continuous use of the computer.
The position requires regular sitting and standing.
The position requires regular interaction with team members through the following methods: phone, WebEx, Slack, or email.
The position requires time and screen tracking via Hubstaff
We only use Wise to pay our contractors.


Work From Home Requirements
Own computer (Windows 10 or higher or Mac, at least 8GB RAM and at least Intel i5, Ryzen 5, or M1 processor)
Reliable high-speed internet access
Noise-cancelling headset (if applicable)
Private, distraction-free environment (if applicable)

Pay Range
P660.00 to P1,100.00 per hour

Perks
Paid Time Off
Paid US Holidays


IMPORTANT: We will only process applications of those who will apply through this link:
https://planetart.applytojob.com/apply/IiW8ik8GwW/AWS-Cloud-DevSecOps-Engineer