One Way VenturesRemote
DevOps Engineer-AWS & Infrastructure
United States of America
Full Time
7 hours ago
Visa Sponsor
Key skills
PythonBashAWSTerraformJenkinsGitHub ActionsGitLab CIServerlessECSEC2LambdaS3DynamoDBRDSCloudFrontRoute53IAMCloudWatchSNSSQSPostgreSQLSSOGrafanaDatadogGitHubGitLabCI/CDCommunication
About this role
One Way Ventures is the inventor of satellite direct-to-device technology, enabling mobile network operators to connect subscribers directly from space. They are seeking a DevOps Engineer to design, manage, and improve their AWS cloud infrastructure, focusing on automation, security, and compliance. This role involves managing CI/CD pipelines, AWS services, and ensuring adherence to CMMC Level 2 compliance.
Responsibilities:
- Design, build, and maintain AWS infrastructure using Terraform as the IaC standard across all environments (dev, staging, production)
- Manage Terraform modules, state management, remote backends, and workspace strategy
- Participate in architecture reviews and drive infrastructure optimization and cost management
- Maintain AWS Organizations or multi-account architecture as the environment scales
- Own and evolve CI/CD pipelines (GitLab CI or GitHub Actions) — from code commit to production deployment
- Identify and implement automation opportunities to reduce manual operational overhead
- Support and maintain deployment workflows for application and platform teams
- Manage core AWS services: EC2, ECS, S3, RDS, Lambda, SQS, SNS, CloudWatch, KMS, IAM, VPC, Route53, CloudFront
- Design, deploy, and maintain serverless workloads using AWS Lambda — including function lifecycle management, concurrency, event source mappings, and cold-start optimization
- Operate and support AWS Ground Station for satellite communication scheduling, antenna management, and data downlink pipelines
- Monitor infrastructure health using Tenable for vulnerability and compliance scanning, CloudWatch for operational metrics, and PagerDuty or equivalent for alerting and incident response
- Enforce infrastructure security posture aligned with CMMC Level 2 — IAM least privilege, encryption at rest/in transit, secrets management (AWS Secrets Manager, Parameter Store)
- Manage team-based IAM access using AWS IAM Identity Center — permission sets, group assignments, account entitlements, and SCIM-based provisioning across the multi-account org
- Use Tenable to continuously assess infrastructure for vulnerabilities and maintain CMMC Level 2 compliance evidence
- Manage certificate lifecycles, KMS key policies, and privileged access controls
- Support audit activities with accurate, current documentation and evidence
- Maintain SOPs, runbooks, and architecture diagrams
- Collaborate with engineering teams on capacity planning and platform reliability
Requirements:
- 4+ years of DevOps/infrastructure engineering experience in AWS-native environments
- Deep hands-on Terraform experience — modules, state management, remote backends, workspace strategy
- Proficient with AWS core services: EC2, ECS, S3, RDS, Lambda, SQS/SNS, IAM, VPC, CloudWatch, KMS
- Strong Linux/Unix administration and scripting (Bash, Python)
- CI/CD pipeline ownership — GitLab CI, GitHub Actions, or Jenkins
- Serverless architecture and AWS Lambda — function design, event-driven patterns, IAM execution roles, and observability
- Experience with AWS Ground Station or other satellite ground segment infrastructure
- AWS IAM Identity Center — permission sets, group-to-account assignments, SCIM provisioning, and SSO integration
- Experience operating in CMMC Level 2 or equivalent DoD/regulated compliance environments
- Solid understanding of network fundamentals: VPC design, security groups, NACLs, peering, Transit Gateway
- Comfortable working asynchronously and remotely without daily check-ins
- AWS certifications (Solutions Architect, DevOps Engineer Professional, or Security Specialty)
- Familiarity with Datadog, Grafana, or similar observability stacks
- Experience with database platforms: PostgreSQL, Aurora, or DynamoDB
- Prior work in defense, federal, or regulated industries (DoD, FedRAMP, CMMC, ITAR)
- Experience with AWS Organizations, Control Tower, or multi-account architectures
- Infrastructure cost optimization — Reserved Instances, Savings Plans, right-sizing
- Experience in a startup or small-team environment where ownership breadth is high
- Bachelor's degree in Computer Science, Engineering, or equivalent practical experience