We are DemandScience, a global company which never stops innovating in our mission to provide the healthiest and most predictive global B2B data and intelligence for our customers. Our clients include sales and marketing professionals at global companies. Excellent execution is in our DNA. We provide innovative AI-analytics merged with enriched data to identify your next in-market prospects and customers at scale.
Position Summary:
We are seeking an exceptional DevOps Engineer IV to serve as the technical authority and strategic leader for our AWS cloud-native infrastructure. This role is pivotal in architecting, implementing, and optimising our Amazon EKS (Elastic Kubernetes Service) platform while establishing enterprise-grade Infrastructure as Code practices using Terraform and Terragrunt.As the technical expert of the team, you will drive our GitOps maturity through ArgoCD, design sophisticated CI/CD pipelines with GitHub Actions, and ensure architectural excellence across all AWS services.
This position leads the consolidation of AWS application environments into a centralised, well-architected Organisational Unit (OU) structure, focusing on automation, security, performance optimisation, and cost efficiency.You will establish and evangelise best practices across the organisation, creating reusable frameworks and self-service platforms that empower development teams while maintaining security, compliance, and operational excellence.
Essential Job Functions “What You’ll Do”
:
Kubernetes Platform Ownership:
• Design, deploy, and manage production-grade Amazon EKS clusters across AWS regions and accounts.• Architect EKS control plane configurations, including VPC networking, subnet design, security groups, and AWS PrivateLink integration• Establish EKS upgrade strategies, ensuring zero-downtime cluster upgrades and backward compatibility• Integrate EKS with core AWS services: Application Load Balancer (ALB), Network Load Balancer (NLB), Route 53 for service discovery, AWS Certificate Manager, and AWS Secrets ManagerIntelligent Autoscaling: Optimise Karpenter for dynamic, right-sized node provisioning, leveraging FinOps compliance to eliminate cluster waste.• Establish Kubernetes secrets management using AWS Secrets Manager and External Secrets Operator
Service Mesh:
• Own the implementation of Linkerd for production traffic, enforcing TLS, advanced traffic routing.
GitOps Delivery Architecture:
• Architect and manage ArgoCD deployments for declarative, GitOps-based continuous delivery• Design ArgoCD application manifests, AppProjects, and multi-cluster deployment strategies• Create Helm Charts as the standard application packaging format with ArgoCD integration• Establish ArgoCD best practices: repository structure, application composition, progressive delivery, and blue-green Deployments• Integrate ArgoCD with GitHub for automated application synchronisation
CI Automation Lead:
• Design and implement enterprise-grade GitHub Actions workflows for automated CI/CD pipelines• Build multi-stage pipelines incorporating code quality checks, SAST (Static Application Security Testing), container image building and scanning, infrastructure validation, and automated deployment triggers• Integrate GitHub Actions with ArgoCD for GitOps-driven deployments, implementing automated sync strategies• Implement container image security scanning using Trivy, Snyk, or similar tools within GitHub Actions Workflows; Create reusable GitHub Actions workflows and custom actions for standardisation across teams
Full-Stack Observability:
• Architect comprehensive observability solutions using DataDog for APM, log aggregation, distributed tracing, and infrastructure monitoring• Design custom dashboards and alerting strategies for EKS clusters, applications, and AWS services• Establish SLI/SLO frameworks and reliability engineering practices• Migration Architect: • Lead the technical execution of AWS Account migrations focused on consolidating dispersed, legacy applications into a modern, centralised application environment Ous (Organisational Units).• AWS Well-Architected Review: • Conduct AWS Well-Architected Reviews for all infrastructure and application architectures• Ensure adherence to the five pillars: Operational Excellence, Security, Reliability, Performance Efficiency, and Cost Optimisation• Establish architectural decision records (ADRs) and design documentation standards• Mentor teams on AWS and Kubernetes best practices
Full-Stack Observability:
• Architect comprehensive observability solutions using DataDog for APM, log aggregation, distributed tracing, and infrastructure monitoring• Design custom dashboards and alerting strategies for EKS clusters, applications, and AWS services• Establish SLI/SLO frameworks and reliability engineering practices
Migration Architect:
• Lead the technical execution of AWS Account migrations focused on consolidating dispersed, legacy applications into a modern, centralised application environment Ous (Organisational Units).
AWS Well-Architected Review:
• Conduct AWS Well-Architected Reviews for all infrastructure and application architectures• Ensure adherence to the five pillars: Operational Excellence, Security, Reliability, Performance Efficiency, and Cost Optimisation• Establish architectural decision records (ADRs) and design documentation standards• Mentor teams on AWS and Kubernetes best practices
Essential Qualifications “What You’ll Need”:
- Bachelor's Degree in Computer Science or any related courses
- 6+ years AWS, EKS and Kubernetes Expertise (Control plane, IRSA, CNI, Multi-cluster management)
- 5+ years GitOps, ArgoCD mastery, and Github Actions (CI pipeline design)
- 5 years Terraform/Terragrunt for Infra-as-code
- 3 years Karpenter Implementation and Optimisation, Linkerd Deployment and Configuration, Datadog Dashboards and Alerting
Licenses and Certification:
Kubernetes - Certified Kubernetes AdministratorAWS Professional Certification - AWS Certified Solutions Architect Professional or AWS Certified DevOps Engineer Professional
Knowledge, Skills and Abilities:
Platform Engineering Mindset:
Ability to treat infrastructure as product, providing self-service tools and
standardised platforms for development teams while adhering to security and compliance policies
Advanced Scripting:
Proficient in at least one programming language between
GoLang, Python, or Shell.
Architectural Governance:
Expert knowledge in AWS Well-Architected Framework, Cloud Governance, and the DevOps Lifecycle, focusing on
containerised workloads such as EKS.
Systems Thinking:
Deep understanding of networking, Linux, security best practices (e.g., least-privilege IAM, Kubernetes Network Policies), and high-availability design patterns.
Executive Communication:
Superior ability to communicate complex, highly technical architectural and security concepts to executive-level audiences, translating risk and technical debt into clear business outcomes.
Leadership & Ownership:
Self-motivated, demonstrating a high sense of ownership in driving conversations across teams and business units to achieve collaborative progress and complex project completion.
THE GOOD STUFF!
We embrace diversity and inclusion and encourage our amazing team members at DemandScience to bring their authentic, fun selves to work every day. We offer a culture of innovation, mutual respect, support, and transparency. The competitive and comprehensive benefits our team members enjoy are designed to ensure you and your family members are healthy. Check this out!
- Paid time off
- Medical provided through HMO
- Life Insurance
- Peer-Appreciation Program
- Employee Referral Program
- A fast-paced, innovative culture with an open and collaborative environment, where you can make an impact.
- Join a great organization that cares about employees!
DemandScience is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.#LI-RemoteFind out more at https://demandscience.com/careers/#join-the-team
