Key Responsibilities
- Design, deploy, and maintain cloud infrastructure across production, staging, and development environments using AWS services (EC2, VPC, IAM, S3, CloudFormation, Direct Connect, Transit Gateway) and hybrid on-premises systems
- Manage on-prem infrastructure including network hardware, Active Directory, Microsoft services, firewalls, and network security controls
- Develop automation and configuration management solutions utilizing CloudFormation, Ansible, and scripting languages such as Python and Bash for deployment pipelines and infrastructure provisioning
- Build and operate CI/CD pipelines with GitLab CI, integrating monitoring systems like Prometheus, Grafana, and CloudWatch for comprehensive observability and alerting
- Architect and optimize network topology including routing protocols (BGP, OSPF), VLAN configuration, VPN setup, and firewall policies to ensure high availability and disaster recovery readiness
- Implement and enforce security best practices, including network segmentation, access controls, intrusion prevention, and adherence to compliance standards
- Collaborate closely with trading, quantitative research, and risk teams to ensure infrastructure performance, reliability, and low latency meet production requirements
Core Qualifications & Requirements
- 3+ years of hands-on experience in cloud infrastructure, DevOps, or network engineering within trading, capital markets, or latency-critical environments
- Solid proficiency in AWS cloud services: EC2, VPC, IAM, S3, CloudFormation, Direct Connect, Transit Gateway
- Strong understanding of networking fundamentals including BGP, OSPF, VLANs, VPNs, firewall policies, and segmentation
- Practical experience with automation scripting in Python and Bash; preference for automation over manual processes
- Knowledge of hybrid infrastructure architecture and network security best practices
- AWS Professional Certification highly preferred
Nice-to-Have Qualifications
- Experience with observability tools such as Prometheus, Grafana, and CloudWatch
- Knowledge of active directory, Microsoft services, and enterprise network infrastructure
- Familiarity with disaster recovery strategies and high-availability architecture
