Infrastructure as Code (IaC) Engineer – AWS / Terraform
📍 Location: Grand Rapids, MI (Hybrid)
💲 Pay Rate: $55–$65/hour (W-2)
🚫 No C2C or Third-Party Candidates
Position Overview
We are seeking an experienced Infrastructure as Code (IaC) Engineer to support a centralized cloud enablement team responsible for building and operating standardized AWS infrastructure. This role focuses on developing reusable Terraform patterns, automation pipelines, and governance controls to enable secure, scalable, self-service infrastructure across a multi-account AWS environment.
You will collaborate closely with platform, security, and application teams to deliver reliable, compliant “paved road” solutions.
Key Responsibilities
- Design, build, and maintain Terraform modules and reusable IaC patterns
- Implement and manage Terraform deployments using Spacelift
- Develop and maintain Rundeck jobs for operational automation and support workflows
- Build and support GitHub-based CI/CD pipelines using GitOps principles
- Establish and enforce AWS standards for:
- Account structure and environments
- Tagging, cost allocation, and ownership
- Security, access control, and auditability
- Implement secure automation using IAM roles, OIDC, and least privilege access
- Collaborate with teams to onboard applications to standardized IaC tooling
- Create and maintain documentation, runbooks, and onboarding guides
- Troubleshoot IaC, pipeline, and automation issues and support root cause analysis
Required Qualifications
Infrastructure as Code (Terraform)
- 5+ years of hands-on Terraform experience in AWS environments
- Strong experience with:
- Module design, reuse, and versioning
- Remote state (S3, DynamoDB)
- Multi-account and multi-environment deployments
- Validation and lifecycle rules for standards enforcement
AWS Cloud Expertise
- Strong experience with:
- AWS Organizations and multi-account strategies
- Cross-account IAM role design
- Landing zone / account bootstrap concepts
- Hands-on provisioning of AWS services including:
- IAM, VPC, EC2, Auto Scaling
- EKS/ECS (working knowledge)
- S3, RDS, CloudWatch
- KMS and encryption
Spacelift (Terraform Orchestration)
- Experience with:
- Stack design and dependencies
- Environment promotion and approvals
- Drift detection and scheduled runs
- Integration with AWS IAM and GitHub
Rundeck (Automation)
- Experience designing and operating Rundeck jobs
- Knowledge of RBAC, approvals, IAM-based credential management
- Familiarity with version-controlled job patterns
GitHub & CI/CD
- Experience with enterprise GitHub workflows:
- Branch protection, CODEOWNERS, PR approvals
- GitHub Actions for CI/CD
- OIDC-based AWS authentication
- Strong understanding of GitOps practices
Security & Compliance
- Experience implementing:
- Least privilege IAM and permission boundaries
- Secure secrets handling
- Approval workflows and separation of duties
- Experience in regulated or security-focused environments preferred
What You’ll Bring
- Strong troubleshooting and operational mindset
- Ability to support shared platforms across multiple teams
- Clear documentation and communication skills
