Platform Engineer

S5 Analytics-posted 2 days ago
Full-time • Mid Level
Onsite • Aurora, CO
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

At S5, we offer a leading-edge compensation package that includes top-tier salaries, up to 25% profit sharing into a qualified retirement account, flexible PTO, and company paid medical, vision and dental premiums for you and your family. You'll join a team of innovative engineers committed to innovation and excellence. We prioritize professional growth and team cohesion through technical trainings, team dinners, retreats, and an annual fully sponsored off-site. Our culture is built to support your career development, personal well-being, and long-term success. Position Description: Own the reliability, security, and velocity of our AWS-based platforms. You'll design, build, and operate the cloud foundation (networking, IAM, CI/CD, observability, runtime) that lets product teams ship fast, safely, and cost-effectively. Platform Architecture: Design and evolve multi-account AWS Landing Zones (Control Tower/SCPs), VPC architectures, and secure networking (Transit Gateway, PrivateLink, VPC Endpoints, Route 53, ALB/NLB). Infrastructure as Code: Build everything as code using Terraform/OpenTofu or AWS CDK; enforce drift detection, reviews, and automated testing. Runtime & Containers: Operate EKS/ECS and Lambda platforms; define golden images, Helm charts, and deployment patterns (blue/green, canary). CI/CD: Own pipelines (GitLab CI/Jenkins/GitHub Actions/Argo CD) for infra and app delivery; implement reusable templates and policy checks. Observability: Implement metrics, logs, and traces (CloudWatch, OpenSearch, Prometheus/Grafana, OpenTelemetry); set SLOs, SLIs, alerts, and runbooks. Security & Compliance: Apply least-privilege IAM, key management (KMS), secrets (SM/SSM), GuardDuty/Inspector controls; support ATO/IATT, FedRAMP/DoD SRG, STIG-aligned baselines. Data/Services Enablement: Provide managed patterns for S3, DynamoDB/RDS, API Gateway, Step Functions, SQS/SNS, OpenSearch, CloudFront. Reliability & Ops: Drive capacity planning, cost optimization, backup/DR, chaos/ game days, and incident response with postmortems that fix root causes. Developer Experience: Build self-service portals, templates, and docs; streamline onboarding and reduce time-to-first-deploy.

  • Own the reliability, security, and velocity of our AWS-based platforms.
  • Design, build, and operate the cloud foundation (networking, IAM, CI/CD, observability, runtime) that lets product teams ship fast, safely, and cost-effectively.
  • Design and evolve multi-account AWS Landing Zones (Control Tower/SCPs), VPC architectures, and secure networking (Transit Gateway, PrivateLink, VPC Endpoints, Route 53, ALB/NLB).
  • Build everything as code using Terraform/OpenTofu or AWS CDK; enforce drift detection, reviews, and automated testing.
  • Operate EKS/ECS and Lambda platforms; define golden images, Helm charts, and deployment patterns (blue/green, canary).
  • Own pipelines (GitLab CI/Jenkins/GitHub Actions/Argo CD) for infra and app delivery; implement reusable templates and policy checks.
  • Implement metrics, logs, and traces (CloudWatch, OpenSearch, Prometheus/Grafana, OpenTelemetry); set SLOs, SLIs, alerts, and runbooks.
  • Apply least-privilege IAM, key management (KMS), secrets (SM/SSM), GuardDuty/Inspector controls; support ATO/IATT, FedRAMP/DoD SRG, STIG-aligned baselines.
  • Provide managed patterns for S3, DynamoDB/RDS, API Gateway, Step Functions, SQS/SNS, OpenSearch, CloudFront.
  • Drive capacity planning, cost optimization, backup/DR, chaos/ game days, and incident response with postmortems that fix root causes.
  • Build self-service portals, templates, and docs; streamline onboarding and reduce time-to-first-deploy.
  • 4+ years in platform/SRE/devops roles building on AWS at scale.
  • Strong IaC (Terraform/OpenTofu or CDK) and cloud networking fundamentals.
  • Solid CI/CD design and pipeline automation; artifact/versioning best practices.
  • Hands-on with observability stacks and on-call operations (SLOs, alerting, runbooks).
  • Security-first mindset: IAM policy design, network isolation, secrets, patching.
  • Proficient in one or more languages: Python
  • DoD/IC program experience; familiarity with ATO/IATT, RMF, and DoD SRG.
  • Experience with Control Tower, Organizations, SCPs, SSO, multi-region designs.
  • Data platform patterns (eventing with SNS/SQS/Kinesis; ETL with Step Functions/Lambda).
  • Cost governance (budgets, anomaly detection, tagging/FinOps).
  • Tools: Packer, Helm, Argo CD, Vault, HashiCorp Suite, Grafana Loki/Tempo, Falco.
  • Certifications (AWS SA/DevOps Pro) are a plus, not required.
  • top-tier salaries
  • up to 25% profit sharing into a qualified retirement account
  • flexible PTO
  • company paid medical, vision and dental premiums for you and your family
  • technical trainings
  • team dinners
  • retreats
  • annual fully sponsored off-site
  • comprehensive benefits package
  • retirement plan
  • bonus opportunities
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Platform Engineer Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service