Senior AWS Cloud Engineer

About The Position

Requirements

• 5–8+ years of hands-on AWS engineering experience in production environments.
• Deep expertise with AWS core services including EC2, S3, VPC, RDS, IAM, load balancers, monitoring, and networking.
• Strong Terraform experience (module design, state management, scalable deployments).
• Proficiency deploying applications using Helm, containers, and orchestration platforms.
• Strong networking and identity integration skills, including SCIM and Azure AD.
• Experience installing/configuring middleware, databases, messaging systems, and platform components.
• Proven ability to diagnose and resolve complex infrastructure and distributed system issues.
• Excellent communication and documentation skills.
• Strong problem solving abilities with full ownership of tasks end to end.
• Comfortable collaborating across multiple internal teams and external partners.
• Ability to work independently within EST aligned hours.
• Ability to use and working knowledge of computers/strong typing skills
• Good interpersonal communication
• Must maintain confidentiality and privacy
• Professional appearance; grooming and dress consistent with MB appearance policy
• Varied work with a normal expenditure of energy and little or no unusual physical effort
• May involve incidental business machine operations
• Work involves intermittent periods of moving and being stationary
• Working conditions include well-lit and well-ventilated areas
• Travel to other Mascoma Bank locations is required for training and occasional meetings

Nice To Haves

• Experience working in regulated industries is preferred.
• AWS Solutions Architect – Associate or Professional
• AWS DevOps Engineer – Professional
• AWS SysOps Administrator - Associate or Professional
• Terraform Associate
• Kubernetes Certifications

Responsibilities

• Cloud Architecture & Strategic Design: Develop scalable, secure AWS architectures aligned with business and technical requirements. Evaluate emerging AWS services, industry trends, and best practices to influence cloud strategy. Design and govern AWS account structures, security boundaries, and multi account landing zones. Contribute to architectural standards, technical roadmaps, and modernization initiatives.
• Infrastructure Deployment & Automation: Provision infrastructure using Terraform, including module development, state management, and workflow governance. Deploy applications and platform components using Helm, container orchestrators, and automated CI/CD pipelines. Build reusable IaC patterns and deployment automation to support repeatable, scalable environments. Integrate automated testing, validation, and quality controls into delivery pipelines.
• Application & Platform Engineering: Lead containerization efforts: Package and deploy Docker containers and manage and orchestrate these containers at scale using Kubernetes (AKS). Install and configure databases (Postgres, Redis), messaging systems (ActiveMQ Artemis, Kafka), middleware (JBoss/Camunda), and API gateways. Execute complex integration and configuration tasks required for platform readiness. Support application teams with cloud native design, environment setup, and troubleshooting.
• Networking & Identity Integration: Architect and support hybrid network connectivity including AWS PrivateLink, VPNs, and inter environment routing. Implement and maintain identity integrations including SCIM provisioning, IAM roles, and federated access controls. Ensure alignment with enterprise authentication, authorization, and attribute workflows.
• Security, Compliance & Governance: Implement security guardrails (SCPs, Config Rules, IAM policies) and enforce least privilege controls. Partner with the Risk & InfoSec teams to support compliance frameworks (FFIEC, PCI, GLBA, etc.). Participate in and collaborate on cloud threat modeling, vulnerability remediation, and incident response activities. Ensure logging, auditing, and monitoring meet enterprise and regulatory standards.
• FinOps & Cost Optimization: Monitor and analyze AWS spend, usage patterns, and cost anomalies. Implement cost optimization techniques such as rightsizing, lifecycle policies, and Savings Plans. Provide recommendations balancing performance, reliability, and cost efficiency. Partner with leadership to support cloud budgeting and forecasting.
• Observability, Reliability & Operational Readiness: Implement metrics, logging, distributed tracing, and alerting through CloudWatch, VPC Fflow Logs, CloudTrail, or similar tools. Design resilient cloud architectures using multi AZ, multi Region, auto scaling, and self healing patterns. Participate in on call rotations and lead incident resolution for complex issues. Develop runbooks, playbooks, and operational standards to ensure production readiness.
• Cross Team Collaboration & Leadership: Serve as a technical lead for cloud projects, guiding architecture, tooling, and engineering direction. Collaborate closely with engineering, security, product, and vendor teams to drive cohesive cloud initiatives. Provide mentorship, training, and knowledge transfer to internal engineering and operations teams. Communicate complex cloud concepts effectively to both technical and non technical stakeholders.

Benefits

• Competitive compensation.
• Flexible work environment with onsite, remote and hybrid opportunities.
• Career development and internal career mentorship.
• Comprehensive health care, dental care, and vision.
• 401(K) Program: 4% safe harbor employer match on top of 5% non-elective contributions following one year of service.
• Generous PTO starting at 22 days per year, not including 11 paid holidays and 16 hrs. of Volunteer Time Off.
• Tuition Reimbursement.
• Student Loan Paydown and so much more!