Infrastructure Engineer

• Operating as a member of the Infrastructure team, supporting Netcraft’s workloads (Commercial and GovCloud) and improving the developer experience.
• Assisting with the design, implementation and maintenance of Netcraft’s first ever GovCloud estate.
• Ensuring high availability of Netcraft’s products within GovCloud, responding to alerts and incidents within US working hours.
• Deploying a subset of Netcraft’s existing products into the GovCloud estate.
• Implementing and testing security controls, as defined by Netcraft’s Security and Compliance teams, helping us to attain FedRAMP High compliance as well as maintain SOC 2 Type 2 compliance.
• Creating and maintaining detailed documentation of architecture, configurations, processes, and compliance measures, for internal and audit purposes.
• Monitoring the operational health of Netcraft’s AWS environments, identifying and addressing performance bottlenecks, security risks, and any other issues.
• Optimising Netcraft’s usage of AWS services for cost, performance, and security.
• Providing guidance on cloud best practices and security standards.
• Reporting on infrastructure status, security posture, and cost usage to Engineering leadership.
• Participating in Infrastructure team ceremonies.

What you’ll need to be successful:

• You must be based in the United States and be a United States citizen. This role offers the flexibility to work in our offices in Lehi, Utah, or remotely within the United States.
• You must be able to overlap at least 2 hours per day with UK working hours, for real-time communication with Netcraft’s UK engineers. Whilst we prefer East Coast-based candidates, we are open to applicants from anywhere in the United States, as long as you can meet this requirement.
• Ability to obtain and maintain a US Government security and/or vendor clearance. Candidates do not need to be current clearance holders, but must be able to meet eligibility requirements for access to classified information if sponsored for clearance.
• The ability to work in a collaborative team environment, with excellent communication skills for high-latency interactions with engineers in other timezones.
• Hands-on experience with AWS services such as EKS, EC2, OpenSearch, RDS, IAM, Cognito, and AWS WAF.
• Experience deploying and administering Kubernetes workloads.
• Experience with Infrastructure as Code (IaC) tools, particularly Terraform.
• Experience triaging and responding to service alerts, ensuring that customer SLAs are maintained.
• A solid understanding of network architectures, security, and scalability in cloud environments.
• Demonstrable experience with complex AWS networking (TGWs, VPC peering, multi-VPC/subnet networking, AWS Organisations, etc.)
• Knowledge of CI/CD pipelines and cloud automation, to facilitate secure and scalable deployments.
• Experience with system monitoring and performance optimisation, using AWS CloudWatch and CloudTrail.
• A strong focus on automation and operational efficiency, minimising manual intervention wherever possible to enhance system reliability.
• Strong troubleshooting and problem-solving skills, especially in complex, cloud-based infrastructure.
• Experience with AWS cost management and optimisation, using tools like AWS Cost Explorer and AWS Budgets to monitor, manage, and explain AWS spend.

Bonus points if you have:

• Expertise and experience in AWS GovCloud (US) environments, including architecture, security, compliance, and operations.
• Experience with FedRAMP certification (especially FedRAMP High), and/or SOC 2 compliance and auditing processes.
• Experience administering Linux environments, particularly RHEL/CentOS/Rocky.
• Experience with configuration management tools like Puppet, Ansible and Chef.
• A proven track record of implementing and maintaining secure infrastructure in regulated environments.
• Relevant certifications such as AWS Certified Solutions Architect or AWS Certified DevOps Engineer.

The reward package 

• Competitive base salary, reviewed annually.
• 401(k) Safe Harbor Plan, with employer-matched contributions up to 4%.
• Generous private health cover, including dental, optical and life assurance.
• 33 days holiday per annum (incl. public holidays), plus separate paid leave for sickness, etc.
• Flexible and hybrid working options.
• Enhanced family leave entitlements including 52 weeks maternity leave / adoption leave and 4 weeks paternity leave.
• Inclusive culture and environment, where you’ll feel genuinely valued and respected.

Diversity, Equity and Inclusion 

This is very important to us and through our ally network we support under-represented groups. We seek to maintain a working environment that is free from bias, harassment or discrimination, and we encourage candidates from any background to apply, regardless of their gender, gender identity, sexual orientation, race/ethnicity, ability/disability, age, religion, or any other specific characteristics. 

We’re happy to make any adjustments to our hiring process to ensure that all candidates can participate fully and comfortably.

Please note Netcraft does not accept any unsolicited approaches from external recruiters.