Key Responsibilities
Infrastructure Design & Management:
- Architect and manage scalable, multi-tenant AWS-based infrastructure using AWS CDK, ensuring modular and maintainable codebases.
- Kubernetes & EKS: Lead the deployment and management of Kubernetes clusters using Amazon EKS, implementing best practices for scalability and security.
- CI/CD Pipelines: Build, manage, and enhance automated CI/CD pipelines to ensure efficient, reliable deployments using tools like ArgoCD and GitHub Actions.
- IAM Role Management: Design, maintain, and optimize IAM roles, policies, and guardrails to ensure least privilege access across AWS resources.
- Networking: Architect and maintain AWS networking components such as VPCs, Transit Gateway, ALB, and Security Groups, ensuring robust security and performance.
- Security & Compliance: Implement DevSecOps best practices, including IAM security, encryption standards, and compliance with industry regulations (GXP, GDPR, HIPAA, NIST).
- AWS WAF & Firewall Policies: Design and implement firewall policies and AWS WAF configurations to protect applications from web threats.
- Automation: Lead efforts to automate infrastructure provisioning, application releases, and ETL workflows, reducing manual intervention and improving efficiency.
- Monitoring & Incident Response: Develop and implement comprehensive monitoring, logging, and alerting systems using OpenTelemetry, Prometheus, Grafana, AWS CloudWatch, and AWS CloudTrail.
- AWS EventBridge & CloudTrail: Utilize AWS EventBridge for event-driven automation and troubleshoot security and operational issues using AWS CloudTrail.
- Governance & Strategic Input: Drive governance processes, including security reviews, cost optimization, and operational consistency across the platform.
- AWS Control Tower & Multi-Account Management: Manage multiple AWS accounts using AWS Control Tower and best practices for account isolation.
- AI & Machine Learning: Exposure to AI tools and frameworks is a plus.
- Mentorship & Leadership: Mentor and guide junior and mid-level engineers, fostering a culture of learning and collaboration. Provide technical leadership in the adoption of AWS CDK and best practices for cloud automation.
- Collaboration: Partner with cross-functional teams, including product management and security, to align DevOps strategies with business goals and ensure cohesive development and operational workflows.
Required Experience & Qualifications
- Experience: 10+ years in DevOps or cloud infrastructure roles, with significant experience in SaaS and multi-tenant platforms. Proven track record of managing and/or mentoring team members in Cloud infrastructure related projects.
- Cloud Expertise: Expert knowledge of AWS services, including VPC, IAM, EC2, S3, RDS, Lambda, EKS, AWS WAF, AWS EventBridge, and AWS CloudTrail.
- Containerization & Orchestration: Deep proficiency in Docker, Kubernetes, Helm, and associated ecosystem tools.
- CI/CD Proficiency: Expertise in CI/CD tools such as ArgoCD and GitHub Actions.
- Infrastructure as Code (IaC): Advanced experience with AWS CDK (TypeScript preferred) and CloudFormation.
- Networking: Strong understanding of AWS networking services such as VPCs, Transit Gateway, ALB, and Security Groups.
- Security: In-depth knowledge of IAM, AWS KMS, encryption standards, AWS WAF, and security compliance frameworks including NIST.
- Monitoring & Alerting: Extensive experience with OpenTelemetry, Prometheus, Grafana, AWS CloudWatch, and AWS CloudTrail for monitoring and incident response.
- Data & ETL Pipelines: Familiarity with AWS Glue and Managed Kafka for real-time and batch data processing.
- Programming & Automation: Strong scripting and automation skills using TypeScript and Bash.
- Multi-Account AWS Management: Experience managing multiple AWS accounts with AWS Control Tower.
- Communication & Collaboration: Exceptional verbal and written communication skills, with the ability to explain complex technical concepts to diverse stakeholders.
Desired Experience & Qualifications
- Advanced expertise in AWS CDK, including building complex, reusable constructs and pipelines.
- Familiarity with Projen for automating CDK project configuration and management.
- Hands-on experience with Helm charts and Kubernetes manifests.
- Experience with monitoring and logging tools such as Prometheus, Grafana, and AWS CloudWatch.
- Exposure to multi-tenant SaaS platforms and best practices.
- Experience working with AI tools and frameworks.
Personal Attributes
- Mentor & Leader: Enjoys managing and mentoring team members, and fostering a collaborative, innovation-driven team culture.
- Organized & Adaptable: Able to manage multiple priorities and thrive in a fast-paced environment.
- Innovative: Passionate about leveraging technology to solve complex problems and drive efficiency.
- Customer-Focused: Dedicated to building infrastructure that delivers measurable business and customer value.
Work Arrangement:
This is an in-office role based in Shanghai, China, with a requirement to work a minimum of three days per week on-site. Remote or travel flexibility is not available.
Join Evinova and redefine healthcare with us. Apply now to be part of a team that’s transforming life sciences with technology, data, and innovation.