×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer AWS

Infrastructure as Code; IaC Engineer

Job in Grand Rapids, Kent County, Michigan, 49528, USA
Listing for: Stefanini Group
Full Time position
Listed on 2026-05-22
Job specializations:
  • IT/Tech
    Systems Engineer, AWS
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Infrastructure as Code (IaC) Engineer

Job Summary

We are seeking an experienced Infrastructure as Code (IaC) Engineer (Contract) to support a centralized cloud enablement team. The role involves building, deploying, and operating standardized AWS infrastructure using Terraform, Spacelift, Rundeck, and Git Hub.

The engineer will create and maintain reusable IaC patterns, build and deployment automation, and enforce governance controls that enable secure, scalable self‑service infrastructure across a multi‑account AWS environment. The contractor will work closely with platform, security, and application teams to deliver reliable, compliant solutions.

Essential Functions
  • Design, build, and maintain Terraform modules and IaC patterns used by multiple delivery teams.
  • Implement and operate Terraform deployments via Spacelift, including stack design, approvals, drift detection, and environment promotion.
  • Develop and maintain Rundeck jobs for AWS operational automation, break‑glass actions, and platform support workflows.
  • Build and support Git Hub‑based CI/CD pipelines using Git Ops principles (PR‑driven change control).
  • Establish and enforce AWS standards for account structure, environments, tagging, cost allocation, ownership, security, access control, and auditability.
  • Implement secure automation using IAM roles, OIDC, and least‑privilege access.
  • Collaborate with application and platform teams to onboard workloads to standardized IaC tooling.
  • Produce and maintain documentation, runbooks, and onboarding guides.
  • Troubleshoot IaC, pipeline, and automation failures; participate in root‑cause analysis as needed.
Technical Skills – Must Have
  • AWS Cloud expertise (Organizations, SCPs, multi‑account strategies, cross‑account IAM role design,ingress bootstrapping).
  • Git Hub & CI/CD experience (branch protection, CODEOWNERS, required reviews, Git Hub Actions, OIDC).
  • Operational & collaboration skills (Rundeck operational automation, job security, RBAC, approvals, credential management).
  • Security & compliance (least‑privilege IAM, permission boundaries, secure secrets handling, approval workflows, separation of duties).
  • Spacelift (Terraform orchestration) – stack and dependency design, environment promotion, approvals, drift detection, and scheduled runs.
  • Terraform experience in production AWS environments (5+ years), including module design, remote state using S3 & Dynamo

    DB, multi‑account & multi‑environment deployments, and standards enforcement.
  • Hands‑on provisioning of AWS services via Terraform (IAM, VPC, networking, EC2/Auto Scaling, EKS/ECS, S3, RDS, Cloud Watch, KMS).
Technical Skills – Nice to Have
  • Experience migrating teams into centralized IaC or platform tooling.
  • Fin Ops experience (cost tagging, chargeback/showback).
  • Policy‑as‑code exposure (OPA, Sentinel, or equivalent).
  • Terraform tooling: tflint, checkov, tfsec, infracost.
Qualifications
  • 5+ years of hands‑on Terraform experience in production AWS environments.
  • Advanced experience with module design, reuse, and versioning; remote state using S3 and Dynamo

    DB; multi‑account and multi‑environment deployments; standards enforcement via validation and lifecycle rules.
  • Experience supporting centralized Terraform modules consumed by many teams.
  • Strong, practical experience with AWS Organizations, SCPs, cross‑account IAM role design, bootstrapping accounts/landing zones.
  • Hands‑on experience provisioning AWS services via Terraform (IAM, VPC, networking, EC2/Auto Scaling, EKS/ECS, S3, RDS, Cloud Watch, KMS).
  • Production experience using Spacelift for Terraform (stack/design, environment promotion, approvals, worker configuration, drift detection, scheduled runs, integration with AWS IAM and Git Hub workflows).
  • Experience designing and operating Rundeck jobs for AWS infrastructure operations (job security, RBAC, approvals, credential management, error handling, retries, notifications).
  • Enterprise Git Hub experience (branch protection, CODEOWNERS, PR‑based change control, Git Hub Actions, OIDC).
  • Strong understanding of Git Ops delivery models.
  • Experience implementing least‑privilege IAM, permission boundaries, secure secrets handling (no credentials in code), approval workflows, separation of duties.
  • Ability to embed security and compliance into IaC pipelines rather than manual processes.
  • Experience in regulated or risk‑sensitive environments preferred.
  • Strong troubleshooting and operational mindset; experience supporting shared platforms used by many teams.
  • Ability to document solutions clearly and enable team adoption.
  • Strong communication skills and comfort working with cross‑functional stakeholders.
Employment Details

Contract position (W2), 100% Hybrid location. Monthly and ad‑hoc project meetings. Expenses not allowed. Client equipment to be provided.

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search