[Remote] Cloud Engineer
Note: The job is a remote job and is open to candidates in USA. AllSTEM Connections is seeking a Cloud Engineer responsible for designing, implementing, and maintaining secure, scalable, and reliable cloud-based solutions. The role focuses on optimizing cloud infrastructure, automating deployments, and ensuring compliance with security and performance standards.ResponsibilitiesDesign and deploy cloud architectures across AWS that meet performance, security, availability, and cost-efficiency requirements for a diverse portfolio of enterprise and research applicationsArchitect and implement cloud networking, compute, storage, and identity constructs with security built in from the outset — applying least-privilege principles, network segmentation, encryption, and defense-in-depth across every layerEvaluate and recommend cloud services, architectural patterns, and infrastructure approaches; build evidence-based adoption cases that account for engineering capability, operational cost, and long-term platform sustainabilityImplement and maintain infrastructure-as-code (IaC) frameworks using Terraform, CloudFormation, Ansible, or equivalent — making infrastructure provisioning repeatable, auditable, and developer-friendlyBuild and maintain CI/CD pipelines for cloud infrastructure and application deployments; ensure changes are tested, validated, and deployed safely with automated rollback capabilityDrive automation of operational tasks — patching, scaling, monitoring, alerting, and cost optimization — reducing manual intervention and improving platform reliability and response timeEnsure cloud environments comply with client's security standards, regulatory requirements, and data governance policies; implement and maintain controls for identity management, secrets management, audit logging, and encryption at rest and in transitMonitor cloud security posture continuously; identify and remediate misconfigurations, drift, and policy violations — integrating CSPM tooling into operational workflows for proactive compliance managementPartner with Cybersecurity teams to align cloud platform security with enterprise threat models and applicable regulatory frameworks including GxP, 21 CFR Part 11, HIPAA, and SOX where relevantMonitor cloud environments for performance, availability, and cost efficiency; proactively identify waste, right-size resources, and drive FinOps practices that deliver cloud value without unnecessary spendContribute to platform engineering standards, reference architectures, and guardrails that simplify how development teams consume cloud infrastructure correctly and consistentlyTroubleshoot and resolve cloud infrastructure issues with urgency and precision; contribute to post-incident analysis and implement preventive improvements that reduce recurrenceSkillsBachelor's degree in Computer Science, Information Technology, or a related field — or equivalent professional experience3+ years of hands-on cloud engineering experience in a production AWS enterprise environmentDemonstrated proficiency with infrastructure-as-code tools (Terraform, CloudFormation, Ansible, or equivalent) and version control (Git)Proficiency in scripting languages (Python, Bash, or equivalent) for automation and tooling developmentStrong understanding of cloud networking, virtualization, containerization (Docker, Kubernetes), and cloud security principlesExperience with CI/CD pipelines and DevOps practices in a cloud-native contextAWS Certified Solutions Architect (Associate or Professional), AWS DevOps Engineer, or Azure Administrator/Architect certification strongly preferredExperience with FinOps practices and cloud cost optimization at enterprise scaleFamiliarity with monitoring and observability platforms (Prometheus, Grafana, Splunk, CloudWatch, Azure Monitor, or equivalent)Experience in pharmaceutical, healthcare, life sciences, or other regulated industries — particularly with GxP, 21 CFR Part 11, or HIPAA cloud compliance requirementsExperience with Kubernetes in production (EKS, AKS, or self-managed) including cluster operations and workload managementBackground in cloud security architecture: IAM design, secrets management, network security groups, and cloud-native security tooling3 years of experience delivering in an Agile methodologyCompany OverviewAllSTEM Connections is a provider of staffing and recruiting services. It was founded in undefined, and is headquartered in Ontario, California, USA, with a workforce of 501-1000 employees. Its website is https://www.allstemconnections.com.