Senior Infrastructure Engineer

About the Role

We are looking for a Senior Infrastructure & DevOps Engineer to manage and scale our multi-cloud and on-prem environments, including air-gapped deployments in highly secure banking environments. You will handle Windows and Linux servers, web and database platforms, networking and VPNs, firewalls, and Cloudflare services. You'll also build CI/CD pipelines, implement Infrastructure as Code, manage observability with Prometheus/Grafana/Wazuh, and ensure reliability, security, and compliance (ISO 27001, PCI DSS), including backup and disaster recovery.

Key Responsibilities

Infrastructure & Systems

Administer Windows & Linux servers in cloud and isolated on-prem environments.

Manage web servers (IIS, Apache/Nginx) and databases (MS SQL, PostgreSQL, MySQL).

Manage domain controllers and related services, including Active Directory roles, replication, and group policy enforcement.

Handle directory services: Active Directory and Entra ID (Azure AD).

Oversee snapshots and backups.

Networking & Security

Design and maintain secure networks: VLANs, DNS/DHCP, load balancers.

Configure VPNs (IPSec/OpenVPN/WireGuard) for site-to-site and remote access.

Administer firewalls and WAF; manage Cloudflare (DNS, CDN, WAF, Zero Trust).

Apply Zero Trust, MFA/SSO, and secrets management.

Manage security solutions such as Kaspersky or equivalent tools to ensure device protection and compliance.

DevOps & Automation

Build and maintain CI/CD pipelines using open-source tools.

Implement Infrastructure as Code (Terraform, Ansible) for provisioning and configuration.

Manage and troubleshoot containerized environments using Docker and Kubernetes, including deployment, scaling, and monitoring.

Monitoring & Compliance

Deploy Prometheus and Grafana for metrics and dashboards.

Operate Wazuh for SIEM/XDR (agent rollout, alert tuning, integrations).

Ensure compliance with ISO 27001 and PCI DSS standards.

Maintain audit-ready documentation and enforce security best practices.

Reliability & Disaster Recovery

Architect for high availability and fault tolerance.

Design and maintain Backup & Disaster Recovery plans (RPO/RTO, immutable backups, DR drills).

Support air-gapped environments with strict security and operational controls.

Required Qualifications

710 years of experience in IT Infrastructure, DevOps, or related roles.

Strong Windows & Linux administration experience.

Expertise in web servers (IIS, Apache/Nginx) and databases (MS SQL, PostgreSQL, MySQL).

Hands-on with VPNs, firewalls, and Cloudflare.

Experience with CI/CD, IaC (Terraform, Ansible), and containerization (Docker, Kubernetes).

Ability to work with air-gapped environments and strict security controls.

Scripting skills (PowerShell, Bash, or Python).

Preferred Qualifications

Familiarity with Prometheus, Grafana, and SIEM tools (e.g., Wazuh).

Advanced Cloudflare (Zero Trust, tunnels, WAF tuning).

Backup/DR tooling (Veeam, restic, Bacula).

Endpoint management (Intune/MDM), CIS hardening benchmarks.

Experience in regulated industries (finance, banking, e-commerce).

Knowledge of ISO 27001 and PCI DSS implementation.

Interpersonal & Language Skills

Strong sense of accountability and ownership of tasks and outcomes.

Proven ability to work effectively in team environments, collaborating across functions.

Excellent problem-solving and adaptability in dynamic and complex situations.

Clear and professional communication skills, both written and verbal.

Mid to high English proficiency required for documentation, meetings, and cross-team collaboration.

Ability to manage priorities, meet deadlines, and contribute to a culture of continuous improvement.

What We Offer

Competitive compensation package.

Ownership of infrastructure and DevOps strategy.

A collaborative environment with high impact and autonomy.