Description
The Space Telescope Science Institute (STScI) is a multi-mission science and operations center for NASA's flagship observatories. The Cloud Center of Excellence at STScI is seeking a Senior AWS Cloud SysOps/DevOps Engineer to join our team working on NASA flagship Space Telescope missions that are revolutionizing our understanding of the universe. Applicants must be a U.S. citizen or Permanent Resident for ITAR compliance.
In this role, you'll support cloud infrastructure automation initiatives and leverage DevOps practices and CI/CD pipelines to implement robust automation and monitoring systems using modern engineering and operations frameworks for the AWS cloud applications and environment. This will support our space observatories, including the Hubble Space Telescope, the James Webb Space Telescope, and the Nancy Grace Roman Space Telescope (Roman). Roman is a survey telescope slated for launch in late 2026 and is expected to generate 20 PB of data in 5 years.
The data from Roman will primarily be processed in the Cloud. Additionally, a Science Platform hosted in the Cloud will enable transformational science with Roman data by providing a rich computing environment that allows broad, low-barrier access to data, computing, and software resources.
STScI also hosts the Mikulski Archive for Space Telescopes (MAST), which contains data from more than 20 missions. In this role, you will collaborate with cross-functional teams to design, deploy, and maintain secure cloud architectures, automate security processes, and ensure compliance with industry regulations and best practices. Your expertise in AWS cloud infrastructure automation, Infrastructure as Code (IaC), and DevOps principles will be vital in supporting Roman and enabling world-class scientific discoveries through these pioneering telescope programs.
This role will be part of the DevOps/Cloud Center of Excellence (CCoE) team, responsible for helping roll out new CI/CD templates to the engineering teams and the continued improvement of these pipelines. You will work closely with the Science, Engineering, IT, Quality Assurance, Security, and Site Reliability Engineering teams to improve automation and the adoption of CI/CD best practices.
Key Responsibilities
Identity & Access Management: Design and implement solutions to drive improvements in IAM, emphasizing automation, efficiency, and scalability.
IAM Asset Management: Build and review IAM assets, including policies for application and DevOps teams, and enhance capabilities within the existing IAM framework.
System Performance: Analyze, tune, and plan capacity for STScI's systems residing in AWS. Investigate, analyze, test, and recommend technology improvements, best practices, standardization, scaling, upgrades, cost optimizations, and modifications to the infrastructure and cloud services.
Operating Systems Support: Perform complex analysis to acquire, install, modify, and support operating systems, software, databases, scripts, utilities, tools, and security standards.
Automation Management: Lead the administration and systems management with automation, including Amazon Machine Images (AMIs) and containers in development, test, and production cloud-hosted environments.
Monitoring and Response: Proactively monitor the health and utilization of AWS resources using Amazon CloudWatch, DataDog, etc., and develop automated event-based response systems as needed.
Infrastructure Automation: Build, deploy, and support automation for cloud instances and container frameworks, including regular maintenance, monitoring, patching, compliance management, and ensuring a secure environment.
IaC Management: Build, deploy, and manage Infrastructure as Code (IaC) with automation for infrastructure running on AWS cloud.
Issue Resolution: Work directly with AWS support engineers to identify and resolve issues.
Technical Skills and Abilities
AWS Cloud Services: Significant hands-on experience and an understanding of best practices with AWS cloud services, including infrastructure, security, networking, databases, code pipelines, and cost optimization.
Identity Provider Solutions: Experience using Identity Provider solutions like Active Directory, Okta, or PingIdentity and SSO.
Linux & AWS Services: Strong knowledge of Linux and AWS services such as Compute, RDS, Container, VPC, Storage Services, Security Groups, High Availability, S3, CloudWatch, etc., including zero trust infrastructure management.
Scripting Skills: Required scripting skills (shell scripts; Python preferred) and familiarity with CloudFormation, Terraform, JSON, and YAML.
Containerization: Proficient knowledge of containerization and container orchestration.
CI/CD Tools: Experience with Git, Jenkins, GitLab CI, and/or AWS developer tools is required.
Infrastructure Automation: Experience with AWS infrastructure and automation, including VPCs, Security Groups, IAM, etc.
IaC Modules: Experience developing IaC modules for AWS multi-account framework and AWS organizations.
CI/CD Knowledge: Knowledge of CI/CD for DevOps is a plus.
Required Education and Experience
A Bachelor's in Computer Science or equivalent. Minimum 8 years of extensive experience in a related IT, DevOps or application development role with hands-on AWS cloud infrastructure management experience.
Preferred Certifications
AWS Certification "AWS Certified Solutions Architect - Associate," "AWS Certified SysOps Administrator - Associate," or "AWS Certified DevOps Engineer - Professional," or similar certifications are preferred.
Salary range is $115k to $145k. Compensation is commensurate with education and experience. Our excellent benefits include: (https://www.stsci.edu/opportunities/benefits)
Employer retirement contribution - direct STScI contribution of 10% of your salary from your first day
12 days sick leave, up to 24 days' vacation, and 10 paid holidays
Flexible work schedule with healthywork/life balance
Comprehensive medical/dental/vision/prescription plans, and more!
TO APPLY: Please upload a resume, cover letter and online application using this link: AWS Cloud SysOps/DevOps Engineer - Senior Cloud Engineer (https://recruiting2.ultipro.com/SPA1004AURA/JobBoard/93330e50-7b3a-4ba8-94f2-6f32360aa4e1/Opportunity/OpportunityDetail?opportunityId=25d5d5fb-0830-4683-91e0-7cccd6215bf4)
Applications received by 11/25/2024 will receive full consideration. Applications received after this date will be considered until the position is filled.
Explore all career opportunities at www.stsci.edu/opportunities
STScI offers a flexible and welcoming workspace for all. STScI embraces the diversity of our staff as a strategic priority in creating a first-rate community. We strongly encourage women, ethnic minorities, veterans, and disabled individuals to apply for these opportunities. Veterans, disabled individuals, or wounded warriors needing assistance with the employment process can contact us at careers@stsci.edu EOE/AA/M/F/D/V.
As a leader in the astronomical community, AURA is committed to diversity and inclusion. AURA develops and supports programs that advance our organizational commitment to diversity, broaden participation, and encourage the advancement of diversity throughout the workforce www.aura-astronomy.org/diversity.asp
As a recipient of U.S. Government funding, AURA is considered a government contractor subject to Equal Employment Opportunity and Affirmative Action regulations. As an Equal Opportunity and Affirmative Action Employer, AURA and all of the centers do not discriminate based on race, sex, age, religion, national origin, sexual orientation, gender identity/gender identity expression, lawful political affiliations, veteran status, disability, and any other legally protected status under applicable federal, state, and local equal opportunity laws. The statements below, as well as the requests for self-identification, are required under these regulations. We encourage your participation in meeting these federal reporting requirements for protection and assisting us in our record-keeping and reporting. Your responses are kept strictly confidential.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
