Senior DevOps Engineer (AWS, IAM/CloudFormation, English)

Building Products & Systems that Shape the Future

KMS Technology is a strategic engineering company helping businesses turn bold ideas into high-impact solutions—faster. Founded in 2009 as a U.S.-based services company, we’ve grown into a global organization with locations in the US, Vietnam, Mexico and Poland. KMS is trusted globally for the quality of our engineering and consulting services. We bring deep expertise in product development and quality assurance, Data & AI-native engineering, and delivery excellence to every engagement. Our mission is to help customers build what’s next—accelerating innovation, crafting brilliant solutions, and creating  real-world impact. At KMS, we believe sustainable growth is built on the success of our clients and employees, and in making a lasting contribution to our communities.

More about KMS Technology:

Website: https://kms-technology.com 

Linkedin: https://www.linkedin.com/company/kms-technology

• Work directly with global clients and onshore SRE / Platform teams to investigate AWS environments, understand business needs, and propose DevOps / cloud security solutions.
• Analyze and remediate AWS security findings, including misconfigurations, exposed credentials, overly permissive IAM policies, and related vulnerabilities.
• Design, implement, and review AWS IAM policies, roles, SCPs, and permission boundaries following least-privilege principles.
• Drive structured remediation workflows from issue analysis to deployment across multiple AWS accounts and environments.
• Contribute to or review Infrastructure as Code, especially CloudFormation, to ensure repeatable and auditable remediation.
• Maintain, monitor, troubleshoot, and improve secure AWS infrastructure across multi-account / multi-environment setups.
• Join architecture discussions and provide recommendations on AWS security, scalability, reliability, and best practices.
• Support AI-assisted or automation workflows to improve remediation efficiency.
• Provide mentoring / technical guidance for junior members if any.
• Perform other tasks assigned by the Leader / Manager.

General requirements:

• At least Intermediate level for English communication, with ability to work directly with international clients and onshore teams.
• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Likely having 6+ years of DevOps / SRE / Cloud Infrastructure experience, including 4+ years of hands-on AWS experience.
• Ability to independently explore, investigate, and understand complex client environments with minimum guidance.
• Strong problem-solving, troubleshooting, ownership, and self-learning mindset.
• Security-first mindset, with ability to understand, prioritize, and act on cloud security findings.

Technical requirements:

• Strong hands-on experience with AWS in DevOps, SRE, Cloud Infrastructure, or Cloud Security roles.
• Strong working knowledge of AWS IAM, including roles, policies, SCPs, permission boundaries, and least-privilege design.
• Experience analyzing and remediating cloud security findings from Wiz or similar CSPM tools such as Prisma Cloud, AWS Security Hub, etc.
• Strong experience with Infrastructure as Code, with CloudFormation strongly preferred; Terraform / CDK is a plus.
• Solid understanding of AWS networking, including VPC, Security Groups, VPN, Transit Gateway, and related security configurations.
• Experience managing multi-account / multi-environment AWS setups.
• Experience maintaining, monitoring, troubleshooting, and improving secure, scalable AWS infrastructure.
• Experience with CI/CD pipelines and deployment workflows across multiple environments.
• Proficiency in scripting languages such as Python, Bash, or PowerShell.
• Familiarity with containers, microservices, and cloud deployment practices is a plus.

Nice to have:

• AWS certifications such as AWS Security Specialty, Solutions Architect, or DevOps Engineer Professional
• Experience with PHP applications on AWS, especially during infrastructure migration or remediation is a big plus
• Familiarity with enterprise compliance, security governance, or regulated environments
• Experience using AI chat tools (ChatGPT, Claude, Gemini, etc.) for research, debugging, and learning
• Familiarity with at least one AI coding assistant (GitHub Copilot, Cursor, Claude Code, or similar)
• Ability to write clear, contextual prompts to generate code snippets, unit tests, or documentation
• Awareness of AI output limitations and responsible AI use (data privacy, handling of sensitive client data)

Perks You'll Enjoy 

• Working in one of the Best Places to Work in Vietnam
• Building large-scale & global software products
• Working & growing with Passionate & Talented Team
• Diverse careers opportunities with Software Outsourcing, Software Product Development, IT Solutions & Consulting
• Attractive Salary and Benefits
• Performance appraisals every year and performance bonus
• Onsite opportunities: short-term and long-term assignments in North American (U.S, Canada), Europe, Asia.
• Flexible working time
• Various training on hot-trend technologies, best practices and soft skills
• Premium healthcare insurance for you and your loved ones
• Company trip, big annual year-end party every year, team building, etc.
• Fitness & sport activities: football, tennis, table-tennis, badminton, yoga, swimming…
• Joining community development activities: 1% Pledge, charity every quarter, blood donation, public seminars, career orientation talks,…
• Free in-house entertainment facilities (foosball, ping pong, gym…), coffee, and snack (instant noodles, cookies, candies…)

And much more, join us and let yourself explore other fantastic things!