Job Title: Senior DevOps Engineer (AWS & Cloud Security)
Experience Required: 10+ Years (Hands-On)
Location:
[Dublin 1 / Hybrid]
Employment Type:
Full-Time
Some International travel required
Salary starting from €80,000
About FoodHub
FoodHub is a leading global technology platform transforming the way people connect with restaurants and food experiences. With operations spanning multiple continents, we are driven by innovation, customer focus, and a strong commitment to creating value for our partners and communities. At FoodHub, our people are at the heart of everything we do — we believe in fostering a culture of collaboration, growth, and inclusivity, where every employee can thrive and make an impact.
About the Role
We are looking for an experienced
Senior DevOps Engineer
with deep hands-on expertise in
AWS
and a strong focus on
cloud security, governance, and DevSecOps
. You will design and secure cloud-native infrastructure, automate operational workflows, and ensure the highest levels of
security, reliability, and compliance
across our environments.
You will be a
key technical influencer within a 200+ person engineering organization
, helping define cloud and DevSecOps standards, shaping platform and security best practices, and guiding teams toward scalable, secure, and efficient delivery patterns.
This role is
highly technical and strategic
, offering significant autonomy and playing a central role in our ongoing cloud transformation efforts.
Key Responsibilities
* Design, secure, and maintain
AWS cloud infrastructure
following best practices for reliability, performance, and compliance.
* Implement and manage
security controls
across AWS services (IAM least privilege, KMS encryption, WAF, GuardDuty, Inspector, Security Hub, Secrets Manager).
* Architect and enforce
network security
standards including VPC segmentation, subnet hardening, private connectivity, and firewall management.
* Build end-to-end
CI/CD pipelines
with integrated security scanning (SAST, SCA, IaC scanning, container scanning).
* Lead
DevSecOps initiatives
, embedding security into build, deployment, and release workflows.
* Implement
infrastructure as code (IaC)
using Terraform, CloudFormation, or CDK, with secure-by-default configurations.
* Manage container security for Docker and EKS/Kubernetes (admission controllers, RBAC, pod security policies, image validation).
* Establish
logging, monitoring, and threat detection
frameworks using CloudWatch, GuardDuty, Prometheus, Grafana, or SIEM tools.
* Conduct
vulnerability management
, remediation, and periodic cloud security reviews.
* Develop and automate
incident response runbooks
, playbooks, and alerting mechanisms.
* Collaborate with security teams to meet compliance frameworks (SOC2, ISO27001, GDPR, HIPAA as needed).
* Mentor engineers on secure cloud architecture, DevOps maturity, and automation best practices.
Required Qualifications
* 10+ years of hands-on experience in DevOps, SRE, or Cloud Engineering roles.
* Hands on experience in Budget planning and monitoring.
* Deep expertise with
AWS cloud architecture and AWS security services
.
* Expert in infrastructure as code (Terraform, CloudFormation, or CDK) with secure deployment patterns.
* Strong background in
Linux
, scripting (Python, Bash), and automation.
* Significant experience with
Kubernetes/EKS
, container orchestration, and container security.
* Strong understanding of security fundamentals: identity management, encryption, network security, authentication/authorization, and secrets handling.
* Hands-on experience implementing
security monitoring, alerting, logging
, and SIEM integrations.
* Knowledge of application and image security for CI/CD workflows.
* Experience with vulnerability scanning and remediation in cloud environments.
Preferred Qualifications
* AWS Security Specialty, AWS Solutions Architect, or AWS DevOps Engineer certification.
* Experience with
Zero-Trust architectures
, SSO/OIDC, and enterprise identity platforms (Okta, Azure AD).
* Background with regulatory compliance frameworks such as SOC2, ISO27001, PCI-DSS, or NIST.
* Experience with serverless security (Lambda hardening, API Gateway authorization).
Soft Skills
* Ability to influence engineering teams on secure design and best practices.
* Strong communication skills for partnering with security, development, and executive teams.
* Analytical thinker with strong problem-solving and incident resolution capabilities.
Benefits
* Competitive compensation and benefits package.
* Direct mentorship from industry experts and ample opportunities for skill development.
* Dynamic and collaborative work environment where your contributions will make a tangible impact.
* Chance to work on exciting projects that will challenge and expand your technical abilities.
* Remote-hybrid role, based in Dublin, Ireland.
* 33 days annual leave per year (including public holidays).
* Option to buy up to 5 additional annual leave days per year.
* Guaranteed day off on your birthday (when requested).
* Option to purchase Bupa Select Complete Health Insurance (Medical History Disregarded) for self and family at a significantly discounted rate.
* €35 monthly gym contribution.