Innovate consulting is seeking an Infrastructure as Code Engineer for a cyber security company located in San Francisco, CA!

ABOUT THE ROLE

TachTech is seeking a mid-level Infrastructure as Code Engineer who will own the design,

implementation, and maintenance of customer IaC modules, CI/CD pipelines for infrastructure, and

policy-as-code guardrails. Working closely with customer platform engineering, DevOps, and

security peers, you will build reusable module libraries that enforce organizational standards,

automate environment provisioning across AWS and GCP, manage state and drift, and embed

security policy into every plan and apply so customer infrastructure ships reproducible, auditable,

and secure by default. This position is based in our SF office on a hybrid schedule; candidates

outside the Bay Area who are willing to travel regularly are also encouraged to apply.

RESPONSIBILITIES

Author, review, and maintain Terraform modules for provisioning customer cloud resources

across AWS and GCP.

Design reusable IaC patterns and module libraries that enforce organizational standards and

security guardrails.

Implement CI/CD pipelines for infrastructure changes including plan, validate, and apply

workflows (GitHub Actions, GitLab CI, Atlantis).

Manage infrastructure state, drift detection, and automated remediation strategies across

customer environments.

Collaborate with customer security and compliance teams to embed policy-as-code using

tools such as OPA, Sentinel, or Checkov.

Automate environment provisioning for development, staging, and production with clean

GitOps flows and minimal manual intervention.

Integrate secrets management (HashiCorp Vault, AWS Secrets Manager) and identity

controls into the IaC lifecycle.

Write and maintain documentation, runbooks, and architecture decision records (ADRs) for

all IaC modules and pipeline assets.

QUALIFICATIONS

3 to 5 years of experience building and managing cloud infrastructure using IaC tools

(Terraform, Pulumi, CloudFormation, or similar).

Strong working knowledge of at least one major cloud provider (AWS, GCP, or Azure)

including networking, IAM, and compute services.•

Experience designing and operating CI/CD pipelines for infrastructure (GitHub Actions,

GitLab CI, Jenkins, or similar).

Proficiency in a scripting language such as Python, Bash, or Go for automation tasks.

Understanding of networking fundamentals (VPCs, subnets, DNS, load balancing, firewalls).

Familiarity with containerization and orchestration technologies (Docker, Kubernetes, ECS).

Strong version control practices and experience with GitOps workflows.

Must be located in the SF Bay Area or willing to travel to our San Francisco office on a

regular cadence.

NICE TO HAVE

HashiCorp Terraform Associate or equivalent cloud certification (AWS SAA, GCP ACE).

Experience with configuration management tools (Ansible, Chef, or Puppet).

Familiarity with service mesh and observability platforms (Istio, Datadog, Prometheus).

Contributions to internal platform or developer experience initiatives.

TachTech, Inc. is an equal opportunity employer.