Senior DevOps Engineer (AWS)

Here at Malwarebytes, we believe that when you’re free from threats, you’re free to thrive. It all started in 2008 with one person who needed help with a malware infection, and a community coming together to find solutions. In that moment in time a product was born for all people, with a mission to rid the world of malware. Our product has since grown and evolved, from removing malware, to protecting devices, to ever-changing prevention.

About Malwarebytes Inc.

Malwarebytes began after our founder, Marcin Kleczynski, accidentally infected his parents’ computer while downloading a video game as a teenager. At the time, there was no product that could fully solve the problem, so he set out to build one. That early experience shaped our mission: to create protection that works when people need it most.
Since then, the digital threat landscape has only grown more complex. Attackers are faster, stealthier, and more sophisticated, while traditional solutions often overwhelm people with complicated tools and settings. At Malwarebytes, we believe protection should be both powerful and refreshingly simple because if security feels too hard to use, people will not use it. That is why our aspiration is always to stay one step ahead: cutting through the noise, stopping threats others miss, and delivering peace of mind in an unpredictable digital world. 

Malwarebytes is looking for..

We are looking for a sharp, security-minded Senior DevOps Engineer to join our Consumer team. You will architect and manage our AWS infrastructure using Terraform, enforce cloud security best practices at every layer, make cost-conscious infrastructure decisions that balance performance with efficiency, and drive modern CI/CD automation across the organization. You will own site reliability for our production systems and contribute to the Build & Release processes that keep our development teams moving fast. If you hold security and reliability to a high standard and default to automation over manual process, we want to hear from you. 

Annual Compensation Range: The expected salary range for this role is €55,000–€77,000 per year. Actual compensation will be determined based on experience, qualifications, and location.

What You Will Do:

• Own and evolve our AWS cloud infrastructure using Terraform, applying security best practices — least-privilege IAM, network segmentation, secrets management, and compliance guardrails — as non-negotiable defaults. 
• Design, implement, and continuously improve CI/CD pipelines using GitHub Actions, ensuring automated security scanning (SAST, secrets detection, container image scanning), policy enforcement, and quality gates are built into every pipeline. 
• Champion infrastructure security: proactively identify and remediate cloud misconfigurations, leverage GuardDuty, Security Hub, and Config, and partner with the Security team on vulnerability management and incident response. 
• Own and improve SRE practices: define SLOs, build alerting and observability solutions using CloudWatch and related tooling, and drive blameless post-mortems. 
• Participate in on-call rotation and own production incidents end-to-end — from detection through resolution and follow-up. 
• Maintain build and release environments for development teams and develop automation and test tooling for client applications. 
• Evaluate and adopt emerging DevOps technologies through structured proof-of-concept testing. 
• Keep documentation, runbooks, and architecture diagrams current and actionable. 

Skills You'll Need to Have:

• 6+ years of hands-on DevOps or SRE experience in AWS — EC2, ECS, ECR, Lambda, RDS, CloudWatch, IAM, VPC, EKS, and CloudFront required. 
• BA/BS in Engineering or Computer Science preferred; equivalent experience demonstrated through a proven track record accepted. An ideal candidate holds one or more AWS Professional-level certifications (Solutions Architect Professional, DevOps Professional, or equivalent). 
• Deep Terraform expertise: you write modular, reusable, well-tested infrastructure code and treat IaC security as seriously as application security. 
• Strong GitHub Actions experience building pipelines as code, including integrated security scanning (SAST, secrets detection, and container image scanning). Jenkins experience is a plus. 
• Demonstrable cloud security depth: hands-on experience with GuardDuty, Security Hub, Config, SCPs, and related tools and practices. 
• Strong scripting and automation — Python, Go, or Bash — with a track record of eliminating manual toil. 
• Solid Linux system administration and container management (Docker). Windows Server and Windows container experience is a plus. 
• Proven SRE practice experience: SLO definition, observability design, and post-mortem-driven reliability improvement. 
• Familiarity with cross-platform code compilation (Windows and macOS), code signing, and software supply chain security. 
• Active, daily use of AI coding assistants (Claude Code, GitHub Copilot, or equivalent) is expected as a core part of this role — you treat these tools as a force multiplier and stay current with how AI is reshaping DevOps and SRE workflows. 
• Strong communication and documentation skills: capable of writing architecture proposals, leading design reviews, and producing runbooks that on-call engineers can act on under pressure. 

Perks & Benefits:

• Comprehensive medical, dental, and vision insurance coverage 

• Employee Referral Bonus Program   

• Wellness programs    

• An opportunity to do something great for yourself and the world! 

(Benefits and Perks subject to change by country/region)