We’re looking for a Senior hands-on full-stack engineer with strong TypeScript skills and deep AWS experience, who’s excited to modernize how we build, deploy, and run cloud services. You’ll work across product and infrastructure, shaping scalable, secure, and reliable systems using Infrastructure as Code. Team-leading experience is a strong plus, and familiarity with Pulumi (or similar IaC tools like Terraform/CDK) is highly valued. Great opportunity to take a leading role.

Key Responsibilities

• Lead and mentor a cross-functional full-stack team spanning backend, frontend, database, and cloud engineering disciplines.
• Design and build product-facing microservices and full-stack capabilities in TypeScript
• Design and manage AWS infrastructure using Pulumi (or similar IaC tools), with a focus on scalability, maintainability, and automation.
• Lead the team in delivering high-quality features end-to-end, setting strong engineering standards, and ensuring reliable, well-structured environments across development, staging, and production.
• Ensure infrastructure follows best practices for security, monitoring, cost efficiency, and disaster recovery.
• Perform root cause analysis and debugging for complex production issues across AWS infrastructure and application layers.
• Drive improvements in Backend / Frontend / DBA / DevOps practices, documentation, and team workflows.

Requirements

• At least 5+ years of proven hands-on coding experience in TypeScript.
• At least 5+ years of industry experience working hands-on with AWS, with demonstrated success designing, building, managing, and scaling production-grade systems on the platform.
• Experience with Docker and/or Kubernetes.
• Familiarity with Pulumi or experience with equivalent IaC tools such as Terraform or CloudFormation is also valued, with willingness to work primarily with Pulumi – Advantage.
• Strong knowledge of CI/CD pipelines and automation workflows using tools such as GitHub Actions, GitLab CI, CircleCI, or similar.
• Deep understanding of core AWS services, including EC2, ECS, Lambda, VPC, IAM, RDS, CloudFront, S3, and Route 53.
• Experience with networking fundamentals in AWS: VPC design, subnets, routing tables, NAT gateways, security groups, NACLs etc.
• Strong grasp of IAM and security best practices: role and policy design, secrets management, least privilege enforcement, and cloud identity governance.
• Familiarity with observability tools (e.g., CloudWatch, Datadog, Prometheus, Grafana) for monitoring, logging, and incident response.
• Comfortable working in a fast-paced, collaborative team environment, with a high level of ownership, accountability, and adaptability.

Nice to Have

• Familiarity with serverless architectures, microservices, or event-driven systems.
• Exposure to compliance frameworks (e.g., SOC2, ISO27001, etc.) and cloud governance.
• Experience with security and DevSecOps tools, such as Snyk, AWS Inspector, AWS GuardDuty, or Prisma Cloud.
• Familiarity with cost optimization strategies and tools for AWS resource usage.

Location & Work Model

• Full-time position, with a requirement to work from the office at least 3 days per week.
• Location: Israel, Herzliya