Job Description
Job Description Stefanini Group is hiring! Stefanini is looking for an Infrastructure as Code (IaC) Engineer for Grand Rapids, MI (Hybrid). For quick Apply, please reach out to Atika Nagar: (248) 582-6512/ atika.nagar@stefanini.com W2 candidates only! 100% Hybrid Onsite Cadence: Monthly and Adhoc for project meetings Expenses allowed: no Client Equipment to be Provided Job Summary We are seeking an experienced Infrastructure as Code (IaC) Engineer (Contract) to support a centralized cloud enablement team responsible for building, deploying, and operating standardized AWS infrastructure using Terraform, Spacelift, Rundeck, and GitHub. This role focuses on creating and maintaining reusable IaC patterns, build and deployment automation, and governance controls that enable secure, scalable self service infrastructure across a multi account AWS environment. The contractor will work closely with platform, security, and application teams to deliver reliable 'paved road' solutions while maintaining strong compliance and operational rigor. Essential Functions Design, build, and maintain Terraform modules and IaC patterns used by multiple delivery teams. Implement and operate Terraform deployments via Spacelift, including stack design, approvals, drift detection, and environment promotion. Develop and maintain Rundeck jobs for AWS operational automation, break glass actions, and platform support workflows. Build and support GitHub based CI/CD pipelines using GitOps principles (PR driven change control). Establish and enforce AWS standards for: Account structure and environments Tagging, cost allocation, and ownership Security, access control, and auditability Implement secure automation using IAM roles, OIDC, and least privilege access. Collaborate with application and platform teams to onboard workloads to standardized IaC tooling. Produce and maintain documentation, runbooks, and onboarding guides. Troubleshoot IaC, pipeline, and automation failures; participate in root cause analysis as needed. Technical Skills Must Have AWS Cloud Expertise GitHub & CI/CD Operational & Collaboration Skills Rundeck (Operational Automation) Security & Compliance Spacelift (Terraform Orchestration) Terraform experience in production AWS environments. Nice To Have Experience migrating teams into centralized IaC or platform tooling. FinOps experience (cost tagging, chargeback/showback) Policy-as-code exposure (OPA, Sentinel, or equivalent) Terraform tooling: tflint, checkov, tfsec, infracost Qualifications Infrastructure as Code (Terraform) 5+ years of hands on Terraform experience in production AWS environments. Advanced experience with Module design, reuse, and versioning Remote state using S3 and DynamoDB Multi account and multi environment deployments Standards enforcement via validation and lifecycle rules Experience supporting centralized Terraform modules consumed by many teams. AWS Cloud Expertise Strong, practical experience with: AWS Organizations, SCPs, and multi account strategies Cross account IAM role design Account bootstrap / landing zone concepts Hands on experience provisioning AWS services via Terraform, including: IAM VPC and networking EC2 / Auto Scaling EKS or ECS (working knowledge) S3, RDS CloudWatch and logging KMS and encryption Spacelift (Terraform Orchestration) Production experience using Spacelift for Terraform: Stack and dependency design Environment promotion and approvals Worker configuration (private or AWS hosted preferred) Drift detection and scheduled runs Experience integrating Spacelift with AWS IAM and GitHub workflows. Rundeck (Operational Automation) Experience designing and operating Rundeck jobs for AWS infrastructure operations. Strong understanding of Job security, RBAC, and approvals Credential management using IAM roles (no static keys) Error handling,