Work location: Colombo

Operating mode: full-time on-site

About Enactor

Enactor is a successful and growing software company providing enterprise systems to leading retailers world-wide. Enactor systems drive the in-store, mobile and online channels that make up a modern retail organization.

• Minimum 8 years of hands-on experience in DevOps, Cloud Engineering, or SRE roles, with at least 5 years working primarily on AWS.
• AWS certification required (Solutions Architect Professional or DevOps Engineer Professional strongly preferred).
• Deep, hands-on expertise across core AWS services — EC2, VPC, S3, IAM, RDS, Lambda, CloudFront, Route 53, CloudWatch, and AWS Organisations.
• Hands-on experience implementing cloud security best practices — IAM policies, KMS, Secrets Manager, GuardDuty, Security Hub, and network segmentation via VPCs, security groups, and WAF.
• Strong experience designing and operating production workloads on AWS, including multi-account architectures, landing zones, and well-architected reviews.
• Hands-on experience with Infrastructure as Code using Terraform and/or AWS CloudFormation/CDK.
• Proven experience building and maintaining CI/CD pipelines using Jenkins, Maven, Ansible, and Artifactory, with code review via Crucible/Fisheye.
• Strong experience with source control using SVN (primary), along with Git, GitHub, and GitHub Actions.
• Strong experience with containerisation and orchestration using Docker and Docker Swarm.
• Solid experience with observability and monitoring tooling — CloudWatch and Zabbix (Prometheus, Grafana can be considered too)
• Working knowledge of Linux server administration; Windows server experience is a plus.
• Ability to work independently with minimum supervision in a team environment.
• Knowledge of ITIL, ISO 27001, and PCI DSS best practices will be a definite advantage.

Responsibilities

• Lead with AI first, infrastructure as code approach
• Lead incident response for production issues, drive root-cause analysis, and own post-incident reviews and remediation actions. This can be out of office hours as well.
• Design, build, and maintain scalable, secure, and highly available AWS infrastructure to support Enactor's retail platform across multiple regions.
• Implement and maintain robust observability — metrics, logs, traces, dashboards, and alerting — to ensure proactive incident detection and rapid resolution.
• Own and evolve CI/CD pipelines that deliver code from commit to production safely and frequently, with automated testing, security scanning, and rollback strategies.
• Define and manage infrastructure through code (Terraform, CloudFormation, or CDK), enforcing version control, peer review, and reproducible environments.
• Lead cloud cost optimisation efforts — right-sizing, reserved instances/savings plans, and tagging governance — and report on AWS spend.
• Embed security and compliance into the platform — IAM least privilege, secrets management, encryption in transit and at rest, vulnerability scanning, and audit readiness for ISO 27001 and PCI DSS.
• Partner with development teams to improve release velocity, environment provisioning, and developer self-service tooling.
• Mentor junior engineers, contribute to platform standards, and maintain clear, current documentation for all infrastructure, runbooks, and architectural decisions.