We're looking for a Senior Cloud Foundation Engineer to join our team in Malaga, Spain in a hybrid working mode. In this role, you will own the design and implementation of critical cloud foundation services, ensuring secure governance, access controls and platform reliability for enterprise-scale infrastructure. You will work on core cloud governance challenges such as IAM policy architecture, multi-tenant isolation and service connectivity — not just CI/CD tooling — while enabling rapid, safe innovation in high-stakes financial environments.
Join a strategic engineering function tasked with building secure, scalable and resilient cloud foundations for one of the most sophisticated financial platforms in the world. You’ll influence control-plane decisions that define how the entire organization consumes cloud services.
Responsibilities
-
Design and enforce IAM policies and least-privilege access frameworks across multi-account or multi-project environments
- Ownership of cloud governance models and platform security boundaries to support multi-team environments at scale
- Architect and implement multi-tenant isolation mechanisms, private networking and secure connectivity patterns
- Develop production-grade solutions in Python, applying best practices for system design, modularity and error handling
- Diagnose and resolve business-critical issues during on-call rotations, ensuring system resilience and reliability
- Collaborate with security, infrastructure and application teams to maintain alignment with regulatory and compliance standards
- Drive automation and tooling for governance, policy validation and access control enforcement
- Continuously assess platform maturity and recommend improvements to strengthen security and reduce risk
Requirements
-
Demonstrated experience owning enterprise-scale cloud infrastructure governance (IAM, control-plane design, security boundaries) — not limited to consuming services
-
Hands-on proficiency in cloud foundations for at least one major provider (Azure, AWS, or equivalent), including IAM/authentication design and enforcement, multi-tenant isolation and account/project governance, and networking design (private endpoints, routing, service connectivity)
-
Proven production-level coding skills in Python (beyond scripting), with strong knowledge in modular system architecture and error handling
- Previous exposure to enterprise-scale infrastructure systems or software platforms, ideally in regulated industries
- Strong analytical, problem-solving and strategic thinking skills
- Ability to act as an escalation point for urgent issues and rapidly implement secure solutions
Nice to have
-
Multi-cloud governance experience across Azure and AWS
- Familiarity with compliance frameworks and their application within cloud foundations
- Previous experience defining security and access governance for financial or mission-critical systems
- Expertise in infrastructure policy automation tooling
We offer
-
Private health insurance
-
EPAM Employees Stock Purchase Plan
-
100% paid sick leave
-
Referral Program
-
Professional certification
-
Language courses
EPAM is a leading digital transformation services and product engineering company with 61,700+ EPAMers in 55+ countries and regions. Since 1993, our multidisciplinary teams have been helping make the future real for our clients and communities around the world. In 2018, we opened an office in Spain that quickly grew to over 1,450 EPAMers distributed between the offices in Málaga, Madrid and Cáceres as well as remotely across the country. Here you will collaborate with multinational teams, contribute to numerous innovative projects, and have an opportunity to learn and grow continuously.
- Why Join EPAM
-
WORK AND LIFE BALANCE. Enjoy more of your personal time with flexible work options, 24 working days of annual leave and paid time off for numerous public holidays.
-
CONTINUOUS LEARNING CULTURE. Craft your personal Career Development Plan to align with your learning objectives. Take advantage of internal training, mentorship, sponsored certifications and LinkedIn courses.
-
CLEAR AND DIFFERENT CAREER PATHS. Grow in engineering or managerial direction to become a People Manager, in-depth technical specialist, Solution Architect, or Project/Delivery Manager.
-
STRONG PROFESSIONAL COMMUNITY. Join a global EPAM community of highly skilled experts and connect with them to solve challenges, exchange ideas, share expertise and make friends.
