Assent is the leading solution for supply chain sustainability tailored for the world’s top-tier, sustainability-driven manufacturers. Hidden risks riddle supply chains, many of which weren't built with sustainability in mind. That's where we step in. With insights from experts, Assent is the tool manufacturers trust for comprehensive sustainability.

We are proud to announce that Assent has crossed the US$100M ARR milestone, granting us Centaur Status. This accomplishment, reached just 8 years following our Series A, makes us the first and only Certified B Corporation in North America's SaaS sustainability industry to celebrate this milestone.

Our journey from $5 million to US$100M ARR in just eight years has been marked by significant growth and achievements. With our $350 million US funding led by Vista Equity Partners, we're poised for even greater expansion and are on the lookout for outstanding team members to join our mission.

Job Descriptio

nPosition Summar

yThe Cloud Operations Specialist is responsible for ensuring the stability, security, governance, and high availability of Assent’s AWS cloud environment and SaaS production systems. This role requires deep hands-on experience with enterprise-scale AWS multi-account environments, particularly in AWS Organizations, AWS Control Tower, and AWS IAM Identity Center (SSO)

.Working within the SaaS Product Infrastructure group, the Cloud Operations Specialist collaborates closely with Engineering, Product, Corporate Security, and IT teams to maintain a secure and reliable cloud platform. The ideal candidate brings strong operational discipline, long-term ownership experience, and the ability to work independently in a fast-paced, globally distributed environment. This role requires strong proficiency operating AWS governance and identity systems entirely through Infrastructure as Code (IaC), with all changes implemented through Terraform and delivered via GitHub Actions pipelines

.
Key Requirements & Responsibilitie

s AWS Platform Governance & Identi

• tyAdminister and enhance Assent’s AWS multi-account environment using AWS Organizations and AWS Control Towe
• r.Manage AWS Platform Governance & Identity exclusively through Infrastructure as Code (Terraform), ensuring all changes are codified, peer-reviewed, and deployed via GitHub Actions workflows, with minimal AWS console usag
• e.Manage the lifecycle of AWS accounts, including provisioning, guardrail enforcement, compliance assessments, and drift remediatio
• n.Own configuration and governance of AWS IAM Identity Center, including permission sets, assignment models, and cross-account access pattern
• s.Implement and maintain Service Control Policies (SCPs), organizational guardrails, and governance framework
• s.Collaborate with Corporate Security on access governance, audit readiness, and implementation of cloud security best practice
• s.Ensure consistent application of enterprise standards across all accounts to support scalability and operational excellenc
• e.Serve as a subject-matter expert for AWS organizational design, identity architecture, and governance automatio
• n.Infrastructure as Code, Automation & CI/
• CDProvision, manage, and govern all AWS platform resources—including Organizations, Control Tower, Identity Center, SCPs, and account lifecycle—using Terraform, following a strict code-first operating model with limited console acces
• s.Experience working with multi-account Terraform architectures, including reusable modules, organizational workspaces, and remote state patter
• nsOperate GitHub Actions as the primary CI/CD mechanism for all governance and provisioning pipelines, ensuring consistent, validated, and compliant deployment
• s.Use Lambda and automation tooling to streamline cloud governance, account lifecycle, and configuration consistenc
• y.Collaborate with engineering teams to enforce Infrastructure as Code standards and improve deployment consistenc
• y.AWS Services & Cloud Infrastructure Operatio
• nsSupport and operationalize core AWS services includin
• g:Compute & containers: EC2, ECS (Fargat
• e)Databases & messaging: RDS (PostgreSQL, SQL Server), Amazon
• MQNetworking & CDN: Route53, API Gateway, CloudFro
• ntMessaging & notifications: SQS, SNS, S
• ESInstall, configure, secure, and troubleshoot Linux and Windows servers in cloud environment
• s.Participate in infrastructure lifecycle management including patching, updates, backups, and resilience testin
• g.Monitoring, Observability & Incident Respon
• seProactively monitor systems and applications using observability platforms (e.g., CloudWatch, ElasticSearch/OpenSearch, New Relic, Datadog
• ).May participate in an on-call rotation for production infrastructure, ensuring timely incident response and resolutio
• n.Implement best practices for logging, alerting, automated remediation, and operational health dashboard
• s.Conduct root-cause analysis and propose long-term improvements to prevent recurrenc
• e.Security, Compliance & Governance Suppo
• rtEnforce cloud security policies and identity governance best practices across all AWS account
• s.Support internal and external security audits of cloud platform
• s.Partner with Corporate Security to align cloud controls with regulatory and compliance standard
• s.Maintain encryption, auditing, and configuration standards (KMS, CloudTrail, AWS Config, etc.
• ).Collaboration, Documentation & Continuous Improveme
• ntWork closely with cross-functional teams to support platform stability and cloud adoptio
• n.Help lead Infrastructure and joint Infrastructure-Engineering project
• s.Create and maintain documentation for cloud architecture, governance controls, operational procedures, and automation workflow
• s.Contribute to business continuity, resilience engineering, and disaster recovery plannin

g.
Qualificati

onsMinimum Requireme

ntsEnterprise AWS Governance Experience (Must-Ha

• ve)5+ years of hands-on experience managing AWS multi-account environments with AWS Organizations, AWS Control Tower, and AWS IAM Identity Center (SS
• O).Demonstrated experience managing AWS Organizations, Control Tower, and Identity Center entirely through Terraform, including version-controlled permission sets, account provisioning workflows, and SC
• Ps.Commitment to a “no unmanaged changes” approach—must be comfortable operating in an environment where AWS console access is restricted and infrastructure is exclusively managed as co
• de.Demonstrated long-term ownership of organizational governance, account lifecycle management, SCPs, and permission set mode
• ls.Experience implementing enterprise identity governance, access controls, and compliance frameworks at sca
• le.Core Technical Requireme
• ntsAWS Solutions Architect – Associate (or higher) certification preferr
• ed.Strong experience with Terraform (Infrastructure as Code) and managing state in S3 for multi-account deploymen
• ts.Hands-on experience creating and maintaining GitHub Actions pipelines for infrastructure deployment and automati
• on.Experience with containerized workloads using ECS/Farga
• te.Proficiency with Linux and Windows server administration in cloud environmen
• ts.Experience operating search/logging platforms such as ElasticSearch/OpenSear
• ch.Experience with configuration management and automation via Ansible, Semaphore, or similar too

• ls.
  Preferred Qualificat
• ionsExperience with New Relic, Datadog, PagerDuty, or similar modern observability platfo
• rms.Experience with SolarWinds DPA or similar database performance to
• ols.Familiarity with Auth0 or other identity provid
• ers.Experience working within enterprise SaaS, regulated industries, or high-security cloud environme
• nts.Strong scripting proficiency (Python, PowerShell, or Ba
• sh).Experience with proactive monitoring, observability tooling, and operational automat
• ion.Professional Sk
• illsDemonstrated ability to work independently and manage complex operational responsibilities with minimal supervis
• ion.Strong analytical, troubleshooting, and decision-making skills under press
• ure.Excellent written and verbal communication skills for collaborating with technical and non-technical stakehold
• ers.Detail-oriented, highly organized, and committed to continuous learning and improvem
• ent.Ability and willingness to support off-hours work as required, including on-call participat

ion.
Additional Inform

ationLife at A

ssentWellness: We believe that you and your family’s well being is important. As a result, we offer vacation time that increases with tenure, comprehensive benefits packages (details vary by country), life leave days and

more.Financial Benefits: It’s not all about the money – well, it’s a little about the money. We understand that financial health is important and we offer a competitive base salary, a corporate bonus program, retirement savings options and

more.Life at Assent: There is purpose beyond your work. We provide our team members with flexible work options, volunteer days and opportunities to get involved in corporate giving initiat

ives.Lifelong Learning: At Assent, curiosity is not only valued but encouraged. You will receive professional development days that are available to you the day you s