Carbon3.ai Logo

Carbon3.ai

Identity & Platform Engineer - (Contract)

Reposted 4 Days Ago
Be an Early Applicant
Remote
Hiring Remotely in United Kingdom
Mid level
Remote
Hiring Remotely in United Kingdom
Mid level
Design, deploy, and operate large-scale GPU-accelerated HPC/AI clusters (NVIDIA), manage Slurm scheduling, optimise networking (InfiniBand/Ethernet), automate provisioning and monitoring with Ansible/Kubernetes, lead incident response and vendor troubleshooting, enforce security and RBAC, and provide customer-facing platform support.
The summary above was generated by AI

Era4 develops, owns and operates AI infrastructure across the UK, powered by renewable energy. Converting legacy industrial and energy sites into modern data-centre facilities, Era4 is combining brownfield regeneration opportunities with cleaner, efficient, scalable compute capacity for healthcare, research, finance, enterprise, and public-sector organisations


Initial 3 month contract.

July start date.

Competitive day rate.


Role Summary:

The Identity & Platform Engineer is responsible for designing, implementing and operating the core platform services that provide:

  • Kubernetes platform services
  • Sovereign identity management
  • Federation and authentication services
  • Privileged access management
  • Secrets management
  • Customer identity integration
  • Platform security and governance

 

The successful candidate will play a key role in delivering a Zero Trust, sovereign cloud platform built around: FreeIPA, Teleport, authentic, Bitwarden, Kubernetes.


Key Responsibilities:


Identity & Access Management Engineering:

  • Design, implement and operate the sovereign identity platform supporting workforce, administrative and customer identity domains.
  • Implement and maintain FreeIPA as the authoritative administrative identity platform.
  • Deploy, configure and operate authentik for customer federation, SAML and OIDC integration.
  • Implement and maintain Teleport as the privileged access management platform.
  • Design and maintain RBAC models across Kubernetes, Rafay and supporting platform services.
  • Integrate phishing-resistant MFA technologies including WebAuthn and FIDO2 security keys.
  • Implement identity lifecycle management processes including onboarding, access reviews and deprovisioning.
  • Support customer identity federation onboarding and integration activities.
  • Contribute to the ongoing evolution of the platform's Zero Trust architecture

 

Security, Governance & Zero Trust:

  • Implement Zero Trust security controls across platform services.
  • Design and maintain Kubernetes RBAC and tenant isolation controls.
  • Implement privileged access governance using Teleport.
  • Maintain audit logging, compliance evidence collection and security monitoring capabilities.
  • Support security reviews, threat modelling and risk assessments.
  • Implement security hardening standards across Kubernetes, Linux and supporting infrastructure.
  • Participate in security incident response and root cause analysis activities.
  • Maintain compliance with security and governance requirements

  

Secrets & Certificate Management:

  • Operate Bitwarden and Bitwarden Secrets Manager platforms.
  • Manage operational credentials, API keys and automation secrets.
  • Implement secure secret distribution patterns for platform and application workloads.
  • Support certificate lifecycle management and PKI integration.
  • Maintain operational processes for break-glass credential governance and recovery.

 

Required Experience & Skills:

  • Hands-on experience operating production Kubernetes environments.
  • Soild Linux systems administration and troubleshooting experience.
  • Knowledge designing and operating Identity and Access Management (IAM) solutions
  • Experience with LDAP, Kerberos, SAML and OpenID Connect (OIDC).
  • Previous experience implementing authentication, federation and RBAC solutions.
  • Skilled in operating infrastructure and platform security services.
  • Experience with Infrastructure as Code and automation tooling.
  • Knowledge implementing monitoring, logging and observability solutions.
  • Soild understanding of Zero Trust security principles.
  • Experience with GitOps practices and cloud-native operational models.
  • Proven incident management and root cause analysis experience.

 

One or more would be an advantage

  • Prior experience with FreeIPA or enterprise directory services.
  • Experience with authentik, Keycloak or similar federation platforms.
  • Knowledge with Teleport, CyberArk or other privileged access management technologies.
  • Experience with Bitwarden, Vault or secrets management platforms.
  • Knowledge operating GPU-enabled Kubernetes environments.
  • Previously supported AI, HPC or large-scale compute platforms.
  • Experience implementing PKI and certificate management solutions.
  • Kubernetes multi-tenancy and platform security experience.
  • Sovereign, regulated or highly secure environments exposure.
  • Familiarity with SOC2, ISO27001, NCSC or equivalent security frameworks.
  • Background in Platform Engineering, DevOps or Site Reliability Engineering


Why Join Era4:

You’ll be joining a mission-driven start-up building critical national infrastructure, where operational excellence directly enables growth. This role offers high visibility with leadership, real autonomy, and the chance to shape how a next-generation company operates at scale. 

 

Diversity & Inclusion:  

Era4 is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.  


HQ

Carbon3.ai Tonbridge and Malling, England Office

Tonbridge and Malling, United Kingdom

Similar Jobs

29 Minutes Ago
Remote or Hybrid
United Kingdom
Senior level
Senior level
Enterprise Web • HR Tech • Information Technology • Software • Cybersecurity
As a Senior Customer Success Manager, you will manage customer relationships from onboarding to renewal, ensuring strategic alignment with the platform's outcomes, while collaborating cross-functionally to drive customer success.
Top Skills: SaaS
30 Minutes Ago
Remote or Hybrid
Mid level
Mid level
Artificial Intelligence • Professional Services • Business Intelligence • Consulting • Cybersecurity • Generative AI
The AI Engineer Manager leads the Data and Analytics Engineering team in developing AI solutions, manages client accounts, analyzes data, and fosters team leadership and relationships with clients.
Top Skills: AIData AnalyticsData ProcessingData VisualizationMachine LearningPredictive ModelingStatistical Analysis
31 Minutes Ago
Easy Apply
Remote or Hybrid
United Kingdom
Easy Apply
Senior level
Senior level
Fitness • Hardware • Healthtech • Sports • Wearables
The Senior Sales Manager will lead wholesale partnerships for WHOOP in the UK and Ireland, managing retail relationships, aligning sales targets, and optimizing market strategies.

What you need to know about the London Tech Scene

London isn't just a hub for established businesses; it's also a nursery for innovation. Boasting one of the most recognized fintech ecosystems in Europe, attracting billions in investments each year, London's success has made it a go-to destination for startups looking to make their mark. Top U.K. companies like Hoptin, Moneybox and Marshmallow have already made the city their base — yet fintech is just the beginning. From healthtech to renewable energy to cybersecurity and beyond, the city's startups are breaking new ground across a range of industries.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account