Senior Web Platform Engineer

About AMAC The Association of Mature American Citizens (AMAC) is a national membership organization serving Americans 50 and older. We deliver advocacy, benefits, content, and member services to millions of members across a portfolio of digital properties. Our engineering team is small, the surface area is broad, and the work matters to people who trust us with their data. About the role We're hiring a Senior Web Platform Engineer to take ownership of our web operations across production infrastructure, edge configuration, and the application layer that connects them. This is a senior individual contributor role for someone who is equally comfortable in a Linux terminal, a Cloudflare dashboard, an AWS console, and a PHP/Laravel codebase. You'll partner closely with our infrastructure leadership on network, edge, and security topics, and with our development team on application code, API design, and release practices. The defining strength of the role is breadth — and the ability to translate fluently between domains that often live in separate conversations. This role is for someone who instinctively reaches for a diagram when a problem spans more than one system. If you've ever drawn an architecture on a whiteboard or in Mermaid and watched a colleague say "oh — I had no idea those pieces connected like that," you'll find a lot to do here. What you'll do Operate and improve AWS production infrastructure (EC2, RDS, S3, IAM, VPC, CloudTrail) with discipline around security, observability, and cost Own DNS, Cloudflare configuration, WAF rule design and tuning, and TLS/certificate operations across our domains and properties Partner with developers to ship, review, and improve PHP/Laravel applications and API endpoints Support and incrementally modernize our legacy hosting environment and workflow automation surface Strengthen deployment, secret management, and backup/restore practices, with regular verification Document architecture, data flows, and incident response runbooks for the broader engineering team Participate in an on-call rotation, lead post-incident reviews, and drive durable fixes Act as the connective tissue between infrastructure and application engineering — surfacing cross-cutting issues before they become incidents What you bring The bar here is operating posture, not tool expertise. We're hiring someone who takes deep ownership of their domain — who learns intimately, documents thoroughly, reads the docs and the source, and becomes the team's source of truth on the things they own. We care less about which exact tools you've already mastered and more about how you approach the work. 6+ years operating production systems with senior-level judgment, autonomy, and accountability Deep ownership instinct — when you take on something new, you go all the way in. You read the docs and the source, you build a working model in your head, you write things down, and you become the person the team comes to with questions Strong systems thinking — you draw the diagram first. You've mapped a system on a whiteboard or in Mermaid for a colleague who couldn't yet see how the pieces connected, and you enjoyed doing it Strong version control habits — everything that matters lives in a repo, gets peer review, and is reproducible. Scripts don't live in your home directory, and you'd rather have a small PR reviewed than a big change shipped on trust Excellent written communication — you'd rather over-document than be the only person who knows how something works Hands-on fluency with AI-assisted development tools on real production work (more on this below) What you'll work with These are the technical surfaces of the role. We'd love some real exposure across most of these — but the bar is curiosity and willingness to go deep, not expert credentialing in every one. If you're solid in a few and ready to take ownership of the rest, that's the right shape. AWS — EC2, RDS, S3, IAM, VPC, CloudTrail, security groups; access control and auditing Cloudflare or comparable edge/CDN — WAF rule authoring and tuning, API integration, debugging origin-to-edge issues, certificate operations Web platform fundamentals — cookies, session management, authentication (session-based, OAuth/OIDC, JWT), CORS, security headers, CSRF PHP and Laravel — reading codebases, shipping fixes, writing API endpoints, providing code review DNS at multi-provider scale — zone management, registrar operations, propagation troubleshooting Linux administration — Ubuntu / Amazon Linux, systemd, nginx, Apache, MySQL/MariaDB, SSH, host-level firewalls, log analysis Workflow automation — n8n, Zapier, Make, Airflow, or comparable Legacy hosting environments — Plesk or similar (we're modernizing away from it; you'll live with it during the transition) Bonus points Already deep in any of the areas above Mail server and deliverability experience (Postfix, DKIM/SPF/DMARC) Experience running backup and disaster-recovery drills end-to-end Background working in environments with member or customer PII and elevated privacy expectations Prior experience inheriting and modernizing legacy systems Working with AI development tools AI-assisted development is part of how this team works. We use tools like Claude Code, Cursor, and similar agentic coding assistants for application development, infrastructure work, documentation, and incident analysis. The strongest candidates have driven these tools on real production work and have specific, hands-earned opinions about prompt structure, context windows, where these tools help, and where they fall short. If you've written a context file (CLAUDE.md or equivalent) you're proud of, we'd love to hear about it. Compensation and benefits Competitive base salary commensurate with experience Performance-based bonus opportunity Generous paid time off and holidays In-person role at our Bohemia, NY office, five days per week. After a successful three-month onboarding period, limited remote flexibility — up to roughly one day per week — may become available at the team's discretion. Candidates should be commutable to Long Island.

Pay:

$80,000.00 - $120,000.00 per year

Benefits:

401(k) Health insurance Life insurance Paid time off

Work Location:

In person