Senior Cloud Engineer

Hello! We are Cashea 👋 and our mission is to give Venezuelans back the opportunity to access credit through a BNPL business model. Since our launch in 2022, we have been dedicated to promoting financial inclusion. Today we have more than 9 million active users, both consumers and merchants, and we have become a trusted brand in Venezuela, winning hearts and minds.

About the role

We’re looking for a Senior Cloud Engineer who builds the platform the rest of engineering relies on. You’ll own our Infrastructure-as-Code on Google Cloud Platform: the modules, wrappers, networking, and pipelines that let dozens of teams ship services safely across our domains.

This is hands-on building. We run everything on GCP with OpenTofu and Terragrunt, a layered and versioned IaC platform of reusable modules and opinionated wrappers, consumed by a live repo that defines what runs in dev, staging, and production. You’ll design that platform, extend it as we grow, and answer for how it behaves when teams use it. The engineers who grow fastest here go deep, codify sensible defaults, and leave the platform safer and easier to use than they found it.

Overall you will…

• Design and build reusable IaC modules and wrappers in OpenTofu (Terraform) and Terragrunt, with sensible, governed defaults.

• Provision and evolve our GCP estate: Cloud Run, GKE, Cloud SQL (PostgreSQL), Memorystore Redis, Pub/Sub, BigQuery, Datastream, Cloud Composer, and GCS.

• Own our network architecture, including Shared VPC, per-domain subnets, Cloud NAT, Cloud DNS, firewall policies, private connectivity (PSA/PSC), and internal and external load balancing.

• Design least-privilege IAM with service accounts, Workload Identity, and keyless auth, so least privilege is the default for every workload.

• Build and maintain CI/CD for infrastructure with GitHub Actions, Workload Identity Federation, plan-on-PR and apply-on-comment flows, and policy and security checks (TFLint, Trivy).

• Make architectural and system-design decisions across our multi-environment, multi-region setup (us-east1 with us-west1 for DR), and own the trade-offs behind them.

• Manage Terraform and Terragrunt state, versioning, and the safe rollout of platform changes across many consuming teams.

• Raise the engineering bar through code reviews, clear standards, and documentation that makes the platform self-serve.

• Mentor engineers and lead technical discussions, leaving the team stronger than you found it.

Requirements:

• Bachelor’s degree in Computer Science or a related field, or equivalent practical experience.

• 5+ years of cloud and infrastructure engineering experience, with strong hands-on depth in Google Cloud Platform (GCP).

• Production experience with Terraform or OpenTofu, and ideally Terragrunt, building reusable and versioned infrastructure rather than only consuming it.

• Solid grasp of GCP networking: VPCs (ideally Shared VPC), subnets, Cloud NAT, DNS, firewall policies, and private connectivity (PSA/PSC).

• Strong IAM fundamentals: least privilege, service accounts, and Workload Identity or federation.

• Experience operating managed GCP services such as Cloud Run, GKE, Cloud SQL (PostgreSQL), and Memorystore Redis.

• Comfort with Git-based workflows and CI/CD (GitHub Actions or similar), and treating infrastructure changes with the same rigor as application code.

• A track record of making architectural calls and owning infrastructure end-to-end in a fast-moving context.

• Ability to communicate complex technical concepts clearly, and to mentor others effectively.

• Excellent problem-solving and analytical thinking, with genuine curiosity about new technology.

Desirable skills

• Experience with GKE specifics such as private and regional clusters, Workload Identity, Dataplane V2, and managed Prometheus.

• Familiarity with data and messaging services: Pub/Sub, Cloud Tasks, BigQuery, Datastream (CDC), and Cloud Composer (Airflow).

• Experience with API platforms such as Apigee, plus Artifact Registry and Cloud Build.

• Secrets management with GCP Secret Manager.

• Scripting in Bash or Python for operational tooling and automation.

• Experience building in fintech, payments, or credit.

• Spanish and English proficiency.

Why you'll love working at Cashe

At Cashea, we have a work culture based on trust and purpose. If you need a clue as to why we are a good choice, these are our core values:

• We don't work on autopilot. Everything we do is intentional. We love to develop ideas with full awareness of the impact they can have on our users.

• Your creativity and curiosity are our most important assets.

• Your voice matters. We listen and make space for ideas and feedback. Everyone belongs, and what's important to you is important to us.

• We value transparency. Clarity keeps us connected and grounded.

• Last but not least, we focus on real impact.

If you want to work with us, fill out the application. We'd love to meet you!