Role Description
We are seeking an experienced AWS Cloud to design, build, and operate large-scale, secure, and highly available cloud platforms on Amazon Web Services. This is a deeply hands-on engineering role spanning architecture, infrastructure-as-code, automation, security, observability, and continuous operational improvement of mission-critical production workloads. The successful candidate will bring strong working knowledge of the AWS service portfolio, deep DevOps fundamentals, and a pragmatic, cost-aware design mindset, and will partner with application, security, and SRE teams to deliver resilient, cloud-native solutions that scale with the business.
Key Responsibilities
-
Architect, deploy, and operate enterprise-grade AWS environments across compute, networking, storage, identity, and managed data services, with strong attention to scalability, reliability, and security.
-
Author and maintain production-quality infrastructure-as-code using Terraform, AWS CloudFormation, or AWS CDK, with rigorous version control, peer review, and automated validation.
-
Design multi-account AWS organizations, including landing zones, SCPs, centralized logging, and shared services, to support secure and scalable enterprise adoption.
-
Build secure VPC topologies — including subnetting, route tables, transit gateways, VPN, and Direct Connect integrations — that meet enterprise connectivity and isolation requirements.
-
Implement strong IAM strategies using roles, permission boundaries, SCPs, AWS SSO, and short-lived credentials to enforce least-privilege access across the organization.
-
Design, deploy, and operate Amazon EKS clusters and other container platforms (ECS, Fargate), including auto-scaling, networking, and integration with service meshes and observability stacks.
-
Operate AWS managed data and analytics services such as RDS, Aurora, DynamoDB, S3, Redshift, Glue, and Kinesis, optimizing each for the access patterns and SLAs of the workloads it supports.
-
Build and maintain robust CI/CD pipelines using AWS CodePipeline, CodeBuild, Jenkins, GitHub Actions, or GitLab CI, enabling repeatable, audited deployments of both infrastructure and applications.
-
Implement comprehensive observability using CloudWatch, X-Ray, AWS Distro for OpenTelemetry, Prometheus, Grafana, and third-party tooling, with well-designed dashboards, alerts, and SLOs.
-
Drive ongoing cost optimization through right-sizing, savings plans, reserved instances, lifecycle policies, and architectural simplification, with measurable savings tracked over time.
-
Implement disaster-recovery and business-continuity capabilities, including cross-region replication, automated backups, regular failover testing, and documented runbooks.
-
Strengthen security posture using AWS Security Hub, GuardDuty, Macie, Inspector, Config, and CloudTrail, and lead remediation of findings in collaboration with security teams.
-
Advise application development teams on AWS-native design patterns, anti-patterns, and the appropriate service choices for each problem domain.
-
Develop automation scripts and operational tooling in Python, Bash, and Go to streamline routine work and accelerate incident response.
-
Mentor junior engineers, lead architecture and design reviews, and contribute thought leadership to the broader cloud community within the organization.
Qualifications
-
Bachelor’s degree in Computer Science, Engineering, or a related technical discipline.
-
Five or more years of cloud engineering experience, with at least three years focused on AWS in production environments.
-
Strong hands-on experience with AWS core services, including EC2, VPC, IAM, S3, RDS, Lambda, CloudFront, and CloudFormation.
-
Production-grade experience with infrastructure-as-code tools such as Terraform, AWS CDK, or CloudFormation.
-
Solid experience designing and operating Amazon EKS or ECS clusters at scale.
-
Hands-on experience with CI/CD pipelines across infrastructure and application workloads.
-
Strong scripting skills in Python and Bash, with familiarity in Go or PowerShell considered a plus.
-
Deep understanding of cloud security, IAM, encryption, key management, and compliance requirements.
-
Experience implementing observability, monitoring, and alerting in cloud-native environments.
-
Strong troubleshooting, communication, and documentation skills.
Preferred Qualifications
-
AWS Certified Solutions Architect – Professional or DevOps Engineer – Professional certification.
-
Experience with multi-account AWS Organizations and centralized governance.
-
Familiarity with service mesh, eBPF-based observability, and zero-trust networking.
-
Exposure to FinOps practices and well-architected cost-optimization frameworks.
-
Experience operating regulated workloads (HIPAA, PCI-DSS, SOC 2, FedRAMP).
How to Apply
Would you like to know more about this opportunity? For immediate consideration, please send your resume to
[email protected]
or contact us at (908) 676-4399. Learn more about Bright Vision Technologies at
www.bvteck.com
.