Responsibilities
- Develop and refine a multi-account AWS environment strategy leveraging AWS Organizations and Control Tower
- Lead and supervise account provisioning and customization using AWS AFT frameworks
- Architect and evaluate Terraform solutions, including module design and workspace organization
- Establish IAM governance frameworks covering roles, permission sets, service control policies, and permission boundaries
- Provide technical leadership across networking, security, and cloud platform services
- Support deployment of monitoring and compliance tools such as Security Hub, CloudTrail, AWS Config, and centralized logging systems
- Evaluate and authorize infrastructure code and architectural designs
- Troubleshoot complex issues spanning multiple AWS accounts and services
- Collaborate with security and compliance teams to maintain audit readiness
- Coach and support geographically dispersed engineering teams
- Promote automation standards and adherence to infrastructure-as-code principles
- Contribute to landing zone improvements and cloud platform modernization efforts
- Engage in incident response and resolution of critical production issues
- Optimize cloud networking components including VPCs, subnets, Direct Connect, CloudWAN, Transit Gateway, and Route 53 for hybrid and multi-region setups
- Apply AWS security tools like GuardDuty, Security Hub, AWS KMS, WAF, and AWS Config to enforce security controls
- Implement least privilege access models across IAM, SCPs, VPC security groups, and network ACLs, and automate compliance validation
- Maintain documentation of system architecture, design choices, and best practices using Confluence and JIRA
Work Arrangement
On-site
Other
- No hybrid work model; position requires full-time office presence
- Work schedule is from 3 PM to 12 AM IST
