Responsibilities
- Architect the global cloud transit backbone by evaluating and defining the target-state AWS multi-account routing model, including a final design decision between AWS Cloud WAN and regional Transit Gateway (TGW) architectures to unify 40+ AWS accounts.
- Design the hybrid interconnect fabric across physical and cloud environments, including Layer 2/Layer 3 connectivity between legacy data centers and AWS using Digital Realty (PlatformDIGITAL / ServiceFabric) and AWS Direct Connect.
- Define the cloud-native security perimeter and identity access by engineering AWS WAF, AWS Shield Advanced, and centralized logging, while replacing raw credential management with AWS KMS/Secrets Manager and integrating AWS IAM with Entra ID for SSO.
- Standardize cloud routing boundaries for e-commerce and voice workloads, specifically architecting a split-routing model: securely steering SIP signaling through AWS while strictly keeping real-time RTP media on physical hardware to eliminate cloud latency and "noisy neighbor" impacts.
- Deliver a transition blueprint including Infrastructure-as-Code (IaC) migration templates and phased rollout strategy to enable migration from the current fragmented state to a unified cloud fabric without disruption to voice or e-commerce services.
- Drive strategic Cloud FinOps and architecture economics by auditing existing AWS spend, executing compute right-sizing, and implementing Reserved Instances and Savings Plans alongside structural cloud changes.
Additional Information
- 6-8 month design engagement
- part-time
