About the Role

We're looking for an experienced AWS Systems Engineer to design, build, and maintain our large-scale, multi-account cloud infrastructure. You'll work closely with development, security, and architecture teams to ensure our AWS environment (spanning 20+ accounts) is scalable, reliable, secure, and cost-efficient.

Key Responsibilities

• Architect, deploy, and manage infrastructure across a multi-account AWS environment with centralized governance and hub-and-spoke VPC networking
• Support and evolve our hybrid compute strategy spanning EC2/Auto Scaling Groups, ECS, Lambda, and API Gateway
• Manage and optimize our data platform across RDS (PostgreSQL, MySQL, SQL Server), Aurora, DynamoDB (including Global Tables), Neptune, ElastiCache/MemoryDB, S3, and EFS
• Build and maintain CI/CD pipelines using Jenkins, Azure DevOps, and GitHub Actions; manage container images via ECR
• Maintain and extend infrastructure as code using CloudFormation
• Operate and improve our observability stack: CloudWatch, CloudTrail, X-Ray, SNS, Systems Manager, and Splunk for centralized log analytics
• Enforce security best practices across IAM, IAM Identity Center (SSO) integrated with Microsoft Entra ID, Auth0, KMS, Security Hub, Inspector, Access Analyzer, and Sophos Optix (CSPM)
• Manage edge and network security layers including AWS WAF, Cloudflare, ALB/NLB, and Route 53
• Support event-driven and workflow automation using EventBridge and Step Functions
• Manage backup and resilience strategies using AWS Backup and Clumio, with multi-region deployments for high-availability services
• Maintain secure enterprise integrations via Site-to-Site VPN and middleware platforms for ERP and external systems
• Support and expand AI/ML capabilities built on Amazon Bedrock
• Collaborate with developers to optimize application deployments, container orchestration, and serverless architectures

Required Qualifications

• 5+ years of hands-on AWS experience, including in multi-account environments
• AWS certification (Solutions Architect, SysOps, or DevOps Engineer: Associate or Professional)
• Proven experience managing hub-and-spoke VPC architectures, Route 53, CloudFront, and ALB/NLB
• Strong hands-on experience with CloudFormation or equivalent IaC tooling
• Proficiency in at least one scripting language (Python or Bash)
• Solid experience with containerization (Docker, ECS) and serverless patterns (Lambda, API Gateway)
• Familiarity with identity and access management at scale: IAM, IAM Identity Center, SSO/Entra ID integration
• Experience with CI/CD tooling across Jenkins, Azure DevOps, and/or GitHub Actions
• Strong understanding of networking fundamentals: DNS, load balancing, VPN, routing

Nice to Have

• Experience with AWS Organizations and multi-account governance frameworks (Control Tower, SCPs)
• Familiarity with CSPM tooling (Sophos Optix or similar)
• Experience with graph or in-memory databases (Neptune, MemoryDB)
• Hands-on experience with Splunk for log management and security analytics
• Exposure to Amazon Bedrock or other AI/ML services on AWS
• Experience with FinOps / cloud cost optimization practices at scale
• Familiarity with Clumio or equivalent third-party backup solutions

All our positions are Remote and are available as Full Time Employment or B2B Contracts