Cloud Network SME/Architect
A seasoned cloud networking expert will spearhead the evolution of our AWS-based cloud infrastructure.
This role will focus on core AWS network engineering, ensuring performance, reliability, and security of multi-region cloud environments and the strategic enablement of next-generation networking capabilities.
Key Responsibilities:
* Develop and implement robust cloud security architectures tailored to specific project needs.
* Provide expert advice on cloud security best practices, network design, and connectivity solutions.
* Oversee and contribute to the management and support of AWS Landing Zones, hybrid/multi-region networks, and firewalls, ensuring high availability and security.
* Architect, deploy, and manage security measures to protect cloud infrastructure and data.
Requirements:
* Extensive experience in AWS Cloud services.
* Skilled in using Terraform for infrastructure provisioning and management.
* Expertise in cloud networking technologies and solutions.
Nice to have:
* Experience with service mesh frameworks (e.g., Istio, Linkerd).
* Exposure to Kubernetes NetworkPolicy.
* Design of SLOs/SLI's for network performance and reliability.
* Experience in Zero Trust Networking (micro segmentation, identity-aware routing).
Qualifications:
* Proven track record in cloud security architecture and advisory roles (10+ years).
* Strong understanding of AWS services and cloud security best practices.
* Excellent problem-solving skills and ability to work in a collaborative environment.
Project Overview:
We are collaborating with a multinational corporation with over a century of history to introduce Reduced-Risk Products. The target audience is over 1 billion consumers worldwide. Our IT platform hosts over 700 applications.
Our mission is to develop a comprehensive software ecosystem for an innovative IoT product. This involves the integration of cutting-edge technology and consumer experience. As a team member, you will be part of the Core Architecture Team responsible for the architecture, implementation, and best practices in our Digital Engineering Enterprise Platform.
The Platform is a set of services and internet applications that accelerate the development and delivery of software applications. It takes care of common SDLC challenges and provides access and consumption for engineering teams to a set of services, technologies, and practices for their development and operating applications. We ensure compliance with best practices.
Our project has been in production for over two years, supported by multiple teams. Our technical domains include:
- AWS cloud, partially Azure
- SSO, Organizations, Service control policies, access models
- IAAC: terraform enterprise, terratest, chalice
- Serverless: lambda, step functions, wide range of miscellaneous automations, fargate
- System, Application, Network and security architectures
- Orchestrations: k8s (eks)
- SRE activities (logging, tracing, monitoring), OpsGenie, Splunk
- Hashicorp Vault
- Hybrid Networking
],