Cloud Platform Engineer – (L7-Manager)
We are seeking a talented Cloud Platform Engineer to join the team and contribute a financial institution; it is a trusted financial services organization offering cutting-edge banking solutions to individuals and businesses. In this , you will be responsible for enhancing AWS Landing Zones, adding features, and implementing innovative cloud solutions that align with industry regulations and security best practices.
As a Cloud Platform Engineer, your will focus on improving and extending AWS Landing Zones, ensuring they meet evolving business needs and technical requirements. You will design, build, and deploy secure solutions that enhance functionality, scalability, and performance across cloud infrastructures.
Your expertise in AWS-native tools, DevOps pipelines, and Site Reliability Engineering (SRE) practices will contribute to maintaining secure foundations while adding advanced features to the Landing Zone architecture. You will collaborate across multi-disciplinary teams to ensure seamless integration, high availability, and compliance with strict financial services regulations.
Key Responsibilities:
- Design and implement enhancements to AWS Landing Zones, including Control Tower, Organizations, and multi-account configurations, to meet changing business requirements.
- Develop new features focused on security, compliance, and scalability by leveraging AWS-native capabilities such as Service Control Policies (SCPs), IAM s, and permissions boundaries.
- Extend Landing Zone functionality by automating governance, improving platform integration, and optimizing account scalability.
- Modernize infrastructure to align with evolving industry standards and regulatory requirements.
- Build modular and reusable Infrastructure-as-Code (IaC) templates using AWS CloudFormation and AWS Native DevOps tooling to support Landing Zone enhancements.
- Design and deploy scalable cloud solutions that integrate cloud and non-cloud systems seamlessly.
- Drive secure development practices for architecture improvements while ensuring zero-trust principles are applied across the Landing Zone setup.
- Apply SRE principles to enhance system reliability, scalability, and performance, focusing on operational resilience and monitoring.
- Implement observability tools such as CloudWatch, X-Ray, and others such as Grafana to track system performance and proactively manage enhancements.
- Diagnose and resolve production incidents while continuously reducing manual toil via automation.
- Embed security best practices into Landing Zone architectures by implementing robust IAM policies, SCP frameworks, and permissions management strategies.
- Partner closely with architects, cloud operations teams, and stakeholders to identify business needs and integrate new features into the Landing Zone.
- Document enhancements, security configurations, and technical roadmaps to ensure knowledge sharing and alignment across teams.
Skills & Experience:
Essential Skills:
1. Feature Development for Landing Zones: Proven ability to add features and optimize AWS Landing Zones with Control Tower, Organizations, and multi-account setups.
2. Cloud Platform Architecture principles and native services for scalable, secure cloud solutions that align with regulatory and enterprise requirements.
3. Infrastructure Automation: Hands-on experience with IaC tools AWS CloudFormation
4. Security Practices: Expertise in SCPs, IAM configurations, permissions boundaries, and governance frameworks to ensure secure cloud operations.
5. SRE Principles: Proficiency in leveraging Site Reliability Engineering practices to improve observability, resolve incidents, and enhance scalability.
6. DevOps Tooling: Experience AWS-native tools for CI/CD automation.
7. Serverless implementation experience using native services such as Lambda with Python or Fargate.
8. Containerized technologies and principles
Preferred Skills:
- Deep knowledge of AWS organizations and governance frameworks for multi-account environments.
- Experience developing features in cloud infrastructures for regulated industries, such as financial services.
- Familiarity with hybrid and multi-cloud integration strategies.
- Advanced hands-on experience with Terraform Enterprise and policy-driven IaC solutions and DevOps tools like Jenkins/GitHub.
#LI-EU
