Cloud Engineer - Automation (CPE)

Overview

We are seeking a highly skilled and motivated Cloud Lead Engineer to join Healthcare Commercial Cloud (HCC) to design, implement, and continuously improve HCC solutions and services in a multi-tenant cloud environment. This role requires deep hands-on expertise in AWS native services, with a focus on multi-tenant account governance, oversight function, network security, identity and access management, and cost-optimized cloud service delivery. You will design and implement cloud solutions that align with business needs, regulatory requirements, and long-term scalability, and enhance existing services, introducing new cloud capabilities while ensuring security, visibility, and operational control in a multi-account AWS environment managed via Control Tower, AWS Organizations, Service Control Policies, Resource-Based Policies, and Security Hub. You may also explore integrating AI / ML capabilities using AWS services to enhance analytics, automation and business intelligence use cases.

Role & Responsibilities

• Design, implement, and manage secure, scalable, and cost-efficient AWS cloud infrastructure using AWS native services.
• Build new cloud services and enhance existing platforms based on evolving business and operational requirements.
• Implement and enforce account governance using AWS Control Tower, SCPs, RCPs, AWS Organizations, AWS Config, Firewall Manager, and Security Hub.
• Architect secure, scalable, and resilient network topologies using VPC, subnets, NAT, VPN, Transit Gateway, Direct Connect, and PrivateLink.
• Manage hybrid connectivity between on-premises and cloud environments with a focus on performance, availability, and security.
• Familiar with AWS network firewall, VPC traffic mirroring, and other advanced networking services in AWS.
• Familiar with identity and access controls using IAM, SCPs, AWS SSO, and IAM Identity Center.
• Monitor, investigate, and remediate security findings from AWS Security Hub, GuardDuty, Inspector, Config, Firewall Manager, Shield Advanced, and IAM Access Analyzer.
• Secure workloads by enforcing least privilege access and enabling encryption with AWS KMS and Secrets Manager.
• Provide technical advisory on cloud application design, network, and security architecture or other cloud related technologies.
• Establish centralized logging, detection, monitoring, and incident response capabilities across accounts and regions.
• Utilize observability tools such as CloudWatch, OpenSearch, QuickSight, Grafana, or similar solutions to monitor cloud resources effectively.
• Develop operational dashboards and reporting mechanisms to support infrastructure monitoring, performance analysis, and compliance requirements.
• Able to automate provisioning and configuration management using AWS CloudFormation, AWS CDK, or Terraform.
• Able to monitor and troubleshoot cloud environments using CloudWatch, X-Ray, CloudTrail, and AWS Config.
• Maintain comprehensive documentation covering infrastructure architecture, account structure, and governance policies.

Requirements

Apply

Note : It only takes a few minutes to apply for a meaningful career in HealthTech. Be careful—do not provide bank or credit card details when applying. If you see something suspicious, report this job ad.

#J-18808-Ljbffr