Senior Cloud Engineer – Enterprise AWS Migrations
Senior Cloud Engineer specializing in enterprise-scale migrations to AWS, with deep experience designing secure multi-account landing zones, executing complex application and data center migrations, and building automation-first cloud platforms. Proven track record leading cross-functional teams through discovery, wave planning, execution, and cutover for large portfolios of workloads while maintaining uptime, security, and compliance.
- 8+ years of engineering and operating public cloud environments, including large-scale AWS implementations.
- Delivered numerous migration and modernization projects across regulated and high availability environments, partnering closely with architects, security, networking, and application teams.
- Strong background in Terraform/CloudFormation, identity and security controls, network architecture, and disaster recovery in AWS.
Core Competencies
- Cloud Migration Strategy & Execution – Portfolio discovery, TCO analysis, wave planning, landing zone readiness, cutover/runbook design
- AWS Landing Zones & Governance – AWS Organizations, Control Tower, SCPs, IAM, account vending, guardrails
- Hybrid Networking & Connectivity – VPC design, Transit Gateway, Cloud WAN, Direct Connect, VPN, on-prem integration
- Infrastructure as Code & Automation – Terraform, CloudFormation, CI/CD pipelines, GitOps workflows
- Resilience & DR – Multi-AZ/Region design, RTO/RPO planning, backup and recovery, failover testing
- Security & Compliance – KMS, IAM, security groups/NACLs, CloudTrail, Config, CIS and best-practice baselines
- Observability & Operations – CloudWatch, CloudTrail, EventBridge, Container/VM monitoring, logging, incident triage and escalation
- Stakeholder Leadership – Executive and technical communication, runbooks, knowledge transfer, mentoring
Cloud & DevOps Skills
AWS Services (Core):
VPC, Subnets, Transit Gateway, Direct Connect, VPN, EC2, Auto Scaling, ALB/NLB, S3, EFS,
EBS, RDS, Aurora, DynamoDB, SSM, CloudWatch, CloudTrail, Config, KMS, Secrets
Manager, Lambda, Step Functions, SNS/SQS, CloudFormation, Control Tower, Organizations,
Service Catalog
Migration & Hybrid:
AWS Application Migration Service (MGN), Database Migration Service (DMS), ModelizeIT,
Server Migration tooling, application discovery tools, DNS cutover strategies, hybrid identity
and networking patterns
Infrastructure as Code & Tooling:
Terraform, CloudFormation, Ansible, Packer, Git (GitHub/GitLab/CodeCommit), CI/CD (CodePipeline, GitHub Actions, Azure DevOps, Jenkins)
Containers & Platform (optional, if applicable):
ECS/Fargate and/or EKS, container image pipelines, observability and scaling patterns
Scripting & Automation:
Python, PowerShell, Bash, REST APIs, automation of provisioning, configuration, and compliance checks
Security & Compliance:
IAM role design, SCPs, least-privilege access models, encryption at rest/in transit, logging/monitoring baselines, implementation of security controls guided by enterprise or CIS benchmarks
Certifications
- AWS Certified Solutions Architect – Professional (required)
- AWS Certified CloudOps Engineer – Associate (or DevOps Engineer – Professional) (required)
- AWS Certified Cloud Practitioner
- Any relevant Kubernetes, security, or networking certifications
