Associate Architect / Architect - Platform

Must-have Skills

12+ years of relevant hands-on technical expertise, with the knowledge and consulting skills to understand, shape and deliver AWS solutions
Experience with setting up a secure, multi-account AWS environment using IAC (Terraform, CloudFormation) deployment of AWS Control Tower using Landing Zone Accelerator. Implementing Service Control Policies, Guardrails, AWS Organizations policies and OU structures to best practice
Experience in configuring the network topology at organization level establishing on-prem connectivity/connectivity between vpcs by setting up of VPCs, Transit Gateway, S2S VPN Tunnel, Direct Connect etc.
Experience of working in CI/CD tools like AWS Cloud Native Tools, GitHub, GitLab, Argocd, Jenkins etc. Worked on design and implementation of programmable infrastructure (CFT/Terraform).
In depth, hands-on experience in deploying microservices to AWS ECS or AWS EKS and in preparing Kubernetes resources such as Fargate Pods, Services (ClusterIP, NodePort, Load Balancer, External Name) config files and deploying resources using the config files. Knowledge of Kubernetes storage and how persistent storage is configured and managed in Kubernetes.
Experience configuration, migration of Logging and Monitoring services like Grafana, Loki, Prometheus, DataDog for production grade containerized applications.
In-depth knowledge and hands-on experience with AWS services and solutions, including but not limited to EC2, S3, RDS, Aurora, ElastiCache Redis, MemoryDB Redis, VPC, IAM, DNS, ELB, CloudFormation, Lambda, and other relevant AWS technologies. A deep understanding of AWS best practices, architecture patterns, Disaster Recovery plans and cost optimization techniques is essential. 
Proficiency in infrastructure automation and configuration management tools such as AWS CloudFormation, Terraform, or AWS CDK (Cloud Development Kit). 
Experience with scripting languages (e.g., Python, PowerShell) and automation frameworks to streamline infrastructure provisioning and management.
Experience with networking in case of multi-account environments by setting up of VPCs, Transit Gateway, S2S VPN Tunnel, etc.
Experience with Cloud Security (IAM) and Web Application Security i.e. Securing web applications using WAF
Experience with creating Disaster Recovery plans to ensure business continuity

Good To Have

Experience with API design principles, versioning, security, and documentation for web/mobile applications.
Prior experience in planning migration roadmaps for production workloads deployed on-prem or on IaaS provider infrastructure to AWS.
Understanding of information security and compliance standards on AWS including SOC2 and handling PII data to best practice from an AWS infrastructure standpoint.
Hands-on experience with provisioning, maintaining, and deploying Kubernetes clusters in AWS EKS & Fargate