AWS Architect

Job Description
Must Have Technical/Functional Skills

Primary Skill: AWS Architect
Secondary: Terraform, CI/CD, AWS Devops, Agile tools ( Bit bucket )
Experience: 10 + Years

Roles & Responsibilities

AWS Architect with Hands-on experience in building Terraform modules and CI/CD experience using Terrafrom enterprise.
AWS Architecture with strong knowledge on Database products/ IAM/ Network, Hands-on experience with Terraform, Strong CI/CD experience with Bitbucket/Terraform Enterprise. Ansible Playbook experience is plus

Required Skills :-

AWS Architecture
Terraform skills
Github/Bitbucket/Jenkins/XLR/CodePipeline

Roles and Responsibilities:-
Candidate is responsible to design End to End solution for AWS Database products via Infrastructure as code through Terraform Proven Terraform hands-on experience (7 years) building reusable IaC modules, managing state, workspaces, remote backends, and environment promotion patterns.
Terraform Enterprise (TFE) experience: workspace design, policy-as-code (Sentinel/OPA where applicable), variable management, VCS-driven workflows, and run governance.
Strong CI/CD implementation experience integrating Bitbucket pipelines (or Bitbucket + runners) to automate Terraform plans/applies with quality gates and approvals.
Strong AWS architecture expertise designing secure, scalable, highly available solutions across multi-account and multi-region environments.
Deep knowledge of AWS database services (e.g., RDS/Aurora, DynamoDB, DocumentDB, ElastiCache, OpenSearch) including HA/DR patterns, performance, and cost optimization.
Hands-on IAM expertise: designing least-privilege access, IAM roles/policies, permission boundaries, SCPs, cross-account access, and federation/SSO integration.
Strong AWS networking skills: VPC design, subnets, route tables, NAT/IGW, Transit Gateway, VPC endpoints/PrivateLink, security groups/NACLs, DNS (Route 53), and hybrid connectivity (VPN/Direct Connect).
Security and compliance mindset: encryption (KMS), secrets management (Secrets Manager/Parameter Store), auditability (CloudTrail), logging/monitoring (CloudWatch), and alignment to enterprise controls.
Automation tooling experience (Plus): Ansible playbooks for configuration automation, orchestration, and post-provisioning tasks in hybrid/cloud environments.