Key Responsibilities

• Design and implement AWS network architectures including Hub-and-Spoke, Shared Services, and Landing Zone models

• Architect and manage multi-account and multi-region AWS environments using AWS Organizations and Control Tower

• Design, configure, and manage Amazon VPC architectures (CIDR planning, subnetting, routing tables, segmentation)

• Implement centralized routing and security using AWS Transit Gateway

• Configure and manage VPC Peering, VPC Endpoints (PrivateLink), Internet Gateways, and NAT Gateways

• Design and support hybrid connectivity using Site-to-Site VPN, Client VPN, and AWS Direct Connect

• Automate AWS network infrastructure using Terraform modules and Infrastructure-as-Code best practices

• Design, deploy, and manage firewall solutions including AWS Network Firewall, Security Groups, NACLs, and third-party firewalls

• Configure and troubleshoot routing protocols such as BGP and static routing across AWS and on-prem environments

• Manage and support switching technologies including VLANs, trunking, and Layer 2 / Layer 3 switching

• Troubleshoot complex network issues related to routing, switching, firewall policies, latency, and packet flow

• Implement and manage load balancing architectures using ALB, NLB, and Gateway Load Balancer (GWLB)

• Monitor and optimize network performance using VPC Flow Logs, CloudWatch, and network monitoring tools

• Maintain network diagrams, architecture documentation, and Terraform code repositories

Technical Stack & Tools

• Strong expertise in AWS Networking & Network Architecture

• Hands-on experience with Terraform for AWS network automation

• In-depth knowledge of routing protocols (BGP, static routing)

• Strong experience with switching technologies (VLANs, STP, L2/L3 switching)

• Solid experience implementing and managing firewalls and network security controls

• Deep understanding of TCP/IP, DNS, DHCP, subnetting, and network segmentation

• Proven experience troubleshooting cloud, on-prem, and hybrid network environments

Preferred Qualifications

• AWS Certified Advanced Networking – Specialty

• Experience with AWS Landing Zone / Control Tower

• Experience with third-party firewalls (Palo Alto, Fortinet, Cisco, Check Point)

• Knowledge of Zero Trust and defense-in-depth network security models

• Experience with IPv6 networking

• Familiarity with DevOps practices and CI/CD pipelines

Why Join Us?

• Work on large-scale, enterprise-grade AWS environments

• High ownership and architectural influence

• Collaborative engineering culture

• Fast-paced environment with real technical challenges