AWS Cloud
Bright Vision Technologies · Irving, Texas, United States · 2 days ago
RemoteRemoteOTHRFull-time
About the role
Bright Vision Technologies is seeking an experienced AWS Cloud engineer to design, build, and operate large-scale, secure, and highly available cloud platforms on Amazon Web Services. This is a deeply hands-on engineering role spanning architecture, infrastructure-as-code, automation, security, observability, and continuous operational improvement of mission-critical production workloads.
Responsibilities
- Architect, deploy, and operate enterprise-grade AWS environments across compute, networking, storage, identity, and managed data services, with strong attention to scalability, reliability, and security
- Author and maintain production-quality infrastructure-as-code using Terraform, AWS CloudFormation, or AWS CDK, with rigorous version control, peer review, and automated validation
- Create and manage multi-account AWS organizations, including landing zones, SCPs, centralized logging, and shared services, to support secure and scalable enterprise adoption
- Implement strong IAM strategies using roles, permission boundaries, SCPs, AWS SSO, and short-lived credentials to enforce least-privilege access across the organization
- Build and deploy Amazon EKS clusters and other container platforms (ECS, Fargate), including auto-scaling, networking, and integration with service meshes and observability stacks
- Operate AWS managed data and analytics services such as RDS, Aurora, DynamoDB, S3, Redshift, Glue, and Kinesis, optimizing each for the access patterns and SLAs of the workloads it supports
- Develop and maintain robust CI/CD pipelines using AWS CodePipeline, CodeBuild, Jenkins, GitHub Actions, or GitLab CI, enabling repeatable, audited deployments of both infrastructure and applications
- Implement comprehensive observability using CloudWatch, X-Ray, AWS Distro for OpenTelemetry, Prometheus, Grafana, and third-party tooling, with well-designed dashboards, alerts, and Service Level Objectives (SLOs)
- Drive ongoing cost optimization through right-sizing, savings plans, reserved instances, lifecycle policies, and architectural simplification, with measurable savings tracked over time
- Implement disaster-recovery and business-continuity capabilities, including cross-region replication, automated backups, regular failover testing, and documented runbooks
- Strengthen security posture using AWS Security Hub, GuardDuty, Macie, Inspector, Config, and CloudTrail, and lead remediation of findings in collaboration with security teams
- Advises application development teams on AWS-native design patterns, anti-patterns, and the appropriate service choices for each problem domain
- Develop automation scripts and operational tooling in Python, Bash, and Go to streamline routine work and accelerate incident response
- Mentor junior engineers, lead architecture and design reviews, and contribute thought leadership to the broader cloud community within the organization
Requirements
- Bachelor’s degree in Computer Science, Engineering, or a related technical discipline
- At least five years of cloud engineering experience, with at least three years focused on AWS in production environments
- Strong hands-on experience with AWS core services, including EC2, VPC, IAM, S3, RDS, Lambda, CloudFront, and CloudFormation
- Production-grade experience with infrastructure-as-code tools such as Terraform, AWS CDK, or CloudFormation
- Solid experience designing and operating Amazon EKS or ECS clusters at scale
- Hands-on experience with CI/CD pipelines across infrastructure and application workloads
- Strong scripting skills in Python and Bash, with familiarity in Go or PowerShell considered a plus
- Deep understanding of cloud security, IAM, encryption, key management, and compliance requirements
- Experience implementing observability, monitoring, and alerting in cloud-native environments
- Strong troubleshooting, communication, and documentation skills
Qualifications
- Experience with multi-account AWS Organizations and centralized governance
- Familiarity with service mesh, eBPF-based observability, and zero-trust networking
- Exposure to FinOps practices and well-architected cost-optimization frameworks
- Experience operating regulated workloads (HIPAA, PCI-DSS, SOC 2, FedRAMP)