Must Have Technical/Functional Skills
• 8+ years of experience in Architecting robust, scalable, and cost-effective AWS environments, including networking (VPN/Direct Connect) and security.
• 4+ years of hands-on experience to develop Terraform or AWS CloudFormation templates to automate infrastructure deployment and management.
• Successfully drive minimum 2 migration projects from on premises to AWS and update legacy systems to containerized (EKS/ECS) or serverless architectures.
• Hands on experience in Implement security guardrails (IAM, KMS, Security Hub) and ensure compliance with frameworks like ITAR or PCI DSS.
• Have experience in building "golden paths" and self-service workflows for engineering teams to accelerate development.
• Ability to partner with development, security, and operations teams to establish best practices (Well-Architected Framework)
• Experience leading technical design, defining standards, and mentoring junior engineers.
• Experience working in regulated environments and implementing controls to meet ITAR, EAR and applicable export/IT compliance requirements.
• Knowledge of network security, encryption, and compliance controls.
• Excellent written and verbal communication; experience producing architecture diagrams, runbooks and compliance artifacts.
Preferred Qualifications:
• Bachelor’s degree or higher
• Certifications: AWS Certified Solutions Architect Professional, Azure Solutions Architect Expert, Google Cloud Platform Professional Cloud Architect, HashiCorp Terraform Associate.
• Experience with cloud governance frameworks (landing zone design, Control Tower, Azure Landing Zones, Anthos).
Roles & Responsibilities
• Architect, design, and deliver cloud solutions across AWS, Azure and Google Cloud Platform, selecting the right provider and services for business needs.
• Implement infrastructure as code using Terraform and/or CloudFormation; build, review and maintain reusable modules, blueprints and automation.
• Design, deploy and operate container platforms using Docker and Kubernetes (EKS/AKS/GKE or self managed), including CI/CD integration for secure software delivery.
• Define and implement networking architectures (VPCs/VNets, transit/peering, hybrid connectivity, routing, firewalls), private connectivity and multi region topologies.
• Own security architecture and hardening: network security, host/container security, secrets management, encryption, vulnerability management and runtime protection.
• Architect identity and access management: RBAC, IAM policies, federation (SAML/OIDC), least privilege models, service accounts and workload identity.
• Lead cost optimization: right sizing compute and storage, r eserved instances/savings plans, autoscaling, and governance approaches to cloud spend.
• Define multi cloud and hybrid design patterns, platform services and interoperability strategies (service mesh, API gateways, cross cloud networking).
• Implement monitoring, logging and observability (metrics, traces, logs) and SRE practices for availability, scalability and incident response.
• Translate regulatory and compliance requirements (ITAR, EAR, export controls, data residency) into platform controls, policies and audit evidence.
• Create architecture diagrams, runbooks, design docs and platform standards; mentor engineers and evangelize best practices.
• Collaborate with Security and Compliance teams to support audits, remediation, and certification efforts.
Generic Managerial Skills, If any
• Excellent problem solving, communications, interpersonal and leadership skills
• Exceptional presentation, visualization, and analysis skills
• Ability to understand and comprehend complex environments and systems
• Inquisitive by nature and keen to figure out how things work
Base Salary Range : $140,000 to $150,000 Per Annum
TCS Employee Benefits Summary:
Discretionary Annual Incentive.
Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans.
Family Support: Maternal & Parental Leaves.
Insurance Options: Auto & Home Insurance, Identity Theft Protection.
Convenience & Professional Growth: Commuter Benefits & Certification & Training Reimbursement.
Time Off: Vacation, Time Off, Sick Leave & Holidays.
Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing.
Never miss an opportunity! Create an alert based on the job you applied for.
