.Network Engineer

 

 

 

Job Summary:

We are seeking a highly skilled AWS Network Engineer to design, implement, and manage secure, scalable, and resilient network architectures within AWS environments. This role involves working on cloud migration, multi-account setups, and implementing advanced networking, security, and compliance controls. The engineer will also support hybrid connectivity and centralized network services across environments.

 

Key Responsibilities:

VPC & Subnet Design

Design and configure VPCs, public/private subnets, route tables, NAT gateways, and internet gateways.

Ensure network segmentation and isolation across environments (e.g., production, development, sandbox).

Implement high availability and fault-tolerant network designs.

 

Connectivity

Configure VPNs, AWS Direct Connect, and Transit Gateway for hybrid cloud connectivity.

Set up VPC peering and AWS PrivateLink for secure service access across accounts and regions.

Optimize routing and bandwidth utilization across hybrid and cloud-native environments.

 

DNS & Firewall

Manage Route 53 zones and records for internal and external DNS resolution.

Implement firewall rules, security groups, and network ACLs to enforce traffic policies

Validate ingress/egress controls, traffic flow, and ensure secure connectivity.

Infrastructure & Foundational Services

 

Provision foundational services: IAM, CloudTrail, AWS Config, GuardDuty.

Define and enforce tagging strategies, resource hierarchy, and naming conventions.

Support account vending and service catalog processes for network-related resources.

 

Security & Compliance

Implement Service Control Policies (SCPs), IAM policies, and encryption standards.

Map compliance frameworks (e.g., HIPAA, CIS, NIST-CSF) to AWS networking services.

Configure centralized logging, audit trails, and security monitoring across accounts.

 

 

Shared Services & Governance

Set up centralized DNS, logging, monitoring, and security tooling across AWS accounts.

Collaborate with cloud architects and security teams to align with enterprise governance.

Manage shared services such as Transit Gateway, Route 53 Resolver, and centralized firewalls.

Migration & Integration

Support cloud migration efforts involving network re-architecture and connectivity planning.

Troubleshoot and optimize network performance during and after migration.

Integrate on-premises networks with AWS using secure and scalable solutions.

 

Required Skills & Qualifications:

3+ years of hands-on experience in AWS networking and cloud infrastructure.

Strong understanding of IP networking, routing protocols, and network security.

Experience with AWS networking services: VPC, Transit Gateway, Direct Connect, VPN, Route 53.

Familiarity with monitoring and troubleshooting tools (e.g., VPC Flow Logs, CloudWatch, ELB logs).

Knowledge of IAM, SCPs, and compliance frameworks.

 

Optional Skills (DevOps & Automation):

Experience with Terraform or CloudFormation for network resource provisioning.

Familiarity with Jenkins, Bitbucket, or other CI/CD tools.

Exposure to container networking (e.g., ECS, EKS, Kubernetes networking).

 

Certifications (Preferred but not required):

AWS Certified Advanced Networking – Specialty

AWS Certified Solutions Architect – Associate or Professional

Cisco or other networking certifications (CCNA, CCNP) are a plus

 

Soft Skills:

Strong analytical and troubleshooting skills.

Excellent communication and documentation abilities.

Ability to work independently and collaboratively in cross-functional teams.