Cloud Engineer

Overview

Our high-performing software development team is seeking an AWS Cloud Engineer in support of MicroHealth LLC, headquartered in Vienna, VA. We provide operations, maintenance, development, modernization, and enhancement for a high-profile, government-wide application that supports millions of users. We are looking for someone who can operate,  optimize, and monitor software applications and infrastructure in Amazon Web Services, including applying expertise in managed services.

Responsibilities

·       Support Information Technology (IT) services to host, operate, maintain, support, enhance, and modernize customer system.

·       Develop scripts for automating Cloud/server functions.

·       Implement security groups, Network ACLs, and IAM policies according to the security requirements (for example. restrict who can make changes to networking resources including VPCs, subnets, routing tables, security groups, Network ACLs, VGW, IGW, etc.)

·       Build and manage Bastion Hosts, access points, and VPC.

·       Make necessary improvements in resources and work on resource tagging to designate plans and costs for governance, reporting, and budgeting

Required Experience/Qualifications

·       3-5 years of cloud networking experience and 5-8 years of traditional networking including TCP/IP, routing, and application delivery

·       BS/BA in computer science, MIS, or equivalent experience

·       IT certifications such as AWS Certified Advanced Networking – Specialty/Developer/SysOps certifications/Solutions Architect/DevOps Engineer Professional

·       Managing VPC infrastructure using AWS CloudFormation

·       Solid understanding of cloud-based network orchestration and automation tools like Terraform or Ansible

·       Audit changes using AWS Config, Amazon Single Notification Service (Amazon SNS), AWS Lambda, and CloudFormation drift detection

·       Working knowledge of theory, concepts, and real-world application of continuous integration/continuous delivery (CI/CD)  

·       Design fault tolerant system in AWS

·       Experience with cloud based cross account communication including AWS Direct Connect, Transit Gateway and VPC peering

·       Proficient AWS Cloud Networking expertise: BGP, DNS, VPC, Transit/NAT/Internet Gateways, Routing Tables, etc

·       Maintain backups of these resources via regular on-premises backups with help of different AWS services

Preferred Experience/Qualifications

·       Experience with network design and topography

·       Experience implementing automated alarms using CloudWatch

·       Experience implementing customized metrics using CloudWatch

·       Able to assess appropriate use of security groups and Network ACLs (permit compared to deny)

·       Use AWS CloudTrail for monitoring attempted/completed networking resource changes

·       Reduce the production time necessary via AWS CloudFormation skills to deploy the infrastructure for automation

·       Use VPC flow logs to locate configuration errors or potential security holes in security groups or Network ACLs

·       Experience supporting network infrastructure tools (VPN, network threat management, vulnerability assessment, and firewalls) are desirable

·       Creating backups and managing disaster recovery

·       Performing software upgrades. Kernel patching, errata patches

·       Unix/Linux administration background in the past

Special Requirements/Security Clearance

Must be able to obtain and Maintain a Public Trust.