AWS Principal Network Engineer

About the Role:

We are seeking a Principal Networking Engineer with extensive experience in AWS cloud networking to lead the design, implementation, and optimization of our global network infrastructure. This role requires deep expertise in cloud networking architectures, hybrid cloud connectivity, and large-scale network operations. The ideal candidate will drive strategic initiatives, ensure high availability, security, and performance, and serve as a thought leader in cloud networking best practices.

Key Responsibilities:

• Design, implement, and optimize cloud networking solutions in AWS, including VPCs, Transit Gateway, Direct Connect, PrivateLink, and AWS Networking Firewall.
• Architect hybrid cloud and multi-cloud networking solutions, integrating on-premises and cloud environments securely and efficiently.
• Lead network automation initiatives using Terraform, CloudFormation, Python, or Ansible to streamline deployments and improve operational efficiency.
• Ensure network security and compliance by implementing best practices, including zero-trust networking, encryption, and security groups/NACLs management.
• Troubleshoot complex networking issues, ensuring minimal downtime and optimal performance through monitoring, logging, and observability tools (e.g., AWS CloudWatch, VPC Flow Logs, ELK, or Prometheus).
• Collaborate with DevOps, Security, and Software Engineering teams to design and maintain scalable and resilient network architectures.
• Evaluate and implement new networking technologies, staying ahead of industry trends and AWS networking advancements.
• Mentor junior engineers and contribute to a culture of continuous learning and technical excellence.

Required Qualifications:

• 10 years of experience in network engineering, with a strong focus on cloud networking (AWS preferred).
• Deep expertise in AWS networking services (VPC, Transit Gateway, Direct Connect, PrivateLink, ALB/NLB, Route 53, Global Accelerator).
• Strong knowledge of routing protocols (BGP, OSPF, EIGRP) and network security principles (firewalls, VPNs, IPS/IDS).
• Proficiency in network automation and Infrastructure as Code (IaC) using Terraform, CloudFormation, Python, or Ansible.
• Experience with hybrid cloud connectivity, including MPLS, SD-WAN, and cloud interconnects.
• Hands-on experience with monitoring and troubleshooting tools such as AWS CloudWatch, Wireshark, NetFlow, and ThousandEyes.
• Strong problem-solving skills and the ability to troubleshoot complex, high-impact network issues.
• Excellent communication and leadership skills, with experience mentoring teams and leading cross-functional initiatives.

Preferred Qualifications:

• AWS Certified Advanced Networking ? Specialty or equivalent certification.
• Experience with multi-cloud networking (Azure, GCP) and SDN architectures.
• Familiarity with Kubernetes networking (CNI plugins, Istio, service mesh).
• Experience with DDoS mitigation and security tools such as AWS Shield, WAF, and NACLs

The pay range that the employer in good faith reasonably expects to pay for this position is $41.61/hour - $65.01/hour. Our benefits include medical, dental, vision and retirement benefits. Applications will be accepted on an ongoing basis.

Tundra Technical Solutions is among North America’s leading providers of Staffing and Consulting Services. Our success and our clients’ success are built on a foundation of service excellence. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Unincorporated LA County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: client provided property, including hardware (both of which may include data) entrusted to you from theft, loss or damage; return all portable client computer hardware in your possession (including the data contained therein) upon completion of the assignment, and; maintain the confidentiality of client proprietary, confidential, or non-public information. In addition, job duties require access to secure and protected client information technology systems and related data security obligations.

Salary : $42 - $65