Diverse Lynx
Role: SR. CLOUD/AUTOMATION ENGINEER
Location: NYC - Onsite Job
Duration: 12 months contract to Hire
Experience: 10+ Year
Requirements
Cloud Platforms: 5+ years of expert-level, daily hands-on architecture and implementation experience with AWS, OCI, and GCP at enterprise scale AWS Advanced Services: Deep expertise in AWS Control Tower, Organizations, Landing Zones, Account Factory, and complex multi-account architectures Multi-Account Architecture: Advanced hands-on experience designing and implementing complex AWS Organizations structures with sophisticated SCPs and cross-account strategies Enterprise Connectivity: Expert-level experience architecting and troubleshooting AWS Direct Connect and OCI Fast Connect in complex enterprise environments. Infrastructure as Code: Expert-level daily coding in Terraform (advanced modules, state management), CloudFormation (complex nested stacks), and Ansible (custom modules, advanced playbooks Infrastructure Automation Programming: Expert-level skills in Python for automating infrastructure provisioning and management tasks, advanced Shell scripting for system administration and deployment automation, and PowerShell for automated infrastructure operations and configuration management Enterprise Monitoring: Expert implementation of complex SIEM architectures, Security Architecture: Advanced hands-on experience with enterprise security tools, IPS/IDS systems, vulnerability management platforms, and security automation frameworks DevOps Automation: Advanced expertise building and maintaining complex CI/CD pipelines with sophisticated testing, security integration, and deployment automation Deep understanding of infrastructure design patterns, scalability principles, and performance optimization Excellence in technical documentation and knowledge transfer for complex systems Healthcare & Compliance Expertise Knowledge of HIPAA technical safeguards and implementation requirements
Key Responsibilities Multi-Cloud Architecture & Infrastructure
Design and implement enterprise-grade multi-cloud architectures with advanced networking patterns, disaster recovery, and high availability across AWS, OCI Build and maintain complex AWS Control Tower implementations with custom guardrails, organizational policies, and automated compliance frameworks Architect and implement sophisticated AWS Landing Zones with multi-account strategies, cross-account networking, and centralized security controls Develop advanced AWS Account Factory automation with custom organizational unit structures, billing allocation, and automated resource provisioning Design and implement advanced multi-account architectures using AWS Organizations with complex Service Control Policies (SCPs) and permission boundaries Maintain production AWS Direct Connect and OCI Fast Connects with comprehensive monitoring for dedicated connection health including custom health checks, automated alerting workflows, and proactive failure detection systems Execute complex cloud migrations including detailed workload assessments, application dependency analysis, and automated migration tooling and processes Implement cloud cost optimization through automated resource rightsizing, reserved instance optimization, and cross-cloud cost monitoring and allocation
Advanced Infrastructure as Code (IaC) & Automation
Develop complex infrastructure automation using advanced Terraform modules, CloudFormation nested stacks, and sophisticated Ansible playbooks Build advanced AWS Control Tower customizations with custom Lambda functions, automated remediation, and complex policy enforcement Create sophisticated Account Factory blueprints with advanced templating, custom resource provisioning, and automated compliance validation Architect and build complex Landing Zone configurations with advanced networking topologies, centralized logging, and automated security controls Develop enterprise-scale automated provisioning workflows with complex approval processes, multi-stage deployments, and rollback capabilities Engineer advanced golden image pipelines using Packer with automated security hardening, compliance validation, and multi-cloud image distribution Build sophisticated configuration management systems with automated drift detection, remediation, and compliance reporting Design and implement complex CI/CD pipelines with advanced testing frameworks, security scanning, and automated deployment strategies Develop custom infrastructure orchestration tools and APIs for complex multi-cloud provisioning and management workflows
Monitoring, Logging & Alerting
Architect enterprise-scale monitoring solutions with custom metrics, advanced correlation engines, and predictive analytics across all cloud platforms Build sophisticated SIEM implementations with custom parsing rules, advanced threat detection, and automated incident response workflows Design complex centralized logging architectures with advanced log processing, retention policies, and compliance reporting automation Develop intelligent alerting systems with machine learning-based anomaly detection, alert correlation, and automated noise reduction Create advanced observability dashboards with custom visualizations, drill-down capabilities, and automated reporting for executive stakeholders Implement sophisticated automated incident response with custom runbooks, escalation policies, and self-healing infrastructure capabilities
Security & Compliance Architecture
Engineer multi-layered security frameworks with advanced IPS/IDS implementations, threat hunting capabilities, and automated response systems Design complex network security architectures with micro-segmentation, zero-trust principles, and advanced traffic analysis Build sophisticated security controls for Direct Connect and FastConnect with advanced encryption, access controls, and traffic monitoring Implement advanced network segmentation strategies with software-defined networking, policy automation, and compliance validation Architect enterprise Identity and Access Management with advanced RBAC, attribute-based access control, and automated provisioning Design comprehensive encryption strategies for data at rest, in transit, and in processing with advanced key management and rotation Build automated security assessment frameworks with continuous vulnerability scanning, compliance validation, and risk scoring Engineer advanced HIPAA compliance automation with policy-as-code, automated auditing, and compliance drift detection
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.
Requirements
Cloud Platforms: 5+ years of expert-level, daily hands-on architecture and implementation experience with AWS, OCI, and GCP at enterprise scale AWS Advanced Services: Deep expertise in AWS Control Tower, Organizations, Landing Zones, Account Factory, and complex multi-account architectures Multi-Account Architecture: Advanced hands-on experience designing and implementing complex AWS Organizations structures with sophisticated SCPs and cross-account strategies Enterprise Connectivity: Expert-level experience architecting and troubleshooting AWS Direct Connect and OCI Fast Connect in complex enterprise environments. Infrastructure as Code: Expert-level daily coding in Terraform (advanced modules, state management), CloudFormation (complex nested stacks), and Ansible (custom modules, advanced playbooks Infrastructure Automation Programming: Expert-level skills in Python for automating infrastructure provisioning and management tasks, advanced Shell scripting for system administration and deployment automation, and PowerShell for automated infrastructure operations and configuration management Enterprise Monitoring: Expert implementation of complex SIEM architectures, Security Architecture: Advanced hands-on experience with enterprise security tools, IPS/IDS systems, vulnerability management platforms, and security automation frameworks DevOps Automation: Advanced expertise building and maintaining complex CI/CD pipelines with sophisticated testing, security integration, and deployment automation Deep understanding of infrastructure design patterns, scalability principles, and performance optimization Excellence in technical documentation and knowledge transfer for complex systems Healthcare & Compliance Expertise Knowledge of HIPAA technical safeguards and implementation requirements
Key Responsibilities Multi-Cloud Architecture & Infrastructure
Design and implement enterprise-grade multi-cloud architectures with advanced networking patterns, disaster recovery, and high availability across AWS, OCI Build and maintain complex AWS Control Tower implementations with custom guardrails, organizational policies, and automated compliance frameworks Architect and implement sophisticated AWS Landing Zones with multi-account strategies, cross-account networking, and centralized security controls Develop advanced AWS Account Factory automation with custom organizational unit structures, billing allocation, and automated resource provisioning Design and implement advanced multi-account architectures using AWS Organizations with complex Service Control Policies (SCPs) and permission boundaries Maintain production AWS Direct Connect and OCI Fast Connects with comprehensive monitoring for dedicated connection health including custom health checks, automated alerting workflows, and proactive failure detection systems Execute complex cloud migrations including detailed workload assessments, application dependency analysis, and automated migration tooling and processes Implement cloud cost optimization through automated resource rightsizing, reserved instance optimization, and cross-cloud cost monitoring and allocation
Advanced Infrastructure as Code (IaC) & Automation
Develop complex infrastructure automation using advanced Terraform modules, CloudFormation nested stacks, and sophisticated Ansible playbooks Build advanced AWS Control Tower customizations with custom Lambda functions, automated remediation, and complex policy enforcement Create sophisticated Account Factory blueprints with advanced templating, custom resource provisioning, and automated compliance validation Architect and build complex Landing Zone configurations with advanced networking topologies, centralized logging, and automated security controls Develop enterprise-scale automated provisioning workflows with complex approval processes, multi-stage deployments, and rollback capabilities Engineer advanced golden image pipelines using Packer with automated security hardening, compliance validation, and multi-cloud image distribution Build sophisticated configuration management systems with automated drift detection, remediation, and compliance reporting Design and implement complex CI/CD pipelines with advanced testing frameworks, security scanning, and automated deployment strategies Develop custom infrastructure orchestration tools and APIs for complex multi-cloud provisioning and management workflows
Monitoring, Logging & Alerting
Architect enterprise-scale monitoring solutions with custom metrics, advanced correlation engines, and predictive analytics across all cloud platforms Build sophisticated SIEM implementations with custom parsing rules, advanced threat detection, and automated incident response workflows Design complex centralized logging architectures with advanced log processing, retention policies, and compliance reporting automation Develop intelligent alerting systems with machine learning-based anomaly detection, alert correlation, and automated noise reduction Create advanced observability dashboards with custom visualizations, drill-down capabilities, and automated reporting for executive stakeholders Implement sophisticated automated incident response with custom runbooks, escalation policies, and self-healing infrastructure capabilities
Security & Compliance Architecture
Engineer multi-layered security frameworks with advanced IPS/IDS implementations, threat hunting capabilities, and automated response systems Design complex network security architectures with micro-segmentation, zero-trust principles, and advanced traffic analysis Build sophisticated security controls for Direct Connect and FastConnect with advanced encryption, access controls, and traffic monitoring Implement advanced network segmentation strategies with software-defined networking, policy automation, and compliance validation Architect enterprise Identity and Access Management with advanced RBAC, attribute-based access control, and automated provisioning Design comprehensive encryption strategies for data at rest, in transit, and in processing with advanced key management and rotation Build automated security assessment frameworks with continuous vulnerability scanning, compliance validation, and risk scoring Engineer advanced HIPAA compliance automation with policy-as-code, automated auditing, and compliance drift detection
Diverse Lynx LLC is an Equal Employment Opportunity employer. All qualified applicants will receive due consideration for employment without any discrimination. All applicants will be evaluated solely on the basis of their ability, competence and their proven capability to perform the functions outlined in the corresponding role. We promote and support a diverse workforce across all levels in the company.