Senior AWS Cloud Developer (Terraform / Networking / Security)- Assistant Vice President
Indexed description
This role focuses on infrastructure provisioning, AWS networking, and security best practices, with an emphasis on automation and scalable architecture.
The ideal candidate should have 15+ years of real-world experience building and managing AWS environments using Terraform, not just theoretical knowledge.
Key Responsibilities
- Design and implement AWS infrastructure using Terraform (Infrastructure as Code)
- Provision and manage core AWS services, including:
- S3 (buckets, policies, lifecycle, security)
- CloudTrail (logging, auditing, multi-account setup)
- IAM (roles, policies, permission boundaries, trust relationships)
- Build and manage AWS networking components:
- VPCs, subnets, routing, NAT/IGW
- VPC Endpoints (Gateway & Interface) + endpoint policies
- Transit Gateway / CloudWAN
- VPC Peering and RAM (Resource Access Manager) sharing
- Configure and manage:
- Route 53 (hosted zones, resolvers)
- AWS Cloud Map (service discovery)
- IPAM (IP Address Manager) pools and allocations
- Implement security and compliance controls:
- AWS Config
- Security Hub
- Control Tower integrations
- Develop reusable Terraform modules and maintain state management best practices
- Troubleshoot infrastructure and connectivity issues across multi-account environments
- Ensure alignment with security, governance, and least-privilege principles
- 3–6+ years of hands-on AWS experience
- Strong experience with Terraform (required):
- Writing reusable modules
- Managing state (remote backends, locking)
- Multi-account deployments
- Deep understanding of AWS Networking:
- VPC design, routing, segmentation
- Transit Gateway / CloudWAN
- VPC endpoints and private connectivity
- Strong knowledge of AWS Security:
- IAM roles, policies, permission boundaries
- SCPs (Service Control Policies)
- Logging and auditing (CloudTrail)
- Experience with multi-account AWS environments (Control Tower preferred)
- Hands-on experience with:
- AWS Config
- Security Hub
- VPC sharing (RAM)
Familiarity With
- AWS Control Tower governance models
- CloudWAN architecture
- Centralized logging / audit accounts
- Experience integrating with CI/CD pipelines (e.g., Terraform in pipelines)
- Knowledge of OIDC / identity federation patterns
- AWS Certified Solutions Architect – Associate (minimum)
- AWS Certified Solutions Architect – Professional (strongly preferred)
- AWS Certified Advanced Networking – Specialty (preferred)
- AWS Certified Security Specialty - (Good to Have)
- HashiCorp Terraform Associate Certification (preferred)
- Proven ability to build AWS infrastructure from scratch using Terraform
- Strong understanding of network flows, security boundaries, and governance
- Experience working in multi-account, enterprise-scale AWS environments
- Ability to troubleshoot complex networking and IAM issues
- Not reliant on console (minimal “click-ops”) — automation-first mindset
We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future.
As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.
Discover more information on jobs at StateStreet.com/careers
Read our CEO Statement
Job ID: R-789620
Create a free Caio profile to unlock the full index and keep your job-search signal for future recommendations.
Unlock free search