Position Details
Senior Sme Apply
Job Summary:
The Senior SME will provide expert-level support for an AWS GovCloud platform within the Cloud Architecture and Administration team. This role requires a strong working knowledge of supporting AWS platforms, advanced skills in Infrastructure as Code (IaC), and the ability to handle multiple projects simultaneously. The successful candidate will be self-motivated, possess strong analytical skills, and learn quickly.
Location:District of Columbia, United States
Responsibilities:
- Design and maintain deployment pipelines using CodePipeline and GitLab CI.
- Implement git-based workflows for infrastructure and configuration management.
- Manage AWS Organizations, Control Tower, and account vending processes.
- Implement guardrails and organizational policies using Service Control Policies (SCPs).
- Implement cross-account networking solutions using Transit Gateway, VPC peering, PrivateLink, and hub-spoke architectures.
- Build and operate container orchestration platforms with add-ons, service mesh, and cluster lifecycle management (EKS/ECS).
- Implement container security measures, including image scanning, admission controllers, and pod security policies/standards.
- Integrate AWS Config, Security Hub, and GuardDuty for compliance automation and automated remediation.
- Implement zero trust architecture principles, including identity-based networking and least privilege access patterns.
- Manage encryption and key management strategies using KMS, CloudHSM, and encryption-at-rest/in-transit.
- Leverage AWS native services to remediate security findings with event-driven architecture.
- Implement centralized logging and monitoring solutions using CloudWatch, Cloudtrail, and Splunk.
- Implement FinOps practices, cost allocation tags, and automated rightsizing for cost optimization.
- Provide expert support, analysis, and research into exceptionally complex problems.
- Serve as a technical expert on executive-level project teams, providing technical direction, interpretation, and alternatives.
- Develop advanced technological ideas and guide their development into a final product.
- Design and maintain deployment pipelines using CodePipeline and GitLab CI.
- Implement git-based workflows for infrastructure and configuration management.
- Manage AWS Organizations, Control Tower, and account vending processes.
- Implement guardrails and organizational policies using Service Control Policies (SCPs).
- Implement cross-account networking solutions using Transit Gateway, VPC peering, PrivateLink, and hub-spoke architectures.
- Build and operate container orchestration platforms with add-ons, service mesh, and cluster lifecycle management (EKS/ECS).
- Implement container security measures, including image scanning, admission controllers, and pod security policies/standards.
- Integrate AWS Config, Security Hub, and GuardDuty for compliance automation and automated remediation.
- Implement zero trust architecture principles, including identity-based networking and least privilege access patterns.
- Manage encryption and key management strategies using KMS, CloudHSM, and encryption-at-rest/in-transit.
- Leverage AWS native services to remediate security findings with event-driven architecture.
- Implement centralized logging and monitoring solutions using CloudWatch, Cloudtrail, and Splunk.
- Implement FinOps practices, cost allocation tags, and automated rightsizing for cost optimization.
- Provide expert support, analysis, and research into exceptionally complex problems.
- Serve as a technical expert on executive-level project teams, providing technical direction, interpretation, and alternatives.
- Develop advanced technological ideas and guide their development into a final product.
Required Skills & Certifications:
Preferred Skills & Certifications:
Special Considerations:
Scheduling:
