Job Title

Cloud Engineer — Cloud Tower / Cloud Foundation & AWSPune / NagpurShort summary:Seeking a Strong Cloud Engineer to build and operate Cloud Tower using Cloud Foundation with strong AWS administration, deep AWS Lambda and serverless expertise, robust AWS security and IAM knowledge, and advanced Python skills with extensive boto3 experience.Role overviewYou will design, implement, and operate Cloud Tower solutions on Cloud Foundation while owning AWS infrastructure and serverless application lifecycles. The ideal candidate combines AWS admin experience, security-first architecture, hands-on Lambda development and debugging, and production-grade Python automation using boto3. You will work with platform, security, and developer teams to enable secure, scalable, and automated cloud services.Key responsibilities- Design, deploy, and operate Cloud Tower components on Cloud Foundation and integrate with AWS accounts and services. - Lead AWS platform administration: VPC, IAM, KMS, EC2, S3, RDS, networking, and account structure (Landing Zone/Org). - Build, test, and maintain serverless applications using AWS Lambda; implement CI/CD for Lambda deployments. - Implement robust AWS security controls: IAM least-privilege, resource policies, KMS, security groups, VPC endpoints, and monitoring. - Develop automation and operational tooling in Python using boto3 for provisioning, remediation, monitoring, and incident response. - Create IaC templates and pipelines (CloudFormation, CDK, Terraform) and integrate with CI/CD systems. - Troubleshoot and optimize Lambda performance, cold-start behavior, memory/timeout, and observability (X-Ray, CloudWatch). - Collaborate with security, SRE, and engineering teams on threat modeling, secure design reviews, and compliance controls. - Produce runbooks, architecture diagrams, technical guidance, and mentor junior engineers.Required qualifications- 5+ years hands-on AWS experience with strong administration and platform responsibilities. - Deep, practical experience building and operating AWS Lambda functions and serverless architectures. - Strong Python programming skills and advanced experience with boto3 for AWS automation and integrations. - Solid AWS security experience: IAM policies, roles, SCPs, KMS, resource policies, VPC security, and logging/monitoring. - Experience with IaC: CloudFormation, CDK, or Terraform. - Experience with CI/CD for cloud/serverless deployments (Jenkins, GitLab CI, GitHub Actions, AWS CodePipeline, or similar). - Experience implementing observability for serverless apps (CloudWatch metrics/logs, X-Ray, structured logging). - Strong troubleshooting and debugging skills in distributed/cloud environments. - Excellent written and verbal communication; experience working across security, platform, and application teams.Preferred qualifications- Prior experience with Cloud Foundation, Cloud Tower, or enterprise cloud landing-zone frameworks. - AWS Certifications (AWS Solutions Architect, DevOps Engineer, or similar). - Familiarity with containerization and orchestration (ECS/EKS) where serverless patterns interoperate with containers. - Experience with event-driven architectures (SNS, SQS, EventBridge) and streaming (Kinesis). - Familiarity with secrets management solutions (AWS Secrets Manager, HashiCorp Vault). - Experience in regulated environments and supporting compliance/audit requirements.