Back to search:AWS Principal / Dombivli

Job Description: AWS Principal Network Architect (Terraform + ADO Automation)

Location - India, Remote

Duration - 1 month Contract

Timings - 9:30 PM to 5:30 AM IST.

Note - Need Strong experience in networking

Overview

We are looking for an accomplished AWS Principal Network Architect with deep expertise in Terraform , Azure DevOps (ADO) , and enterprise‑scale AWS networking .

This role will lead to the redesign and stabilization of our end‑to‑end automation pipelines, with a specific focus on eliminating Terraform drift and ensuring fully automated, reliable AWS automation for account provisioning or decommission .

Serve as the technical authority for cloud networking and IaC automation, driving architectural improvements that increase consistency, compliance, and operational efficiency across our AWS organization.

Key Responsibilities

AWS Network Architecture Leadership

  • Architect scalable, secure AWS network topologies including VPCs, Transit Gateway, Direct Connect, PrivateLink, Route53, and multi‑account landing zones.
  • Define and maintain network patterns, guardrails, and reusable architecture frameworks.
  • Lead modernization of network provisioning and lifecycle management across all AWS accounts.

Terraform Automation & Drift Remediation

  • Own the Terraform architecture for all network resources, including module design, state management, and lifecycle workflows.
  • Diagnose and eliminate Terraform drift across environments, with a focus on production and decommissioning workflows.
  • Implement automated drift detection, reporting, and remediation integrated into ADO pipelines.
  • Establish IaC governance standards to ensure all network resources remain fully managed and version‑controlled.

Fixing End‑to‑End Automation for AWS Account Decommissioning

  • Redesign the decommissioning pipeline to ensure all network resources are removed cleanly and consistently via Terraform.
  • Build automated pre‑decommission validation to detect:
  • orphaned resources
  • stale state
  • missing dependencies
  • cross‑account network attachments
  • Ensure decommissioning workflows are idempotent, predictable, and compliant with security and audit requirements.
  • Partner with CloudOps, Security, and Platform teams to ensure account teardown is safe, complete, and repeatable without impacting other accounts.

Azure DevOps (ADO) Pipeline Engineering

  • Architect and optimize ADO pipelines for Terraform plan/apply, policy checks, approvals, and automated teardown.
  • Integrate pipelines with AWS Organizations, Control Tower, and account lifecycle tooling.
  • Improve pipeline reliability, modularity, and observability to support multi‑account operations at scale.

Governance, Security, and Compliance

  • Define and enforce network IaC standards, tagging policies, and lifecycle rules.
  • Collaborate with Security to ensure network automation aligns with IAM, encryption, logging, and compliance requirements.
  • Ensure all automation workflows meet audit and operational readiness standards.

Cross‑Functional Leadership

  • Act as the principal technical advisor for AWS networking and IaC automation.
  • Mentor engineers and influence architectural decisions across Cloud, DevOps, and Security teams.
  • Drive architectural reviews, documentation, and long‑term roadmap planning.

Required Skills & Experience

Technical Expertise

  • 10+ years in network architecture with deep AWS networking experience.
  • Expert‑level Terraform skills, including module design, state management, and drift remediation.
  • Strong experience building and maintaining ADO pipelines for IaC automation.
  • Hands‑on experience with AWS multi‑account environments (Control Tower, Organizations, SCPs).
  • Strong understanding of routing, BGP, VPN, Direct Connect, DNS, load balancing, and network security.
  • Proficiency in automation scripting (Python, PowerShell, or Go).

Cloud & DevOps Skills

  • Experience implementing automated account provisioning and decommissioning workflows.
  • Strong understanding of cloud governance, tagging standards, and resource lifecycle management.
  • Familiarity with OPA/Conftest, Terraform Cloud/Enterprise, or ADO policy gates.

Soft Skills

  • Excellent communication and architectural storytelling.
  • Ability to influence senior stakeholders and drive cross‑team alignment.
  • Strong analytical and problem‑solving mindset with a bias toward automation.

Preferred Qualifications

  • AWS Certified Advanced Networking – Specialty
  • AWS Solutions Architect – Professional
  • Experience with Landing Zone Accelerator or Control Tower customization
  • Experience with multi‑cloud networking (Azure, GCP)
  • Experience with Azure DevOps, GitHub Actions or Jenkins
Apply on the website

FoCookieConsentP1 FoCookieConsentLink FoCookieConsentP2