AWS Software Engineer

This is a remote position.

About This Opportunity

CTI Staffing is partnering with a leading healthcare organization to place an AWS Cloud Infrastructure Engineer for a focused, remote cloud buildout engagement.

This team is standing up a modern, compliance-ready AWS environment from the ground up. The work is infrastructure-first: landing zone design, multi-account organization structure, network architecture, identity management, and server migration support. If you've built AWS environments in regulated industries and you know your way around Terraform and CloudFormation, this is hands-on ownership work with a defined scope and a clean deliverable.

What You'll Do

• Design and develop Infrastructure-as-Code templates using Terraform and AWS CloudFormation for an enterprise cloud environment
  
• Architect and deploy an AWS landing zone solution integrating with existing on-premises infrastructure
  
• Configure AWS Organizations structure including organizational units and Service Control Policies
  
• Deploy VPC architectures with subnet design, routing tables, security groups, and network access controls
  
• Configure identity and access management solutions including AWS IAM Identity Center (SSO) and Active Directory integration
  
• Deploy and configure AWS networking services including Transit Gateway, Client VPN, and Network Firewall
  
• Implement AWS Control Tower guardrails aligned to enterprise compliance requirements
  
• Establish AWS Backup strategies with continuous backup and point-in-time recovery
  
• Support MVP server migrations and participate in testing and validation phases
  
• Document infrastructure deployments and produce architecture diagrams for technical and stakeholder review
  

Requirements

What You Bring

Must-Have:

• Hands-on experience writing and deploying Terraform and/or AWS CloudFormation templates in production environments
  
• Demonstrated experience designing and implementing VPC architecture including subnets, routing, and security group configuration
  
• Working knowledge of AWS IAM and identity and access management concepts
  
• Experience integrating Active Directory with AWS environments, including DNS configuration
  
• Familiarity with AWS backup and disaster recovery strategies
  
• Experience using version control in an IaC workflow (Git or equivalent)
  
• Strong technical documentation skills including architecture diagrams
  

Nice-to-Have:

• AWS certification (Solutions Architect, Developer, or DevOps Engineer)
  
• Experience with healthcare compliance frameworks (HIPAA, HITRUST) in cloud environments
  
• Knowledge of Active Directory Federation Services (ADFS)
  
• Familiarity with AWS security services including Security Hub, GuardDuty, or WAF
  
• Experience with AWS Workspaces or virtual desktop infrastructure
  

Technical Environment:

• AWS core services: EC2, VPC, IAM, Transit Gateway, Network Firewall, Control Tower, Organizations, Backup, IAM Identity Center
  
• Terraform
  
• AWS CloudFormation
  
• Active Directory / ADFS
  
• Git / version control
  

What Success Looks Like:

• AWS landing zone architecture designed, deployed, and validated within the engagement window
  
• VPC networking, IAM/SSO, and compliance guardrails configured and fully documented
  
• MVP server migration phase supported and tested with a clean handoff to the client team