Senior AWS Cloud Developer (Terraform / Networking / Security)

Role Summary
We are seeking a hands-on AWS Cloud Developer with strong experience in Terraform (IaC) to design, build, and manage cloud infrastructure in a highly governed enterprise environment.

This role focuses on infrastructure provisioning, AWS networking, and security best practices, with an emphasis on automation and scalable architecture.

The ideal candidate should have 15+ years of real-world experience building and managing AWS environments using Terraform, not just theoretical knowledge.

Key Responsibilities

• Design and implement AWS infrastructure using Terraform (Infrastructure as Code)
• Provision and manage core AWS services, including:
  • S3 (buckets, policies, lifecycle, security)
  • CloudTrail (logging, auditing, multi-account setup)
  • IAM (roles, policies, permission boundaries, trust relationships)
• Build and manage AWS networking components:
  • VPCs, subnets, routing, NAT/IGW
  • VPC Endpoints (Gateway & Interface) + endpoint policies
  • Transit Gateway / CloudWAN
  • VPC Peering and RAM (Resource Access Manager) sharing
• Configure and manage:
  • Route 53 (hosted zones, resolvers)
  • AWS Cloud Map (service discovery)
  • IPAM (IP Address Manager) pools and allocations
• Implement security and compliance controls:
  • AWS Config
  • Security Hub
  • Control Tower integrations
  • Develop reusable Terraform modules and maintain state management best practices
  • Troubleshoot infrastructure and connectivity issues across multi-account environments
  • Ensure alignment with security, governance, and least-privilege principles

Required Qualifications

• 3-6+ years of hands-on AWS experience
• Strong experience with Terraform (required):
  • Writing reusable modules
  • Managing state (remote backends, locking)
  • Multi-account deployments
• Deep understanding of AWS Networking:
  • VPC design, routing, segmentation
  • Transit Gateway / CloudWAN
  • VPC endpoints and private connectivity
• Strong knowledge of AWS Security:
  • IAM roles, policies, permission boundaries
  • SCPs (Service Control Policies)
  • Logging and auditing (CloudTrail)
  • Experience with multi-account AWS environments (Control Tower preferred)
• Hands-on experience with:
  • AWS Config
  • Security Hub
  • VPC sharing (RAM)
    

Preferred Qualifications
Experience in regulated environments (banking, enterprise, compliance-heavy)

Familiarity with:

• AWS Control Tower governance models
• CloudWAN architecture
• Centralized logging / audit accounts
• Experience integrating with CI/CD pipelines (e.g., Terraform in pipelines)
• Knowledge of OIDC / identity federation patterns

Certifications (Required / Preferred)

• AWS Certified Solutions Architect - Associate (minimum)
• AWS Certified Solutions Architect - Professional (strongly preferred)
• AWS Certified Advanced Networking - Specialty (preferred)
• AWS Certified Security Specialty - (Good to Have)
• HashiCorp Terraform Associate Certification (preferred)

What We're Looking For (Key Signals)

• Proven ability to build AWS infrastructure from scratch using Terraform
• Strong understanding of network flows, security boundaries, and governance
• Experience working in multi-account, enterprise-scale AWS environments
• Ability to troubleshoot complex networking and IAM issues
• Not reliant on console (minimal click-ops) - automation-first mindset
  

About State Street

Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success.

We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you'll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future.

As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.

Discover more information on jobs at

Read our