Skip to content
mimi
All jobs · DevOps Engineer jobs

AWS Landing Zone Platform Engineer

Randstad USA

Hamburg · flexible Full-time Mid Level 2mo ago
Apply with a tailored resume Save job

About the role

About

The AWS Landing Zone Platform Engineer supports the project team in building the AWS Landing Zone infrastructure with Terraform.

Responsibilities

  • Support in the conception, implementation, and further development of a scalable and secure AWS multi-account structure using best practices, automation, and Infrastructure-as-Code (IaC).
  • The goal is to provide a standardized cloud foundation for productive workloads.

Planning & Architecture

  • Consultation on the selection and design of a suitable Landing Zone architecture.
  • Further development of a scalable multi-account structure according to the AWS Well-Architectured Framework.
  • Definition and implementation of Guardrails, Policies, and Service Control Policies (SCPs).

Implementation

  • Setup and configuration of the AWS Landing Zone via Infrastructure as Code.
  • Further development of account creation and configuration via AWS Control Tower or custom automation frameworks.
  • Further development of centralized logging, monitoring, and security services (e.g., AWS CloudTrail, AWS Config, GuardDuty, Security Hub).

Security & Compliance

  • Implementation of security requirements (e.g., IAM strategies, least privilege, network segmentation).
  • Integration of compliance requirements (e.g., ISO 27001, BSI-Grundschutz, GDPR).

Network & Integration

  • Further development of a central network structure (Hub-and-Spoke, Transit Gateway, VPC Peering).
  • Connection to on-premises infrastructures via VPN or AWS Direct Connect.

Documentation & Handover

  • Creation of technical documentation and operational documents.
  • Support with knowledge transfer and handover to internal teams (e.g., Cloud Center of Excellence, Operations).

Qualifications

Required Qualifications / Skills:

  • Sound experience in the conception and implementation of AWS Landing Zones.
  • Deep understanding of AWS services, especially IAM, Control Tower, Organizations, SCPs, VPC, CloudTrail, Config, S3, KMS.
  • Sound experience with Infrastructure as Code (e.g., Terraform, AWS CDK, CloudFormation).
  • Sound experience with CI/CD pipelines for automating infrastructure deployments.
  • Knowledge in IT security and governance in cloud environments.
  • Experience collaborating with security, network, and development teams.
  • Fluent German and English skills.

Technologies

  • AWS Landing Zone Know-How - Very good knowledge
  • Terraform - Very good knowledge

Languages

  • German - Very good knowledge
  • English - Good knowledge

Optional Additional Knowledge:

  • Experience with hybrid cloud architectures.
  • Certifications (e.g., AWS Certified Solutions Architect – Professional, AWS Security Specialty).

Project Framework:

  • Location: Home office, occasionally Hamburg or Frankfurt area
  • Duration: 3-18 months
  • Time: Full-time (5 days/week)
  • Availability: Immediately

Skills

AWS CDKAWS CloudFormationAWS Control TowerAWS OrganizationsAWS SCPsAWS VPCCI/CDCloudTrailConfigGuardDutyIAMKMSS3Security HubTerraform

Similar roles

Staff Engineer

imagino

€70k – €110k/yr

(Senior) Software Engineer

SIX Group Services Ltd.

AI Forward Deploy Engineer

Arango

Don't send a generic resume

Paste this job description into Mimi and get a resume tailored to exactly what the hiring team is looking for.

Get started free