Design end-to-end AWS architectures for web applications, APIs, data platforms, and enterprise integrations
Develop well-architected solutions aligned with AWS Well-Architected Framework (operational excellence, security, reliability, performance efficiency, cost optimization, sustainability)
Define multi-account strategies using AWS Organizations and AWS Control Tower
Design hybrid cloud architectures integrating on-premises systems with AWS (Direct Connect, VPN, Transit Gateway)
Architect serverless solutions using AWS Lambda, API Gateway, Step Functions, EventBridge, SQS, SNS
Design microservices architectures using ECS, EKS, or App Runner
Act as a technical advisor for application teams and stakeholders
Conduct architecture reviews and design assessments
Evaluate and recommend AWS services for specific business use cases
Lead proof-of-concept (POC) initiatives for new technologies and architectures
Mentor engineers and developers on AWS best practices
Develop reference architectures and reusable design patterns
Assess application readiness and define migration strategies (6Rs: Rehost, Replatform, Refactor, Retire, Retain, Repurchase)
Design migration roadmaps and execution plans
Lead lift-and-shift, re-platforming, and refactoring initiatives
Architect containerization strategies for legacy systems
Design data migration solutions using AWS DMS, DataSync, or Snow Family
Support development of cloud-native applications
Design secure architectures aligned with AWS security best practices and industry standards
Implement identity and access management (IAM, AWS SSO, federation via SAML/OIDC)
Design network security using VPC, security groups, NACLs, WAF, Shield, GuardDuty
Ensure compliance with regulatory standards (GDPR, HIPAA, SOC 2, ISO 27001)
Implement encryption strategies (KMS, CloudHSM, certificate management)
Design security monitoring and incident response architectures
Define Infrastructure as Code (IaC) standards using Terraform, CloudFormation, or AWS CDK
Design CI/CD architectures using CodePipeline, CodeBuild, and CodeDeploy
Build automation frameworks for infrastructure provisioning and configuration
Design backup and disaster recovery strategies with defined RTO/RPO
Implement multi-region architectures for high availability
Design cost-efficient architectures using appropriate instance types and pricing models
Implement cost allocation strategies (tags, cost categories)
Recommend Reserved Instances, Savings Plans, and Spot strategies
Design cost monitoring and alerting using Cost Explorer and AWS Budgets
Conduct cost optimization reviews and right-sizing initiatives
Design data lake architectures using S3, AWS Glue, and Lake Formation
Architect data warehouse solutions using Redshift or Redshift Serverless
Design real-time data pipelines using Kinesis, MSK (Managed Kafka), or EventBridge
Build analytics solutions integrating QuickSight, Athena, or third-party BI tools
Design data governance and cataloging strategies
Create high-level design (HLD) and low-level design (LLD) documentation
Develop architecture decision records (ADRs)
Maintain architecture diagrams (draw.io, Lucidchart, AWS tools)
Build runbooks and operational documentation
Conduct training sessions and knowledge transfer
8+ years of experience in cloud/solution/enterprise architecture, with 5+ years focused on AWS
AWS Certified Solutions Architect – Professional (or equivalent expertise)
Deep expertise in AWS compute services (EC2, ECS, EKS, Lambda, App Runner, Batch)
Strong knowledge of AWS networking (VPC, Transit Gateway, Direct Connect, Route53, CloudFront, API Gateway)
Advanced knowledge of AWS databases (RDS, Aurora, DynamoDB, ElastiCache, DocumentDB, Neptune)
Experience with AWS storage services (S3, EFS, EBS, FSx, Storage Gateway)
Strong security knowledge (IAM, KMS, Secrets Manager, WAF, Shield, GuardDuty, Security Hub)
Expertise in Infrastructure as Code (Terraform, CloudFormation, CDK)
Experience with container orchestration (ECS, EKS, Kubernetes)
Solid understanding of serverless and event-driven architectures
Experience with CI/CD pipelines and DevOps practices
Strong communication and presentation skills
Fluent English (spoken and written)
Additional AWS certifications (Security, Advanced Networking, DevOps, Database, ML)
Multi-cloud experience (Azure, GCP)
Knowledge of enterprise frameworks (TOGAF, Zachman)
Experience with AWS landing zones and multi-account setups
Familiarity with AWS Control Tower and Service Catalog
Experience in large-scale cloud migrations (100+ applications)
Experience working with AWS Partner Network (APN)
Knowledge of SRE principles and observability platforms
Experience with AWS AI/ML services (SageMaker, Bedrock, Comprehend, Rekognition)
Experience with AWS IoT services
Background in enterprise IT, manufacturing, or regulated industries
DevSecOps experience
• Attractive Salary Package based on your competence plus Annual Bonus and Project Performance Bonus. Offer upto $2800
• The opportunity to work onsite in Asia, US, UK…
• Health insurance provided by AON and is exclusive for employees
• Excellent cost-free learning opportunities: Udemy Premium account, English class, sponsor for taking certification such as PMP, AWS, etc.
• Annual leave according to Labor Law and Company Policy
• Annual Summer Vacation support from 1 Million VND to 6 Million VND and up to 3 days off work
• 13th-month Salary
• Salary review according to Company Policy
• International, professional, dynamic and friendly working environment and culture
