Design, deploy, and maintain AWS multi-account environments using AWS Organizations and Control Tower
Implement account provisioning automation and governance guardrails
Build and manage organizational structures, service control policies (SCPs), and account baselines
Support cloud migration and modernization initiatives
Design and manage enterprise network connectivity (Transit Gateway, Direct Connect, Site-to-Site VPN)
Implement hybrid networking between AWS regions and on-premises environments
Manage SD-WAN appliances, BGP routing, and failover configurations
Ensure high availability across multiple availability zones and connectivity layers
Implement and maintain AWS Single Sign-On (SSO) integrated with enterprise identity providers
Manage authentication and provisioning workflows (SAML 2.0, SCIM 2.0)
Design and enforce least-privilege IAM policies, roles, and permission sets
Support IAM governance, audits, and access reviews
Build automation tools and APIs to enable developer self-service (account creation, resource provisioning)
Develop reusable Infrastructure as Code templates (Terraform, CloudFormation, AWS CDK)
Maintain documentation, runbooks, and training materials
Provide technical guidance and support to application teams
5+ years of experience in cloud infrastructure engineering, with a focus on enterprise foundations
Strong expertise in AWS core services (Organizations, Control Tower, SSO, Transit Gateway, Direct Connect)
Solid networking knowledge (VPC design, routing, BGP, VPN, SD-WAN)
Proficiency in Infrastructure as Code (Terraform, CloudFormation, or AWS CDK)
Experience with identity federation (SAML, SCIM, Azure AD / Entra ID integration)
Strong English communication skills for working with global teams
AWS Certified Solutions Architect – Professional or Advanced Networking certification
Experience with multi-cloud or hybrid cloud environments
Background in enterprise identity management and zero-trust security models
DevOps experience in building self-service platforms
• Attractive Salary Package based on your competence plus Annual Bonus and Project Performance Bonus. Offer upto $2800
• The opportunity to work onsite in Asia, US, UK…
• Health insurance provided by AON and is exclusive for employees
• Excellent cost-free learning opportunities: Udemy Premium account, English class, sponsor for taking certification such as PMP, AWS, etc.
• Annual leave according to Labor Law and Company Policy
• Annual Summer Vacation support from 1 Million VND to 6 Million VND and up to 3 days off work
• 13th-month Salary
• Salary review according to Company Policy
• International, professional, dynamic and friendly working environment and culture
