[Remote] Principal Cloud Infrastructure Engineer (AWS)

Remote Full-time
Note: The job is a remote job and is open to candidates in USA. CVS Health is building a world of health around every individual, and they are seeking a Principal Cloud Infrastructure Engineer to lead their AWS Cloud Engineering team. This role involves owning the AWS platform, setting architectural direction, and ensuring solutions are secure and scalable while mentoring engineers and driving cloud transformation initiatives.

Responsibilities
• Own the enterprise AWS platform end-to-end: AWS Organizations structure, account hierarchy, while collaborating with several teams to ensure the platform is stable and compliant
• Define and maintain the AWS Landing Zone — AWS Control Tower, Service Control Policies (SCPs), billing controls, and account vending patterns — as the foundation all product teams build on
• Serve as the final technical authority on AWS architecture decisions, reviewing designs for scalability, security, and operational excellence before they reach production
• Build self-service platform capabilities that enable product engineering teams to move fast without compromising standards
• Lead the AWS cloud engineering team as the technical anchor — set direction, conduct design reviews, unblock engineers, and drive delivery on platform initiatives
• Establish and enforce engineering standards: IaC patterns, naming conventions, tagging strategy, branching models, and deployment practices
• Mentor engineers at all levels, building depth on the team and raising the bar on what 'excellence' looks like in cloud engineering
• Partner with architecture, security, operations, and business stakeholders to translate enterprise requirements into platform capabilities
• Design and own the Terraform framework for all AWS resource provisioning — reusable modules, remote state management via S3/DynamoDB, pipeline integration, and policy guardrails
• Build and maintain CI/CD pipelines using AWS CodePipeline, CodeBuild, GitHub Actions, and Amazon ECR for both platform infrastructure and application teams
• Write production-quality automation to extend platform functionality, integrate AWS APIs, and eliminate operational toil
• Implement policy-as-code using OPA, AWS Config Rules, and Service Control Policies to enforce governance at scale without manual gatekeeping
• Architect and operate AWS networking: VPC design, VPC Lattice, AWS PrivateLink, Transit Gateway, AWS WAF, Shield Advanced, NAT Gateway, and hybrid connectivity via AWS Direct Connect and Site-to-Site VPN
• Own the enterprise security posture on AWS — IAM Roles for Service Accounts (IRSA), ECR Image Signing, AWS Secrets Manager, least-privilege IAM design, and SIEM/CSPM integration (AWS Security Hub, Prisma Cloud, or Wiz)
• Drive continuous automated compliance across applicable regulatory frameworks (HIPAA, PCI, SOC 2) so controls are enforced in real time, not discovered at audit
• Integrate observability — Amazon CloudWatch, AWS X-Ray, Datadog, and SLO/SLI frameworks — as a first-class platform capability across all workloads
• Own the AWS platform roadmap, evaluating new AWS services and capabilities and making deliberate decisions about what the enterprise adopts and when
• Incorporate FinOps practices across the platform: Reserved Instances, Savings Plans, rightsizing, AWS Budgets alerting, and cost allocation as engineering disciplines, not afterthoughts
• Research and pilot emerging AWS capabilities — Amazon Bedrock, EKS Auto Mode, Amazon Q for Developer — evaluating their fit for enterprise adoption
• Foster a culture of operational excellence: blameless postmortems, runbook-driven operations, and continuous improvement cycles that make the platform more reliable over time

Skills
• 10+ years in cloud and infrastructure engineering with 5+ years of deep, hands-on AWS experience at enterprise scale
• Proven ownership of an AWS Organization — account hierarchy, Billing, Service Control Policies, IAM, and multi-account governance in production
• Demonstrated technical leadership: you have led a platform team or major enterprise cloud initiative, set technical direction, and grown engineers around you
• Deep AWS expertise required across: Compute & Containers: EKS (Managed + Auto Mode), ECS/Fargate, EC2, Auto Scaling Groups
• Networking: VPC, VPC Lattice, AWS PrivateLink, Transit Gateway, AWS WAF, Shield Advanced, Direct Connect
• Data & Messaging: Amazon Redshift, SNS/SQS, S3, AWS Glue, Kinesis, Amazon MWAA
• Security: IAM, IRSA, AWS Security Hub, ECR Image Signing, Secrets Manager, VPC Endpoints
• IaC & Automation: Terraform (modules, remote state, OPA), AWS CodePipeline, AWS Config, CloudFormation
• Observability: Amazon CloudWatch, AWS X-Ray, Datadog, SLO/SLI design, PagerDuty integration
• Languages: Python, Go, and Terraform
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Local SEO Specialist Job at AdCellerant in Denver

Remote

**Experienced Customer Service Representative – Remote Opportunity with blithequark**

Remote

[Hiring] Clinical Specialist, Quality Management and Training @Personify Health

Remote

[Hiring] Claims Processor I @Sidecar Health

Remote

Mortgage Lock Desk Analyst

Remote

RN - Dermatology - FT – Amazon Store

Remote

Experienced Data Entry Clerk for Remote Full-Time Opportunity with Comprehensive Benefits and Professional Growth

Remote

Retail Sales Associate-LAKE PLEASANT TOWNE CENTER

Remote

(Entry Level Remote Jobs) Delta Airlines Careers From Home - Indeed

Remote

HR Service Center Coordinator

Remote
← Back