Title: AWS Cloud Engineer (only W2 Position – Strictly No C2C Accepted) 10.1.25
Description: STG is a SEI CMMi Level 5 company with several Fortune 500 and State Government clients. STG has an opening for AWS Cloud Engineer.
Please note that this project assignment is with our own direct clients. We do not go through any vendors. STG only does business with direct end-clients. This is expected to be a long-term position. STG will provide immigration and permanent residency sponsorship assistance to those candidates who need it.
Areas of Specialization:
- AWS Expertise: Deep expertise in the AWS ecosystem beyond basic IaaS. You are an expert in AWS networking (VPCs, Transit Gateway, Security Groups), Identity and Access Management (IAM), cost optimization strategies, and leveraging AWS managed services (like RDS, MSK, OpenSearch) to build robust and secure platforms.
- Kubernetes Administration: Deep knowledge of provisioning, managing, securing, and scaling Kubernetes clusters (e.g., EKS, GKE). You understand K8s networking, storage, and the operator pattern.
- CI/CD & GitOps: Expertise in designing, building, and managing complex CI/CD pipelines. You have strong opinions and hands- on experience with tools like Argo Workflows/CD, Tekton, Concourse, or similar.
- Cloud Security: A focus on securing cloud infrastructure. You have deep knowledge of PKI, IAM policies, secret management (e.g., Vault), network security, and automated compliance.
- Observability & SRE: A passion for metrics, logging, and tracing. You have experience building and managing modern observability stacks (e.g., Prometheus, Grafana, Open Telemetry) and applying SRE principles to improve reliability.
- Developer Tooling & Automation: You excel at writing code to solve operational problems. You have experience building CLIs, controllers, or other internal tools in Go or Python to improve the developer experience.
Skills Required
- AWS – We expect the candidate to be able to define, deploy, and manage a complete application infrastructure in AWS using Terraform. This includes writing modular Terraform configurations to provision VPCs, subnets, route tables, security groups, and NACLs for robust networking. They should demonstrate proficiency in managing IAM roles, policies, and users for least-privilege access, configuring S3 buckets for various storage needs (e.g., static content hosting, logging with lifecycle policies), deploying and managing RDS instances (e.g., PostgreSQL, MySQL) with appropriate backups and replication strategies, and setting up Application Load Balancers (ALBs) or Network Load Balancers (NLBs) with target groups and health checks for high availability. Furthermore, they should understand and implement Terraform state management best practices, including remote state storage and locking, and be able to manage the full lifecycle of these resources from creation to updates and eventual destruction
- Kubernetes – The ideal candidate will have hands-on experience provisioning Kubernetes clusters (e.g., EKS, GKE, AKS, or self-managed Kubeadm clusters) from scratch, including configuring networking, storage, and node pools. They should be adept at administering and troubleshooting clusters, which involves debugging pod failures, managing deployments, services, ingresses, and persistent volumes. We expect a strong understanding of core Kubernetes concepts like StatefulSets, DaemonSets, ConfigMaps, and Secrets. Furthermore, they should be familiar with common Kubernetes add-ons such as Prometheus for monitoring, Grafana for visualization, Fluentd/Fluent Bit for logging, and external-dns for DNS management. Experience with in-place cluster upgrades, including handling version compatibility and rollback strategies, is also crucial.
Skills Preferred:
GCP – While not strictly required, we would prefer candidates who can demonstrate experience provisioning and managing GCP resources programmatically. This includes using tools like Terraform, Google Cloud Deployment Manager, or gcloud CLI scripting to deploy resources such as Compute Engine instances, Cloud SQL databases, Cloud Storage buckets, VPC networks, and IAM policies within a GCP project. Familiarity with managing GCP projects, billing, and resource hierarchies through automation would be a significant advantage. 1. Python - Writes production-grade automation for cloud operations: CLIs and functions that interact with AWS/GCP SDKs, handle pagination/retries/backoff, and include tests and logging. 2. Builds small tools/services: e.g., cost/reporting jobs, security/compliance checks, drift detectors, secret rotation workflows, or data movers. 3. Packages code with virtual environments/poetry/pip-tools, structures modules cleanly, and integrates with CI/CD; comfortable with async/concurrency when needed.
Resume Submittal Instructions: Interested/qualified candidates should email their word formatted resumes to Vasavi Konda – vasavi.konda(.@)stgit.com and/or contact @(Two-Four-Eight) Seven- One-Two – Six-Seven-Two-Five (@248.712.6725). In the subject line of the email please include: First and Last Name: AWS Cloud Engineer.
For more information about STG, please visit us at www.stgit.com.
Sincerely,
Vasavi Konda| Recruiting Specialist
“Opportunities don't happen, you create them.”
Systems Technology Group (STG)
3001 W. Big Beaver Road, Suite 500
Troy, Michigan 48084
Phone: @(Two-Four-Eight) Seven- One-Two – Six-Seven-Two-Five: @248.712.6725(O)
Email: vasavi.konda(.@)stgit.com
