AWS Enterprise Architect - Cognizant

Key Responsibilities

• Assess existing AWS Landing Zone and Control Tower implementations, identifying gaps and recommending improvements.
• Modernize the Control Tower account provisioning workflow, incorporating automation frameworks such as AWS Control Tower Account Factory (AFT).
• Define and document Golden Paths, platform standards, and best‑practice guidelines for cloud workloads.
• Develop a multi‑account strategy that includes environment separation, shared services, and cost‑allocation models.
• Design robust IAM architectures, including role hierarchies, permission boundaries, and integration with AWS Identity Center.
• Architect network segmentation, routing, and connectivity patterns across VPCs, Transit Gateways, and on‑premises links.

Requirements

• 5+ years of hands‑on experience designing and operating large‑scale AWS environments.
• Deep knowledge of AWS Control Tower, Landing Zone, and Account Factory (AFT) concepts.
• Expertise in IAM, permission boundaries, and AWS Identity Center (SSO) integration.
• Strong background in network architecture, VPC design, segmentation, and hybrid connectivity.
• Proven ability to create governance frameworks, standards, and automation for enterprise cloud adoption.