AWS Workspaces Cloud Engineer, Remote
- 4 Month+ Contract (Potential for longer term)
- 100% Remote
- Due to our government client requirements, we can only consider US Citizen with ability to obtain and maintain a Public Trust Clearance.
- NO THIRD PARTY RECRUITERS PLEASE! CANDIDATES MUST BE SELF-REPRESENTED.
Description
Seeking a strong Mid-Senior Level AWS WorkSpaces Cloud Engineer for a short-term contract supporting a high-impact team delivering secure, compliant, and scalable AWS solutions for virtual desktop infrastructure. This is a hands-on engineering role focused on building, automating, and operating Amazon WorkSpaces environments while supporting large-scale deployments, migrations to cloud-based desktops, and modernization of end-user computing for mission-critical systems.
Responsibilities
- Implement and manage AWS WorkSpaces deployments, including provisioning, bundling, scaling, and optimization using AWS Management Console, AWS CLI, SDKs, and automation tools
- Design and configure WorkSpaces directories (AWS Managed Microsoft AD, AD Connector, Simple AD, or Microsoft Entra ID integration), including trusts, OU selection, and directory synchronization
- Build and maintain infrastructure-as-code (IaC) for WorkSpaces environments using Terraform, AWS CloudFormation, AWS CDK, or scripts (PowerShell, Python, Bash)
- Execute virtual desktop migrations and transitions (rehost on-premises VDI to WorkSpaces, refactor applications for streaming, replatform to cloud desktops) using AWS tools and best practices
- Configure secure networking and access controls including VPCs, security groups, IP access control groups, PrivateLink (where applicable), AWS Global Accelerator, and integration with on-premises connectivity (Direct Connect, Site-to-Site VPN)
- Implement Zero-Trust security and identity solutions using AWS IAM, AWS SSO/IAM Identity Center, multi-factor authentication (MFA), certificate-based auth, SAML 2.0 federation, and Conditional Access policies
- Integrate and operate DevSecOps pipelines with AWS CodePipeline, CodeBuild, CodeDeploy, GitHub Actions, and security tools (Amazon GuardDuty, AWS Security Hub, AWS Config, Amazon Inspector)
- Automate compliance monitoring, evidence collection, and reporting using AWS Config rules, AWS Security Hub, CloudTrail, and custom automation for standards such as FedRAMP, NIST 800-53, or similar regulatory requirements
- Support application streaming and containerized/hybrid workloads, including integration with Amazon AppStream 2.0, WorkSpaces Thin Client, or related EUC services
- Troubleshoot production issues in WorkSpaces environments, perform root cause analysis, optimize performance/latency/cost, and manage updates, image builds, and bundles
- Contribute to architecture review packages, security documentation, d