Principal Cloud Architect

Cloud Operations Lehi, Utah United States


Description

NetDocuments is the world’s #1 trusted cloud-based content management and productivity platform that helps legal professionals do their best work. We strive to win together through passionate hard work, exploring new things and recognizing every interaction matters.
 
NetDocuments provides rewarding career growth in an inclusive, diverse environment where employees are encouraged to openly contribute creative ideas and innovation, backed by supportive peers and leadership working together to achieve our goals as a unified team.
 
At our core, we are dedicated to empowering our employees to drive successful business outcomes and better user experiences for our customers and partners. Our customer-centric approach and employee enablement has allowed us to enjoy many accolades, including being named among the 2022,  2023, & 2024 list of Inc. Magazine’s 5000 Fastest-Growing Private Companies in America.
 
Other recent awards include:
• Two-time winner (2024, 2023) National Top Workplaces
• Two-time winner (2024, 2023) Top Workplace innovation
• Three-time winner (2023, 2022, 2021) Top Workplace in the US by the Salt Lake Tribune
• Three-time winner (2023, 2022, 2021) Best Companies to Work for by Utah Business magazine
• Three-time winner (2024, 2023, 2022) Top Workplace Work-Life Flexibility
• Three-time winner (2024, 2023, 2022) Top Workplace Compensation & Benefits
• 2024 Cultural Excellence
• 2024 Technology Industry
• 2023 Top Workplace Leadership
• 2023 Top Workplace Purpose & Values
• 2022 Top Workplace Employee Appreciation and Employee Well Being
 
NetDocuments is a hybrid, remote-friendly workplace. Come join our team and work inspired each day!
 
Your Opportunity For Impact
NetDocuments is seeking a Principal Could Architect. As a Principal Cloud Architect, you will play a crucial role in designing, optimizing, and operating the cloud infrastructure on AWS. Your responsibilities will encompass managing Virtual Private Clouds (VPCs), handling infrastructure components such as Route53, ECS, Cloudfront, Firewall, WAF, load balancers, etc. You will be instrumental in designing and implementing Disaster Recovery (DR) and resiliency automation strategies across Availability Zones (AZs).  
 
What your Contributions Will Be
  • AWS Infrastructure Management: Design ,operate and optimize AWS VPCs, Route53, ECS, Cloudfront, load balancers, and other AWS infrastructure to ensure high availability, security, and performance. 
  • Disaster Recovery and Resiliency: Design and implement robust DR and resiliency automation solutions spanning across AWS Availability Zones. 
  • Incident Response: Collaborate with the team to provide operational support during incidents, leveraging a deep understanding of both infrastructure and the technologies our applications that utilize (IaaS, SaaS, and PaaS). 
  • AWS Support: Act as a liaison with AWS support in addressing platform-related issues and engage with third-party SaaS providers to resolve connectivity and performance challenges. 
  • Technology Awareness: Stay abreast of new capabilities and features offered by AWS, proactively identifying opportunities for optimization and improvement. 
Additional Requirements 
AWS IAM Policy Proficiency: 
  • Policy Design and Implementation: Demonstrated proficiency in designing and implementing AWS Identity and Access Management (IAM) policies to control access to AWS resources. 
  • Access Control: Expertise in defining fine-grained access controls using IAM policies, ensuring the principle of least privilege and maintaining a secure and compliant cloud environment. 
  • Policy Optimization: Ability to optimize IAM policies for efficiency, scalability, and adherence to security best practices. 
IAM Identity Center Experience: 
  • IAM Integration: Demonstrated experience in integrating and working with IAM Identity Center, leveraging its capabilities for identity management and access control. 
  • Identity Governance: Proven expertise in utilizing IAM Identity Center for establishing and maintaining robust identity governance practices. Experience in defining and enforcing access policies, role-based access controls (RBAC), and identity lifecycle management. 
  • AWS Control Tower: Proven expertise in implementing and managing AWS Control Tower to set up and govern a secure, multi-account AWS environment. Experience with establishing and enforcing governance policies using Control Tower. 
  • AWS Organizations: In-depth knowledge of AWS Organizations for efficiently managing and organizing multiple AWS accounts. Experience in implementing best practices for cost allocation, security, and compliance across AWS Organizations. 
Observability Experience: 
  • VPC Flow Logs: Proven experience in configuring and analyzing VPC Flow Logs to monitor network traffic within AWS VPCs. Ability to extract valuable insights for security, troubleshooting, and optimization purposes. 
  • CloudTrail Logs: Extensive experience in working with AWS CloudTrail logs for auditing, compliance, and governance purposes. Ability to interpret and analyze CloudTrail events to ensure the security and integrity of AWS accounts. 
Networking and AWS Services Experience: 
  • AWS Networking: Demonstrated proficiency in designing, implementing, and managing AWS networking solutions. Strong understanding of VPCs, subnets, route tables, and other network-related components to ensure secure and efficient communication within the cloud environment. 
  • ECS Fargate: Hands-on experience with ECS Fargate, including the deployment and orchestration of containerized applications. Knowledge of container networking and the ability to optimize performance and scalability in a containerized environment. 
  • GovCloud and Compliance Experience: 
  • GovCloud Experience: Proven experience working with AWS GovCloud, including a deep understanding of the unique requirements and constraints of government cloud environments. 
  • Experience with Compliance Environments: Demonstrated experience in designing, implementing, and maintaining cloud solutions that adhere to regulatory compliance requirements, such as HIPAA, FedRAMP, or other relevant standards. 
CI/CD and IaC Expertise: 
  • CI/CD Experience: Demonstrated experience in Continuous Integration/Continuous Deployment (CI/CD) practices, particularly with deployments into AWS infrastructure. 
  • Terraform Proficiency: Demonstrated expertise in using Terraform for defining, deploying, and managing infrastructure as code. Implement best practices for IaC using Terraform, ensuring consistency, automation, and version control. 
Multi-Account Environment and Global Operations: 
  • Multi-Account Environment: Proven experience in architecting and managing multi-account environments within AWS. This includes the design and implementation of a scalable and secure multi-account strategy. 
  • Global Operations: Demonstrated proficiency in operating cloud infrastructure across diverse regions. Experience with deploying and managing resources in different geographic regions to optimize performance, redundancy, and compliance with regional data regulations. 
Collaboration with Engineering Platform Team: 
In this role, the Cloud Engineer at NetDocuments will work closely with the Engineering Platform Team to ensure compliance with regulatory standards, security best practices, and internal governance policies. This collaborative effort is vital for maintaining the 
 
What you Bring to the Team
  • Bachelor’s degree in computer science, Engineering, or a related field, or equivalent practical experience. 
  • 7+ years of hands-on experience in AWS. 
  • AWS Certifications are a plus. 
  • Ability to independently deliver features following story descriptions and acceptance criteria. 
  • Proficiency in engaging in technical discussions with senior engineers and architects, requiring minimal supervision for individual tasks. 
  • Potential to offer guidance to other Cloud Engineers and work collaboratively within the team. 
Benefits
  • 90% healthcare premiums company covered
  • HSA company contribution
  • 401K match at 4% with immediate vesting
  • Flexible PTO (typically 3 to 4 weeks a year)
  • 9 paid holidays
  • Monthly contributions for wellness
  • Access to LinkedIn learning with monthly dedicated time to explore
Compensation Transparency
The compensation range for this position is: $182,500 - $215,000
 
The posted cash compensation for this position includes on-target earnings. Some roles may qualify for overtime pay. Individual compensation packages are determined based on various factors specific to each candidate, such as career level, skills, experience, geographic location, qualifications, and other job-related considerations.
 
Equal Opportunity
NetDocuments is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. All employment decisions are based on business needs, job requirements, individual qualifications, without regard to race, color, religion, sex, (including pregnancy), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity and/or expression, military and veteran status, or any other status protected by laws or regulations in the locations where we operate. NetDocuments believes diversity and inclusion among our employees is critical to our success, and we are committed to providing a work environment free of discrimination and harassment.