Senior AWS Systems Administrator

**Senior AWS Systems Administrator** **Location:** Remote **Job Type:** Full\-Time **About the Role:** We are hiring a Senior AWS Systems Administrator to own our entire AWS environment end\-to\-end from account structure and VPC networking to IAM, backups, incident response, and infrastructure as code. This platform handles PHI, and this role is responsible for keeping it correctly configured, continuously monitored, and audit\-ready. **What You'll Own:** * AWS Organizations, account structure, and service control policies * VPC design, Transit Gateway topology, and site\-to\-site VPN tunnels for facility partner connectivity * HIPAA\-compliant PHI handling encryption, audit trails, and cross\-org tunneling * Aurora PostgreSQL, RDS, DynamoDB, ElastiCache, and MSK Kafka administration * Microsoft Entra ID Conditional Access, SSO federation, SCIM provisioning, workforce lifecycle * CloudTrail, GuardDuty, Config, Security Hub, KMS, and Secrets Manager * Business continuity: daily backups, restore drills, and documented RPO/RTO evidence * Infrastructure as code using AWS CDK (TypeScript) — no ClickOps * On\-call rotation as primary infrastructure escalation **Requirements:** * 7\+ years of production AWS administration at a senior level * Deep experience with VPC, Transit Gateway, site\-to\-site VPN, and cross\-org networking * Hands\-on HIPAA production experience (PHI environments, BAA scope, audit readiness) * Aurora PostgreSQL and RDS administration including failover and recovery * Expert\-level IAM and identity federation; Microsoft Entra ID administration * AWS CDK (TypeScript) or Terraform; infrastructure as code is required * Carried a real production pager; experienced with incident response and post\-mortems * Strong written English for async, cross\-timezone collaboration **Nice to Have:** AWS certifications (Solutions Architect Pro, Advanced Networking, or Security Specialty) · HITRUST / SOC 2 · AWS Direct Connect · GitHub Enterprise Managed Users · NordLayer Pay: From $45\.00 per hour Application Question(s): * Have you administered AWS environments that handle Protected Health Information (PHI) under HIPAA? * How many years of experience do you have administering production AWS environments? * What is your expected hourly pay rate for this role? * Have you administered Microsoft Entra ID (formerly Azure AD) including Conditional Access policies, SSO federation, and SCIM provisioning? Work Location: Remote