Cloud Platform Engineer I (Network)

Lennar•Miami, FL

3d•Onsite

About The Position

We are Lennar Lennar is one of the nation’s leading homebuilders, dedicated to making an impact and creating an extraordinary experience for their Homeowners, Communities, and Associates by building quality homes and providing exceptional customer service, giving back to the communities in which we work and live in, and fostering a culture of opportunity and growth for our Associates throughout their career. Lennar has been recognized as a Fortune 500® company and consistently ranked among the top homebuilders in the United States. A Career that Empowers You to Build Your Future Join the Cloud Platform team as a Cloud Platform Engineer focused on network and identity infrastructure in AWS and Cloudflare. In this role, you will implement and maintain cloud networking and identity services through a fully code-driven infrastructure model. Using Terraform, GitHub Actions, and DevOps practices, you will build and operate scalable, well-governed platform services in a multi-account AWS environment. While AWS is the primary platform and the target for all new development, the organization maintains a legacy Azure presence that may require occasional support.

Requirements

Bachelor’s degree in Computer Science, Information Technology, or a related field preferred.
2-3 years of experience working with AWS platform and infrastructure services.
Hands-on experience with Terraform for infrastructure as code.
Working knowledge of GitHub and GitHub Actions for CI/CD.
Solid understanding of AWS networking services: VPC, Transit Gateway, Direct Connect, Route 53, Elastic Load Balancing, and VPC endpoints.
Familiarity with AWS identity and access management: IAM roles and policies, IAM Identity Center, Permission Sets, and trust policies.
Understanding of network security constructs: Security Groups, NACLs, and VPC endpoint policies.
Experience with or exposure to Cloudflare services such as DNS, CDN, WAF, or Zero Trust is a plus.
Familiarity with Microsoft Azure networking and identity services is a plus but not required.
Exposure to AWS Network Firewall concepts is a plus.
AWS Certifications such as Cloud Practitioner or Solutions Architect Associate preferred; AWS Advanced Networking Specialty is a plus.
Traditional networking certifications such as Cisco CCNA are not required but will supplement cloud certifications.
Ability to read and interpret network diagrams, routing tables, and packet flows.
Strong communication skills and the ability to work collaboratively in a team environment.

Nice To Haves

Experience with or exposure to Cloudflare services such as DNS, CDN, WAF, or Zero Trust is a plus.
Familiarity with Microsoft Azure networking and identity services is a plus but not required.
Exposure to AWS Network Firewall concepts is a plus.
AWS Certifications such as Cloud Practitioner or Solutions Architect Associate preferred; AWS Advanced Networking Specialty is a plus.
Traditional networking certifications such as Cisco CCNA are not required but will supplement cloud certifications.

Responsibilities

Implement and maintain AWS networking constructs such as VPCs, subnets, route tables, and internet/NAT gateways using IaC and CI/CD workflows.
Build and manage Transit Gateway configurations to support multi-account and multi-region connectivity through infrastructure as code.
Support AWS Direct Connect implementations for hybrid connectivity between on-premises and cloud environments.
Implement network security controls including Security Groups, Network ACLs, and VPC endpoint policies through IaC modules.
Collaborate with teams that manage AWS Network Firewall and support related configurations as needed.
Implement and manage Cloudflare services including DNS, CDN, WAF, and traffic management through infrastructure as code.
Develop and maintain reusable IaC modules for network and identity infrastructure deployments.
Build and manage GitHub Actions workflows for infrastructure CI/CD pipelines across networking, identity, and platform services.
Implement IAM roles, policies, and trust relationships as code to support least-privilege access patterns across AWS accounts.
Deploy and manage IAM Identity Center (IAM IC) configurations, Permission Sets, and account assignments through IaC.
Troubleshoot network connectivity, latency, and routing issues across AWS and Cloudflare environments.
Participate in sprint-based support rotations for platform issues as needed.
Collaborate with cloud engineering, security, and application teams to implement networking and identity solutions based on approved architectures.
Contribute to documentation, runbooks, and knowledge-sharing within the team.
Manage account vending processes using enterprise automation tools.
Maintain and enhance automated provisioning pipelines for infrastructure hosting.
Define and enforce account guardrails through infrastructure as code policies.
Drive continuous improvement in cloud usage and automation.