FamilySearch Software Dev Eng 6-Staff Cloud Platform Architect (Lehi, UT)

About The Position

Requirements

• Bachelor's degree in computer science, closely related field or equivalent experience
• 12 years of industry-recognized, progressive and relevant professional experience.
• 8+ years in large-scale cloud networking and security architecture, including multi-account AWS environments.
• Experience completing two or more major cycles in architecting entire systems and successfully implemented through two or more development cycles
• Strong understanding of Agile Software Development methodologies and principles
• Demonstrate clear evidence of external industry validation and enterprise-grade vision
• Demonstrated experience evaluating vendors and their solutions and can identify critical gaps in their offerings, when applicable
• Exceptional written and verbal communications at all levels of the business
• Able to interact effectively with customers and present solutions, as well as lead customers through making decisions
• Strong understanding of the technical use cases supported by the stack/platform
• Able to lead cross-functional and interdepartmental product or project teams, define work processes, and lead a team of highly educated and skilled engineers and managers
• Must keep abreast of trends and directions in technology, understanding their relevance to the Church
• Expert in Cloud Based Platforms and services
• High-level understanding of DevSecOps
• Able to make architectural choices based on solid principles and practical experience without unsubstantiated bias
• Able to set technical architectural direction without supervision
• Leader of Continuous Integration and Continuous Delivery principles
• Outstanding troubleshooter, with the ability to think under pressure and drive the hardest problems to resolution
• Demonstrated leadership skills
• Demonstrated ability to mentor and train peers
• Expert-level knowledge of applicable software, computer languages, and code to perform the responsibilities of the role
• To successfully perform the essential functions of the job there may be physical requirements which need to be met such as sitting for long periods of time and using computer monitors/equipment

Nice To Haves

• Master's degree in a related field
• Deep hands-on with: VPC, TGW, Direct Connect, PrivateLink, Route 53, CloudFront, ALB/ELB, WAF/Shield/Imperva, NAT, IPSec, NACLs/SGs, and traffic engineering across regions.
• Expert in AWS IAM (roles, policies, permission boundaries, federation/SSO, cross-account patterns), SCPs, RBAC/ABAC, and service-to-service authentication/authorization.
• Proven experience designing segmented, well-architected network topologies (layered trust zones, zero-trust principles) and migrating legacy firewalls to AWS-native controls.
• Strong DNS competency (A, CNAME, NS, MX, DKIM, DMARC, SPF) and domain lifecycle governance.
• Demonstrated partnership with Security, participation in architecture governance, and incident/BCP readiness within an SDLC.
• Excellent critical thinking, communication, and influence skills—able to translate complex platform needs into clear, usable patterns for product teams.
• Experience operating in a regulated, high-availability environment at enterprise scale; comfortable with audit and evidence collection.
• Hands-on with edge policies (CORS, geo/language routing), CDN tuning, and bot/abuse mitigation.
• Familiarity with AWS WorkMail, account vending/landing-zone automation, and drift detection.
• Track record of driving org-wide migrations/upgrades (e.g., SDK/OS baselines) and aligning teams to accessibility and production-readiness standards.
• Certifications (nice to have): AWS Advanced Networking Specialty, Security Specialty, or equivalent portfolio.

Responsibilities

• Cloud networking architecture & operations
• DNS & email posture (Route 53)
• AWS Organization/IAM strategy
• Security partnership & governance
• Cross-org committees & assignments
• Platform enablement & problem solving
• Application infrastructure stewardship (select examples)
• Trusted access & ethics (critical expectation)