Cloud Lead (AWS DevSecOps), New York, NY-550 W 34th St, New York, United States

Job Title: Cloud Lead (AWS DevSecOps)

Job Location: Hybrid- New York [New York, NY-550 W 34th St]

** Please note, this role is not able to offer visa transfer or sponsorship now or in the future**

We are seeking a highly skilled Cloud Architect / Cloud Lead with deep expertise in AWS, DevOps, and DevSecOps practices. This role will be responsible for designing, implementing, and optimizing scalable cloud infrastructure, CI/CD pipelines, and secure deployment frameworks. The ideal candidate will bring strong experience in GitLab, Terraform, AWS CDK, and container platforms, along with a solid understanding of security, compliance, and observability in enterprise environments.

Salary and Other Compensation:

The annual salary for this position is between $114,000 to $128,000 depending on experience and other qualifications of the successful candidate.

This position is also eligible for Cognizant’s discretionary annual incentive program, based on performance and subject to the terms of Cognizant’s applicable plans.

In this role, you will

CI/CD & DevOps Engineering

Design and implement robust GitLab CI/CD pipelines using multi-stage YAML for build, testing, security scanning, and multi-environment deployments.
Configure and manage GitLab Runners (EC2/EKS-based autoscaling) with focus on scalability, performance, and security.
Optimize pipeline performance through parallel execution, caching, artifact reuse, and conditional workflows.
Implement automated release management including tagging, semantic versioning, rollback strategies, and audit traceability.

Cloud Infrastructure & Automation

Develop Infrastructure as Code (IaC) using Terraform and AWS CDK (TypeScript/Python) with modular and reusable design patterns.
Automate provisioning of AWS services such as VPC, IAM, EC2, ECS/EKS, Lambda, RDS, and S3 using parameterized templates.
Build and manage multi-account and multi-region AWS environments using CDK pipelines and GitLab integration.
Implement scalable and resilient deployment strategies including blue/green, canary, and rolling deployments.

Containerization & Platform Engineering

Automate deployment of applications to container platforms (ECS/EKS), including image build pipelines and runtime configuration.
Manage Kubernetes deployments using Helm charts and establish repeatable deployment standards.
Implement container lifecycle management and registry governance using GitLab Registry and Amazon ECR.

DevSecOps & Compliance

Integrate security controls within CI/CD pipelines including SAST, DAST, dependency scanning, container scanning, and secrets detection.
Enforce least-privilege access by designing IAM roles, policies, and cross-account access controls.
Implement secure configuration and secrets management using AWS Secrets Manager, SSM Parameter Store, and CI/CD variables.
Enable compliance reporting aligned to PCI DSS, SOC 2, GDPR, and CIS benchmarks.

Monitoring, Logging & Observability

Design and implement end-to-end observability frameworks using AWS CloudWatch (logs, metrics, alarms).
Integrate third-party monitoring tools such as Datadog, Dynatrace, Splunk, or Grafana.
Build centralized logging architecture with CloudWatch, CloudTrail, and S3 archival and retention policies.
Develop custom CloudWatch dashboards with dynamic filtering and service correlation views.
Configure advanced alerting mechanisms including composite alarms, anomaly detection, and threshold tuning.
Enable cross-account observability using AWS Organizations and centralized monitoring accounts.

Operational Excellence & Troubleshooting

Troubleshoot and resolve issues across CI/CD pipelines, infrastructure, networking, IAM, and runtime environments.
Perform drift detection and remediation in infrastructure and deployments.
Ensure high availability, scalability, and reliability of cloud environments through proactive monitoring and optimization.

What you’ll need to succeed (required skills)

Extensive experience with AWS Cloud services (10+ years preferred)
Strong hands-on expertise in Terraform and AWS CDK
Experience with GitLab CI/CD and pipeline automation
Solid experience with container platforms (ECS/EKS, Kubernetes)
Proficiency in DevSecOps tools and security integration

Preferred Skills

Experience with multi-account AWS architecture and governance
Exposure to financial services regulatory environments
Strong scripting skills in Python or TypeScript
Experience with observability platforms (Datadog, Splunk, Dynatrace, Grafana)

Benefits: Cognizant offers the following benefits for this position, subject to applicable eligibility requirements:

Medical/Dental/Vision/Life Insurance
Paid holidays plus Paid Time Off
401(k) plan and contributions
Long-term/Short-term Disability
Paid Parental Leave
Employee Stock Purchase Plan

Work model:

At Cognizant, we strive to provide flexibility wherever possible, and we are here to support a healthy work-life balance though our various wellbeing programs. Based on this role’s business requirements, this is a hybrid role requiring 3 days a week at client site in New York, USA.

The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.

We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.

Disclaimer: The salary, other compensation, and benefits information is accurate as of the date of this posting. Cognizant reserves the right to modify this information at any time, subject to applicable law.

“Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.

コグニザントについて  
コグニザント（NASDAQ: CTSH）は、AI Builderおよびテクノロジーサービスプロバイダーとして、お客様にフルスタックのAIソリューションを構築することで、AI投資と企業価値を結ぶ架け橋となっています。業界、ビジネスプロセス、エンジニアリングに関する当社の深い専門知識を活かし、組織固有のビジネス環境をテクノロジー・システムに組み込みます。これにより、人間の可能性を最大限に引き出し、確かな成果を実現するとともに、急速に変化する世界においてグローバル企業が常に一歩先を行くための支援を行っています。詳細については、cognizant.ai をご覧ください。 

雇用に関する追加情報
本募集に記載されている報酬情報は、掲載日時点で正確なものです。Cognizantは、適用される法令に従い、いつでも本情報を変更する権利を留保します。

応募者は、対面またはビデオ会議による面接への参加を求められる場合があります。また、各面接の際に、現在有効な州政府または政府発行の身分証明書の提示を求められる場合があります。

Cognizantは機会均等雇用主です。応募および選考において、人種、肌の色、性別、宗教、信条、性的指向、性自認、国籍、障がい、遺伝情報、妊娠、退役軍人の地位、その他連邦法・州法・地方自治体の法律により保護されるいかなる特性に基づく差別も行いません。