Cloud Platform Engineer II (Network)

Join the Cloud Platform team as a Cloud Platform Engineer focused on network and identity infrastructure in AWS and Cloudflare. In this role, you will implement and maintain cloud networking and identity services through a fully code-driven infrastructure model. Using Terraform, GitHub Actions, and DevOps practices, you will build and operate scalable, well-governed platform services in a multi-account AWS environment. While AWS is the primary platform and the target for all new development, the organization maintains a legacy Azure presence that may require occasional support. Your Responsibilities on the Team

• Design, implement, and own AWS networking constructs such as VPCs, subnets, route tables, and

internet/NAT gateways using IaC and CI/CD workflows, with accountability for reliability and standards compliance.

• Lead Transit Gateway configurations to support multi-account and multi-region connectivity, including

architecture decisions and ongoing optimization through infrastructure as code.

• Implement and own AWS Direct Connect configurations for hybrid connectivity, including troubleshooting

complex routing issues between on-premises and cloud environments.

• Design and enforce network security controls including Security Groups, Network ACLs, and VPC endpoint

policies through reusable, well-documented IaC modules.

• Own and administer AWS Network Firewall configurations, including policy development and integration with

broader platform security controls.

• Lead the design and implementation of Cloudflare services including DNS, CDN, WAF, and traffic

management through infrastructure as code, serving as a subject matter expert for the team.

• Develop, maintain, and establish standards for reusable IaC modules for network and identity infrastructure

deployments across teams.

• Build, own, and improve GitHub Actions workflows for infrastructure CI/CD pipelines across networking,

identity, and platform services, including pipeline reliability and security controls.

• Design and implement IAM roles, policies, and trust relationships as code, establishing least-privilege access

patterns and guardrails across AWS accounts.

• Lead deployment and management of IAM Identity Center (IAM IC) configurations, Permission Sets, and

account assignments through IaC, including lifecycle management and compliance reviews.

• Independently troubleshoot and resolve complex network connectivity, latency, and routing issues across

AWS and Cloudflare environments, and document root cause findings.

• Serve as an escalation point during sprint-based support rotations for platform issues, and drive

improvements to reduce recurring incidents.

• Partner with cloud engineering, security, and application teams to translate approved architectures into

production-ready networking and identity solutions, taking ownership from design through delivery.

• Lead documentation efforts for runbooks, architecture decisions, and knowledge-sharing; mentor Level I

engineers on team standards and best practices.

• Own and improve account vending processes using enterprise automation tools, driving consistency and

reducing manual steps.

• Maintain, enhance, and proactively improve automated provisioning pipelines for infrastructure hosting.
• Define and enforce account guardrails through infrastructure as code policies, contributing to the broader

governance framework.

• Drive continuous improvement initiatives in cloud usage, automation coverage, and operational efficiency, This is primarily a sedentary office position which requires the incumbent to have the ability to operate computer equipment, speak, hear, bend, stoop, reach, lift, and move and carry up to 25 lbs. Finger dexterity is necessary. This description outlines the basic responsibilities and requirements for the position noted. This is not a comprehensive listing of all job duties of the Associates. Duties, responsibilities, and activities may change at any time with or without notice. Lennar is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws

Do you have experience in Zero Trust security?, Do you have a Bachelor's degree?, * Bachelor's degree in Computer Science, Information Technology, or a related field preferred.

• 2-3 years of experience working with AWS platform and infrastructure services.
• Hands-on experience with Terraform for infrastructure as code.
• Working knowledge of GitHub and GitHub Actions for CI/CD.
• Solid understanding of AWS networking services: VPC, Transit Gateway, Direct Connect, Route 53, Elastic

Load Balancing, and VPC endpoints.

• Familiarity with AWS identity and access management: IAM roles and policies, IAM Identity Center,

Permission Sets, and trust policies.

• Understanding of network security constructs: Security Groups, NACLs, and VPC endpoint policies.
• Experience with or exposure to Cloudflare services such as DNS, CDN, WAF, or Zero Trust is a plus.
• Familiarity with Microsoft Azure networking and identity services is a plus but not required.
• Exposure to AWS Network Firewall concepts is a plus.
• AWS Certifications such as Cloud Practitioner or Solutions Architect Associate preferred; AWS Advanced

Networking Specialty is a plus.

• Traditional networking certifications such as Cisco CCNA are not required but will supplement cloud

certifications.

• Ability to read and interpret network diagrams, routing tables, and packet flows.
• Strong communication skills and the ability to work collaboratively in a team environment.

Pulled from the full job description

• Referral program
• Paid parental leave
• Parental leave
• Health insurance
• Vision insurance
• Dental insurance
• Adoption assistance

Lennar is one of the nation's leading homebuilders, dedicated to making an impact and creating an extraordinary experience for their Homeowners, Communities, and Associates by building quality homes and providing exceptional customer service, giving back to the communities in which we work and live in, and fostering a culture of opportunity and growth for our Associates throughout their career. Lennar has been recognized as a Fortune 500® company and consistently ranked among the top homebuilders in the United States. A Career that Empowers You to Build Your Future, At Lennar, we are committed to fostering a supportive and enriching environment for our Associates, offering a comprehensive array of benefits designed to enhance their well-being and professional growth. Our Associates have access to robust health insurance plans, including Medical, Dental, and Vision coverage, ensuring their health needs are well taken care of. Our 401(k) Retirement Plan, complete with a $1 for $1 Company Match up to 5%, helps secure their financial future, while Paid Parental Leave and an Associate Assistance Plan provide essential support during life's critical moments. To further support our Associates, we provide an Education Assistance Program and up to $30,000 in Adoption Assistance, underscoring our commitment to their diverse needs and aspirations. From the moment of hire, they can enjoy up to three weeks of vacation annually, alongside generous Holiday, Sick Leave, and Personal Day policies. Additionally, we offer a New Hire Referral Bonus Program, significant Home Purchase Discounts, and unique opportunities such as the Everyone's Included Day. At Lennar, we believe in investing in our Associates, empowering them to thrive both personally and professionally. Lennar Associates will have access to these benefits as outlined by Lennar's policies and applicable plan terms. Visit Lennartotalrewards.com to view our suite of benefits. Join the fun and follow us on social media to see what's happening at our company, and don't forget to connect with us on Lennar: Overview | LinkedIn< https://www.linkedin.com/company/lennar/ > for the latest job opportunities. Lennar is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws.   You must create an Indeed account before continuing to the company website to apply