{"hiringOrganization":{"logo":"https:\/\/careers.societegenerale.com\/themes\/custom\/sg_careers\/images\/LOGO_Groupe_EN.jpg","@type":"Organization","name":"Societe Generale","sameAs":"https:\/\/careers.societegenerale.com"},"employmentType":"Permanent contract","validThrough":"2026\/02\/16","datePosted":"2026\/02\/16","title":"Consultant Cloud Networks- AWS - IT (Information Technology) - Bangalore, India","@context":"http:\/\/schema.org\/","@type":"JobPosting","description":"Responsibilities

We are seeking a Cloud Network Consultant -AWS to lead the design, implementation, governance, and security of enterprise-grade cloud networking solutions. This role requires deep technical expertise in Cisco routing, AWS networking and security services, Skyhigh Proxy, and automation with Terraform, combined with strong leadership to enforce robust security controls and drive strategic initiatives.<\/p>

You will apply your strong Cisco routing\/switching and security skills as your base to own and oversee topics related to routing(Cisco), AWS network services (Firewall) to strategize AWS Firewall controls, optimize AWS CDN & AWS Front Door<\/strong>, secure web access by administer Squid and<\/strong> Skyhigh Secure Web Gateway\/Proxy<\/strong>, manage allow\/deny lists, and oversee operational lifecycle tasks such as TLS certificate renewals<\/strong> and AMI\/image upgrades<\/strong> for network\/security appliances. You will bring in ideas to codify everything possible with Terraform<\/strong> and drive resilient, observable, and compliant operations. You will also implement monitoring and alerting frameworks<\/strong> and enforce AWS Policy and Governance<\/strong> for compliance<\/p>Profile required

Mandatory Skills \u2013 Squid<\/strong> proxy, <\/strong>AWS front door, CDN, <\/strong>AWS Firewall and terraform (IaC), Cisco Routing and switching<\/p>

Secondary skills<\/strong> - Network security knowledge, WAF, Squid Proxy, FortiNet, CheckPoint.<\/p>

Key Responsibilities<\/strong><\/p>

Strategic Leadership & Governance<\/strong><\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Define and own the cloud network architecture roadmap aligned with business objectives.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Establish network security governance, compliance frameworks, and enforce zero-trust principles.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Lead cloud networking strategy across hybrid environments, ensuring scalability, resilience, and cost optimization.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Act as a trusted advisor for network security best practices, risk assessments, and audit readiness.<\/p>

Technical Design & Implementation<\/strong><\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Architect and oversee Cisco routing (BGP, OSPF, MPLS, VPNs) for hybrid connectivity.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Collaborate with cloud architects, security, and DevOps teams to ensure secure and scalable network designs.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Design and implement AWS Firewall, AWS Front Door (with WAF), and AWS CDN for secure and optimized traffic delivery.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Design cloud and hybrid network topologies (hub\u2011and\u2011spoke\/vWAN), IP addressing, UDRs\/route tables, and peering aligned to zero\u2011trust principles.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Design, implement, and support hybrid\/cloud network architectures<\/strong> with Cisco routing<\/strong> (BGP, OSPF, route redistribution, ECMP, VRFs).<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Define egress\/ingress patterns with AWS Firewall<\/strong>, NSGs, and route control; standardize segmentation and inspection points. Build\/Maintain AWS networking<\/strong>: VPC, subnets, route tables, UDRs, NSGs\/ASGs, Private Links, Load Balancers, and ExpressRoute\/SD-WAN connectivity.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Architect AWS Front Door<\/strong> for global load balancing, path-based routing, health probes, origin groups, and custom domains; align AWS CDN<\/strong> caching strategies (TTL, rules engine, compression) to app patterns.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Design, deploy, and maintain AWS virtual networks (VPC), subnets, network security groups, and route table<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Design and implement application delivery services (traffic manager, load balancer etc)<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Design and implement AWS application GW (rewrite sets, conf. TLS, HTTP settings etc<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement AWS Firewall, Application Gateway, Front Door, and Load Balancers for high availability and security.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Troubleshoot connectivity, routing, and latency issues in AWS, Data centre and hybrid networks.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Troubleshoot L3\u2013L7 issues using packet captures, flow logs, WAF\/Firewall\/Front Door\/CDN telemetry, and SIEM dashboards.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Manage DNS zones, Private Endpoints, and Network Peering in AWS<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Establish secure internet access patterns via Squid <\/strong>and Skyhigh Proxy (SWG)<\/strong> including SSL inspection, category policies, PAC files, and exceptions.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement a strategy for whitelisting\/blacklisting strategies for domains, IPs, and applications.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Oversee certificate lifecycle management (issuance, renewal, rotation, automation).<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Govern AMI upgrades, patching cadence, and image hardening standards.<\/p>

Automation & Infrastructure as Code<\/strong><\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Drive Terraform adoption for network provisioning, policy-as-code, and compliance guardrails.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement CI\/CD pipelines for network\/security automation and drift detection.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Automate certificate renewals, AMI pipelines, Squid and Skyhigh policy updates.<\/p>

<\/strong><\/p>

Security Controls & Compliance<\/strong><\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Enforce network segmentation, least privilege access, and deny-by-default posture.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Implement WAF\/IDPS, threat intelligence filtering, and DDoS protection strategies.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Maintain runbooks, diagrams, inventories, and deliver L3 support and knowledge transfer.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Ensure compliance with ISO 27001, SOC 2, GDPR, PCI-DSS and maintain audit-ready documentation.<\/p>

Monitoring & Incident Response<\/strong><\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Define observability strategy and traffic analytics.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Lead troubleshooting for complex L3\/L7 issues across Data centre, hybrid and multi-cloud environments.<\/p>

\u00b7\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Establish incident response playbooks and conduct periodic tabletop exercises.<\/p>Why join us

\u201cWe are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status\u201d.<\/i><\/p>Business insight

At Soci\u00e9t\u00e9 G\u00e9n\u00e9rale, we are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious. Whether you\u2019re joining us for a period of months, years or your entire career, together we can have a positive impact on the future. Creating, daring, innovating, and taking action are part of our DNA. If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a daily\u00a0basis and develop or strengthen your expertise, you will feel right at home with us!<\/strong><\/p>

Still hesitating?<\/strong><\/p>

You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices, and sharing their skills with charities. There are many ways to get involved.<\/strong><\/p>

We are committed to support accelerating our Group\u2019s ESG strategy by implementing ESG principles in all our activities and policies. They are translated in our business activity (ESG assessment, reporting, project management or IT activities), our work environment and in our responsible practices for environment protection.<\/strong><\/p>","identifier":{"@type":"PropertyValue","name":"Recruitment Societe Generale","value":"25000PW7"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Bangalore","addressCountry":"India"}}} window.dataLayer = window.dataLayer || []; var aData = { customVarPage1: "Consultant Cloud Networks- AWS", customVarPage2: "Bangalore", customVarPage3: "Permanent contract", customVarPage4: "25000PW7", customVarPage5: "SG Global Solution Centre", customVarPage6: "IT (Information Technology)", customVarPage7: "2026/02/16" } window.dataLayer.push(aData);

{ "@context": "https://schema.org", "@type": "BreadcrumbList", "itemListElement": [ { "@type": "ListItem", "position": 1, "name": "Home", "item": "https://careers.societegenerale.com/en" } , { "@type": "ListItem", "position": 2, "name": "Job offers", "item": "https://careers.societegenerale.comhttps://careers.societegenerale.com/en/search" } , { "@type": "ListItem", "position": 3, "name": "Consultant Cloud Networks- AWS", } ] }

• Home
• Job offers
• Consultant Cloud Networks- AWS