About

Luigi Clemente Portrait

Summary

AWS Cloud consultant specialized in evaluating cloud migration readiness, designing and implementing enterprise landing zones, multi-account governance, and secure foundations on AWS.

I’ve led the creation of a production-grade AWS Organizations and landing zone, automated account provisioning and infrastructure deployments, integrated Azure SSO and security tooling, and built centralized logging and observability platforms (ELK, OpenTelemetry, S3/Athena) for multi-account, multi-region environments.

My core skills cover AWS architecture and operations, Infrastructure as Code, monitoring and logging, security & compliance, and FinOps.

My consulting approach is practical and direct: understand the business context, identify the architectural decisions that matter most, and turn them into a clear plan that teams can execute without unnecessary complexity. I do not pretend to know what I don’t; instead, I research, test, and verify before providing recommendations.

Key AWS Projects & Achievements

Enterprise AWS Landing Zone Design & Implementation

Awin Global

  • Designed and deployed a production-grade AWS Landing Zone using Terraform and Terragrunt for a multi-account organization supporting a global affiliate marketing platform.
  • Implemented AWS Well-Architected Framework principles across all five pillars: operational excellence, security, reliability, performance efficiency, and cost optimization.
  • Automated account provisioning and infrastructure deployment with Terraform modules, Atlantis CI/CD pipelines and custom scripts.
    Integrated security tooling (Orca, Sentinel) directly into Landing Zone and deployment workflows.
  • Enabled Azure SSO integration for centralized identity management across AWS accounts.
  • Conducted regular FinOps reviews, identifying cost savings and improving resource efficiency across the organization.

Centralized Observability & Logging Platform

Awin Global

  • Built enterprise-grade centralized logging using Logstash, AWS S3 and Athena for low-cost, scalable log storage.
  • Designed and deployed OpenTelemetry Collector clusters for multi-account, multi-Region observability.
  • Implemented ELK stack (Elasticsearch, Logstash, Kibana) and Graphite/Grafana monitoring for on-prem and AWS hybrid environments.

AWS Multi-account Governance & Security

Awin Global

  • Led AWS Organizations design and governance, ensuring compliance with security standards across 50+ accounts.
  • Established guardrails, SCPs, and tagging strategies for centralized governance.
  • Provided training and mentorship to engineering teams on AWS and Terraform best practices.
  • Created comprehensive technical documentation for platform infrastructure and operational procedures.

High-Availability Cloud Architectures

Zone Content & Firechaser

  • Designed and deployed highly scalable, highly available AWS architectures for enterprise clients including BT, Coca-Cola, Nike, Southbank National Theatre, Wigmore Hall, and Tesco.
  • Performed performance tuning, profiling, and optimization for LAMP stacks and Drupal platforms on AWS.

Core AWS & Cloud Skills

AWS Services & Architecture
Solutions Architecture, Multi-account Strategy, Landing Zones, Control Tower, Organizations, IAM & Identity Center, VPC Networking, Client VPN, S3, Athena, Lake Formation, CloudWatch, Lambda, EC2, and ECS.

Infrastructure as Code & Automation
Terraform, Terragrunt, Atlantis, CloudFormation, Code Pipeline.

DevOps & Observability
OpenTelemetry, ELK Stack, Grafana, Datadog, Centralized Logging, Monitoring & Alerting.

Security & Compliance
AWS Security Best Practices, Well-Architected Framework, Security Hub, NIS2 compliance, SSO Integration.

FinOps & Cost Optimization
Cost analysis, Resource rightsizing - Reserved Instances - Savings Plans.

Scripting & Development
Bash, Python, PHP, Linux Systems Administration.

Active AWS Certifications

  • AWS Certified Solutions Architect - Professional (Dec 2024 - Dec 2027)
  • AWS Certified Security - Specialty (Dec 2025 - Dec 2028)

Professional Experience

PeriodRole & CompanyFocus
2026Cloud Architect, Circle Group (Genoa, IT)AWS architecture and IT coordination
2023–2025Cloud Platform Engineer, Awin Global (Genoa, IT)AWS landing zone, Terraform, observability

2014–2023

Systems Engineer / Senior DevOps, Awin Global (London, UK)Landing zone implementation, monitoring, infrastructure
2012–2014Backend Developer / Systems Engineer, Zone Content (London, UK)AWS operations, backend development
2010–2012PHP Backend Developer, Firechaser (London, UK)AWS infrastructure, website backends
2007–2009IT Coordinator / Web Developer, Cure2Children Foundation (London, UK)Linux infrastructure, open-source platforms, websites, databases
EarlierWeb Developer, Biostatistician (IT)Clinical databases, medical IT, freelance projects

Education

  • Politecnico di Milano - University degree in Electronic Engineering - Milano, Italy.
  • Liceo Scientifico Emiliani - Rapallo, Italy.

Personal Interests

Outside cloud consulting, I’m interested in music, cinema, literature, graphic novels, visual arts, tango, and ethical veganism. I have also volunteered as an IT specialist for non-profit organizations in Italy.

Download full CV (pdf)