GPS - Azure Platform Engineer - Supervising Associate
About The Position
This is a remote opportunity that can be performed within Continental United States. This role supports large and complex government cloud programs operating within Azure Government environments. It is responsible for leading the delivery of platform and infrastructure capabilities from initial design through implementation, with a focus on enabling scalable, automated, and low friction cloud consumption models. The position plays a critical role in designing and evolving enterprise grade automation and CI/CD capabilities while serving as a bridge between product, engineering, and platform teams to advance cloud capabilities without introducing technical debt. The role translates business and user needs into platform designs that meet functional, security, and operational requirements, while providing technical leadership and mentorship within a collaborative delivery environment. Success in this role requires creativity and innovation applied thoughtfully within the constraints of government and security sensitive contexts.
Requirements
- Bachelor’s degree in Computer Science, IT, or equivalent experience
- Microsoft Certified: Azure Administrator Associate (AZ-104)
- 5+ years in engineering roles working with private/public cloud IaaS, PaaS, and/or SaaS
- Ability to obtain and maintain a Top Secret security clearance
- Strong hands-on experience with Infrastructure as Code & CI/CD – designing and delivering with tools such as Bicep, Azure DevOps, ARM templates, or Ansible
- Strong hands-on experience with Containers and orchestration – experience building and running containerized workloads using technologies such as Docker, Kubernetes, Azure Kubernetes Service (AKS), Azure Container Apps, or Helm for packaging and deploying services at scale
- Strong hands-on experience with Scripting / programming – practical automation experience using PowerShell (Python or similar scripting languages is a plus but not required)
- Strong hands-on experience with Networking fundamentals – strong foundation designing and troubleshooting VNets, subnets, network security groups (NSGs), routing (UDRs), and basic load-balancing scenarios, with enough depth to reason about hub-and-spoke or similar topologies and diagnose common connectivity issues
- Strong hands-on experience with Cloud security principles – solid understanding of concepts such as shared responsibility, least privilege, identity-driven security, network segmentation, encryption, and logging/monitoring, and how to apply them for customers driven by regulatory compliance requirements, such as: NIST, Fedramp
- Strong hands-on experience with Windows and Linux administration – hands-on experience managing, troubleshooting, and hardening server workloads, including patching, performance tuning, and applying security baselines (e.g., DISA STIG or equivalent)
- Strong hands-on experience with Identity and access – understanding of Microsoft Entra ID, Azure RBAC, Entra ID RBAC, Privileged Identity Management (PIM), and managed identities for Azure resources
- Experience with government security frameworks (e.g., NIST controls)
- Hands-on delivery in Agile environments (Scrum, Kanban, SAFe, or similar)
- Strong written and verbal communication and the ability to work effectively on distributed teams
Nice To Haves
- Deeper hands-on experience with Git-based source control and branching strategies
- Deeper hands-on experience with Azure DevOps Pipelines and broader Azure platform services
- Deeper hands-on experience with Bicep for advanced automation and configuration
- Deeper hands-on experience with Azure Policy and multi-tenant / multi-subscription design patterns
- Deeper hands-on experience with Advanced Azure networking experience – hands-on exposure to one or more of: VPN Gateway or ExpressRoute, Azure Firewall or other NVAs, Virtual WAN hubs, Application Gateway or similar L7 gateways, and more complex hybrid or multi-region network designs
- Additional relevant certifications, such as: AZ-400, AZ-500, AZ-700, AI-102
- Additional relevant certifications, such as: Certified Kubernetes Administrator (CKA) or CKAD / CKNS
- Additional relevant certifications, such as: Red Hat Certified Specialist in Ansible Automation
Responsibilities
- Lead the design, engineering, and automation of cloud platform solutions that meet product and business needs
- Apply and enhance DevSecOps practices, standards, and automation to improve reliability and delivery effectiveness
- Apply modern development principles, security standards, and usability guidelines to all platform solutions
- Ensure platform quality through appropriate use of manual reviews and automated controls
- Balance a strong bias toward automation with sound judgment on when manual approaches are more effective
- Identify, communicate, and manage risks, assumptions, issues, and decisions throughout the full solution lifecycle
- Evaluate technical options, assess feasibility and impact, and recommend solutions that balance delivery timelines with long‑term maintainability
- Design, build, and support CI/CD pipelines and associated tooling to enable reliable, repeatable deployments
- Collaborate across teams and mentor junior engineers to support delivery excellence and capability growth
Benefits
- Comprehensive compensation and benefits package
- Medical and dental coverage
- Pension and 401(k) plans
- Wide range of paid time off options
- Flexible vacation policy
- Time off for designated EY Paid Holidays
- Time off for Winter/Summer breaks
- Time off for Personal/Family Care
- Other leaves of absence when needed to support your physical, financial, and emotional well-being
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Number of Employees
5,001-10,000 employees
