Cloud Engineer

About The Position

Requirements

• 5+ years hands-on network engineering experience focused on cloud/hybrid environments
• Deep Azure networking knowledge: vWAN, VNets, ExpressRoute, VPN Gateway, Azure Firewall, NSGs, Private Endpoints, Load Balancers
• Hands-on Palo Alto NGFW: configuration, policy management, Panorama, GlobalProtect
• Strong BGP (eBGP/iBGP peering, route maps, communities), OSPF, static routing across hybrid topologies
• Infrastructure as Code: Bicep or ARM templates
• Scripting/automation: Python, PowerShell
• Network security: Zero Trust Architecture, micro-segmentation, IPSEC VPN, firewall policy design
• Network monitoring: SolarWinds, Azure Monitor, Network Watcher, or equivalent
• Agile methodologies (Scrum/Kanban) and cross-functional team experience
• Strong communication skills for technical and leadership audiences
• Associate's degree in Engineering, Computer Science, or related field — or equivalent experience

Nice To Haves

• Certifications: AZ-700, PCNSE, CCNP, JNCIS/JNCIP, or equivalent (preferred, not required)
• Cisco network technologies — routers, switches, ASA VPNs, Cisco ISE, wireless controllers (secondary skillset)
• Juniper network technologies — SRX firewalls, EX/QFX switches, Junos OS (secondary skillset)
• SD-WAN solutions and WAN optimization
• Multi-cloud networking (Azure + AWS) including cross-cloud connectivity and transit architectures
• CI/CD pipelines (GitHub Actions, Azure DevOps) for infrastructure deployment
• AI-assisted engineering tools (GitHub Copilot, Microsoft Copilot, Copilot Studio) — or strong enthusiasm to adopt
• Healthcare or regulated industry experience (HIPAA, SOX, PCI-DSS)
• Kubernetes networking concepts (CNI, ingress controllers, service mesh)
• DNS/DHCP/IPAM management (Infoblox or equivalent)

Responsibilities

• Design, deploy, and manage Azure vWAN, VNets, ExpressRoute, VPN gateways, and hybrid connectivity.
• Architect multi-cloud patterns across Azure.
• Manage NGFW policies, Panorama, GlobalProtect VPN, network segmentation, and Zero Trust enforcement across on-premises and cloud environments.
• Configure and optimize BGP peering (eBGP/iBGP, route maps, communities), OSPF, VLAN design, route optimization, and Layer 3/4 troubleshooting.
• Build and maintain infrastructure using Bicep, ARM templates, Python, PowerShell, and GitHub Actions CI/CD pipelines.
• Leverage GitHub Copilot, Microsoft Copilot, and internal AI agents daily for troubleshooting, documentation, code generation, and incident triage.
• Actively contribute to the AI Community of Practice (AI CoP).
• Implement and manage monitoring with SolarWinds, Azure Monitor, Network Watcher, traffic analysis, and root cause analysis (RCA).
• Collaborate with Cybersecurity on micro-segmentation, private endpoints, NSGs, and ensure HIPAA and SOX compliance across all network architectures.
• Develop and maintain DR plans, high-availability architectures, and failover strategies across hybrid environments.
• Work within Agile frameworks (Scrum/Kanban), partner cross-functionally with Managed Services, Cloud Engineering, and Application teams.
• Mentor peers and share knowledge.
• Participate in a 24×7 on-call rotation.
• Drive P1/P2 rapid resolution, conduct post-incident reviews, and produce RCA documentation.