Hybrid Cloud Engineer Senior

About The Position

Requirements

• BS degree and 8+ years of prior relevant experience or Masters with 6+ years of prior relevant experience, additional years of experience may be accepted in lieu of a degree.
• Minimum 10 years of experience in Azure Cloud Engineering or Cloud Infrastructure roles.
• Possession of at least one of the following certifications: Azure Network Engineer Associate (AZ-700), Azure Solutions Architect Expert (AZ-305), Azure Administrator Associate (AZ-104).
• US Citizen and current active DoD Secret clearance.
• Strong expertise in Azure networking — including ExpressRoute, Virtual WAN, Peering, Load Balancers, Application Gateway, Azure Firewall, and Private Link.
• Proficiency with Terraform, Bicep, or ARM templates.
• Deep understanding of networking protocols (TCP/IP, DNS, DHCP, VPN, routing, subnetting, BGP).
• Hands-on experience with CI/CD pipelines for infrastructure deployments.
• Familiarity with security and identity in Azure (Azure AD, RBAC, Managed Identities).
• Experience with SASE, ZScaler, Palo Alto Prisma, or Cloudflare network integrations.
• Familiarity with Kubernetes networking (CNI, service mesh) or container-based deployments.
• Understanding of security frameworks (NIST, CIS Benchmarks, Zero Trust).
• Excellent troubleshooting and problem-solving skills in complex, hybrid environments.
• Strong documentation and collaboration habits.

Nice To Haves

• Additional industry certifications such as VMware VCP or Kubernetes CKA.
• Experience with security frameworks (e.g., RMF, NIST 800-53).
• Knowledge of scripting or programming languages, such as Python, PowerShell, or Bash.
• Familiarity with log management and monitoring tools (e.g., Splunk, Datadog, or ELK stack).

Responsibilities

• Design, implement, and maintain Azure infrastructure (compute, storage, networking, identity, and governance) using Infrastructure as Code (IaC).
• Architect and configure virtual networks (VNets), network security groups (NSGs), ExpressRoute, VPN gateways, private endpoints, and load balancers in Azure.
• Integrate and optimize hybrid cloud connectivity (on-prem to Azure), ensuring performance, redundancy, and security compliance.
• Implement and manage Azure Firewall, Application Gateway, and Azure Front Door configurations for secure and resilient application delivery.
• Automate provisioning and configuration using Terraform, Bicep, or ARM templates with CI/CD integration (GitHub Actions, Azure DevOps, or GitLab).
• Collaborate with application and security teams to enforce zero trust and network segmentation principles.
• Troubleshoot and optimize DNS, routing, latency, and firewall rules across hybrid environments.
• Support monitoring, alerting, and performance optimization via Azure Monitor, Log Analytics, and Network Watcher.
• Maintain compliance with DoD/NIST, FedRAMP, or enterprise security frameworks (if applicable).
• Design, deploy, and manage virtual cloud server infrastructures across hybrid environments (on-premises and cloud).
• Maintain and optimize virtualization platforms, such as VMware ESXi, Hyper-V, or cloud-native virtualization solutions.
• Collaborate with cross-functional teams to provision, maintain, and scale cloud resources in platforms like AWS, Azure, Google Cloud Platform (GCP), or Oracle Cloud Infrastructure (OCI).
• Monitor cloud resource utilization, ensuring cost efficiency and scalability.
• Troubleshoot issues and perform root cause analysis to resolve system and application-related problems.
• Work within a DEVSECOPS framework to ensure infrastructure meets security, compliance, and operational standards.
• Support CI/CD pipelines and integrate infrastructure automation into the development lifecycle.
• Implement containerization and orchestration technologies, such as Docker and Kubernetes, to support microservices architectures.
• Configure and maintain monitoring tools to ensure availability and performance of systems and applications.
• Identify and implement optimizations to improve system efficiency, latency, and uptime.
• Apply security best practices to protect hybrid cloud infrastructures, including identity and access management (IAM), network segmentation, and encryption.
• Assist in audits and compliance initiatives (e.g., RMF, NIST, ISO 27001).
• Provide tier-2/3 support for escalated issues, collaborating with internal teams and external vendors as needed.
• Document procedures, configurations, and troubleshooting steps to support knowledge sharing and team growth.
• Mentor junior engineers and contribute to team knowledge-sharing initiatives.

Benefits

• 401k
• health_insurance
• dental_insurance
• vision_insurance
• life_insurance
• disability_insurance
• paid_holidays
• paid_volunteer_time
• tuition_reimbursement
• professional_development