Senior Platform Engineer

About The Position

Requirements

• Deep hands-on experience engineering cloud infrastructure on one or more of Azure, AWS, and GCP (architecture + implementation).
• Strong proficiency with Infrastructure as Code (Terraform primary; Bicep/ARM and CloudFormation).
• Proven experience implementing landing zones / foundational cloud platforms (identity, network, shared services, governance).
• Experience with policy-as-code and automated compliance (e.g., Azure Policy, AWS Config + SCPs, OPA/Conftest).
• CI/CD expertise for infrastructure: pipeline design, testing/validation, approvals, environment promotion, drift detection.
• Working knowledge of configuration management/automation in current-state enterprise environments (e.g., Ansible and Puppet).
• Strong understanding of IAM, network security, encryption, key management, and secure-by-default patterns.
• Comfortable with Git-based workflows (PR reviews, branching strategies, versioning, release management).
• Scripting/programming ability (e.g., Python, Bash, PowerShell, Go) to build automation and tooling.

Nice To Haves

• Strong Network Engineering background including cloud and hybrid-cloud connectivity, network security policy automation, and cloud native network architectures.
• Experience working in hybrid environments to deliver platform automation solutions in the Data Center.
• Experience with additional clouds: GCP, OCI, IBM Cloud.
• Familiarity with security and control frameworks such as NIST CSF, NIST 800-171, SOX, SOC 2, and ISO 27002.
• Kubernetes/platform experience (AKS/EKS/GKE), service mesh, or container platform operations.
• Experience with platform engineering concepts: developer portals/catalogs, golden paths, internal products.
• Familiarity with observability stacks: native CSP tooling, Datadog, Splunk, LogicMonitor
• SAFe or other structured agile delivery framework experience (PI planning, ARTs, epics/features).

Responsibilities

• Design, build, and operate cloud landing zones (multi-account/subscription, org structure, network, identity, logging, security baselines).
• Implement governance and guardrails using policy-as-code (e.g., Azure Policy, AWS Organizations/SCPs, OPA/Conftest), including exception handling and auditability.
• Deliver an infrastructure platform as a product to the internal development community.
• Develop reusable IaC modules/libraries (Terraform primary; Bicep/ARM and CloudFormation also valued) and promote standard patterns for teams.
• Build and maintain CI/CD pipelines for infrastructure, OS Images, containers, and platform components using GitOps workflows (PR-based changes, automated validation, progressive delivery).
• Standardize environments (dev/test/prod) with consistent controls, tagging/metadata, and cost management guardrails.
• Embed security and compliance into build/deploy: secret handling, encryption, IAM least privilege, vulnerability scanning, and evidence generation.
• Observability and SRE practices: implement monitoring/alerting and dashboards, support incident response, and help define/track SLIs/SLOs for platform services.
• Collaborate in an agile delivery model; participate in planning, refinement, and execution (SAFe experience is a bonus).