Sr. Cloud Platform Engineer

About The Position

Requirements

• High School diploma required; BA/BS degree in Computer Science, Information Technology, or related field preferred
• 7+ years of experience as a senior engineer in a mid-to-large-scale enterprise environment
• 4+ years of hands-on, production-grade experience with Azure at enterprise scale (required)
• 3+ years of hands-on, production-grade experience with Google Cloud Platform (required)
• AWS experience strongly preferred; candidates with deep Azure + GCP and meaningful AWS exposure will be prioritized
• Platforms are listed in priority order: Azure (Primary): AKS, Azure Networking (vHub, NSG, App Gateway, Private Endpoints, VPN), Landing Zone automation, Azure DevOps/GitLab CI, Terraform IaC, SPN/Managed Identity, Azure Storage
• Google Cloud Platform (Secondary): GKE, Cloud Run, Cloud SQL, BigQuery, VPC, IAM, Artifact Registry, Cloud Monitoring, Vertex AI
• AWS (Strongly Preferred): Core services familiarity (EC2, EKS, VPC, IAM, S3); ability to operate or support AWS workloads alongside Azure/GCP
• Terraform: Production IaC modules for Azure and GCP (AWS IaC a plus)
• CI/CD: GitLab CI, Azure DevOps, Cloud Build, or Jenkins
• Kubernetes: AKS and/or GKE at production scale — multi-tenant clusters, Helm, workload identity, pod security
• HashiCorp Vault: Enterprise secrets management, Vault role administration, CI/CD pipeline integration
• Ansible / AWX: Playbook development and AWX automation platform operation
• Scripting & Automation: Python and/or Bash for infrastructure automation
• Networking: VPC design, BGP, DNS, load balancing, hub-spoke topologies, and hybrid connectivity
• IAM & Security: Org policies, Managed Identity, Workload Identity Federation, VPC Service Controls, workforce identity federation with external IdPs
• Monitoring & Observability: Google Cloud Monitoring, Azure Monitor, Cloud Logging, DataDog, and/or SigNoz

Nice To Haves

• AWS certifications or hands-on project experience
• Azure certifications (AZ-104, AZ-305) or GCP Professional Certifications (Cloud Architect, Cloud DevOps Engineer)
• Linux system administration
• Kubernetes advanced operations (Autopilot, multi-cluster, service mesh)
• CloudBolt CMP: cloud management platforms for multi-cloud governance, FinOps reporting, and self-service provisioning
• Tines or similar workflow automation platforms
• BigQuery and data platform support experience
• Experience with API-driven automation (Google APIs, Microsoft Graph, Jira, Okta)
• Data center migration experience

Responsibilities

• Design, build, and maintain scalable, secure, and highly available environments across Azure (primary) and GCP, with working knowledge of AWS
• Own landing zone design and automation for both Azure and GCP — including organization hierarchy, resource naming standards, IAM governance, and policy enforcement
• Design and operate production-grade Kubernetes environments (AKS and GKE) including multi-tenant cluster strategies, workload identity, pod security standards, autoscaling, resiliency, cost optimization, and Helm-based application deployment
• Build and operate the GCP Project Factory for standardized, automated provisioning of GCP projects, IAM bindings, service accounts, and GitLab integration
• Define and enforce cloud resource naming conventions, project labeling standards, and organizational tagging policies aligned with FinOps and cost allocation requirements
• Develop and maintain Terraform modules for Azure and GCP resource provisioning (AWS IaC a plus), ensuring reusable, version-controlled infrastructure
• Build and manage CI/CD pipelines (GitLab CI, Azure DevOps, Cloud Build, or equivalent) for automated infrastructure and application deployment, including container build, Artifact Registry publishing, and Cloud Run / GKE delivery patterns
• Own and evolve the Ansible AWX automation platform (currently running on AKS) — develop and maintain playbooks and roles to automate system configuration, application setup, and operational workflows
• Administer and evolve the CloudBolt Cloud Management Platform (CMP) for multi-cloud resource provisioning, governance, cost visibility, and self-service workflows
• Develop automation scripts using Python, Bash, or PowerShell to streamline operational tasks
• Leverage AI tools including Claude to accelerate Infrastructure as Code development, runbook creation, and documentation — and help the broader team adopt these workflows effectively
• Implement and manage monitoring, alerting, and observability solutions using Google Cloud Monitoring, Azure Monitor, Cloud Logging, SigNoz, and DataDog
• Develop and maintain runbooks and playbooks to guide incident response; perform root cause analysis (RCA) and document findings
• Respond to escalated infrastructure service desk tickets and resolve complex cloud-related issues
• Design, operate, and secure enterprise-grade secrets management using HashiCorp Vault across cloud and hybrid environments, including Vault role management and CI/CD pipeline integration
• Implement and enforce cloud security controls across Azure (Managed Identity, Private Endpoints, NSG) and GCP (VPC Service Controls, Workload Identity, Binary Authorization, Secret Manager), including workforce and workload identity federation with external IdPs
• Partner with the Information Security organization to identify, prioritize, and remediate cloud security vulnerabilities
• Design and maintain hybrid network connectivity between Azure and GCP, including VPN tunnels, FMC/FTD integration, and cross-cloud routing
• Design and implement hub-spoke network topologies with multi-region CIDR schemas supporting phased regional expansion
• Assist network design including VPC architecture, Shared VPC, Cloud Interconnect, Cloud NAT, and firewall policy management across both platforms
• Define and implement disaster recovery strategies for cloud-hosted workloads across Azure and GCP
• Conduct periodic DR drills and document recovery time/point objectives (RTO/RPO)
• Create and maintain thorough infrastructure documentation, architecture diagrams, and operational guides — owning the cloud knowledge base for the team
• Collaborate cross-functionally with application teams, security, DevOps, and leadership to align infrastructure with business goals
• Mentor engineers and promote cloud best practices across the team

Benefits

• Medical, Dental, and Vision Coverage
• Holiday and Vacation Time
• Health & Wellness Days
• A Bonus Day for Your Birthday