Principal – Cloud Engineer

Principal – Cloud Engineer

Requirements

• Bachelor’s degree in computer science, engineering, or related technical fields
• 6 to 10+ years cloud computing (Microsoft Azure, AWS)
• Infrastructure as Code (IaC) automation (e.g., Terraform)

Responsibilities

• Principal leader on infrastructure-as-code (IaC) automation (e.g., Terraform) to guide pattern architecture via IaC to provide acceleration to dev team end users programmatically.
• Expert in modern software DevOps and CI/CD tooling, such as GitHub, GitHub Actions, ADO, Jenkins, etc., to provision infrastructure resources and prevent configuration drift.
• Acts as senior technical advisor to DevOps team to help enable adoption of cloud best practices across enterprise by focusing on broader strategic priorities for leadership.
• Evaluates new technology options for cloud automation, vendor products to make recommendations to leadership to integrate into DevOps infrastructure frameworks.
• Collaborate with product, architecture, and other stakeholders to ensure cloud technologies are designed in accordance with product roadmaps and well architected frameworks.
• Investigate and resolve complex cloud infrastructure related issues and recommend and develop solutions to issues and create documentation of reengineering processes as required.
• Participate in IT Service Management (ITSM) change, incident, and general requests for cloud platform support for business as usual (BAU) operations.
• Mentor junior DevOps engineer personnel to ensure team has necessary skill and capabilities.
• Advise on firewall technologies such as Azure Frond Door, Akamai WAF/CDN via automation and possess networking fundamentals to identify root causes of connectivity issues.
• Advise on cloud network security platforms and collaborate with tool vendors across WAF/CDN (e.g., Akamai, Azure Front Door, etc.), DNS Management, and load balancing.
• Architect, design, and implement automation workflows for network firewalls to enhance security protocols and integrate firewall management within the broader security strategy.
• Develop, implement, and enforce Policy-as-Code (PaC) for cloud environments (Azure, AWS) to configure, detect, remediate, and enforce security standards.
• Define and implement security policies based upon CIS/NIST industry benchmarks.
• Support remediation of security vulnerabilities using cloud posture management and ITSM tooling in accordance with service level agreements (SLA).
• Manage, configure, enhance, and operate cloud security posture management platforms (e.g., Wiz, Prisma Cloud, etc.) for pre-deployment scanning of IaC code to protect infrastructure.

Preferred Qualifications

• Strong passion for end-to-end DevOps automation via CI/CD pipelines to deploy Infrastructure as Code (IaC) and usage of tools (e.g., ADO, GitHub/Actions, Jenkins, or equivalents).
• Ability to manage infrastructure environments, configurations, and IaC scripts to support application pattern and workflows via self-service automation (e.g., Backstage.io).
• Support all phases of the cloud resource lifecycle management and develop new IaC automation capabilities when new cloud service products are created and business need.
• Proficiency in code and scripting languages to include Python, Perl, Ruby, PowerShell, YAML.
• Proficiency in waterfall and Agile, Scrum, Kanban, SAFe, etc. delivery methodologies.
• Knowledge and experience in testing automation harnesses and frameworks.
• Understanding and ability to ensure operational stability and enforcement of security controls via Policy-as-Code and IaC automation.
• Independently managing workload, coordinating priorities with technical leads, and completing deliverables per the processes and standards.
• Ability to work independently and manage multiple tasks and projects and maintain day-to-day management and administration of projects in an Agile environment.