Senior Cloud Engineer

Benefits

Additional Information

- The Cloud Engineering team is seeking a Senior Cloud Engineer with experience primarily in Microsoft Azure to facilitate solution delivery and operational needs within the group. This individual will play a crucial role in implementing enterprise cloud solutions for our business. The selected candidate will be required to work a hybrid schedule (3 days in office/2 remote) from our Dallas, TX, or Cincinnati, OH office. No relocation assistance is being offered with this role. Key Accountabilities/Deliverables: Design and Implement Infrastructure as Code (IaC) Develop and maintain modular, secure Terraform configurations for deploying Azure resources. Utilize version-controlled code (GitHub) with state management and remote backends. Create reusable Terraform modules to standardize infrastructure provisioning. Build and Maintain CI/CD Pipelines Develop GitHub Actions workflows for Terraform plans/applies and Docker builds/deployments. Integrate code linting, security scanning, approvals, and environment gates into pipelines. Deliver Scalable Solutions in Microsoft Azure Translate business and application requirements into cloud-native and hybrid Azure solutions. Deploy services such as containers, App Services, VNets, Azure SQL, Key Vault, Storage Account, PrivateLink, Managed SQL, and Azure Backup. Ensure deployments are secure, scalable, and compliant with enterprise policies. Modernize Legacy Infrastructure in the Cloud Migrate legacy IaaS workloads to Azure PaaS or container platforms. Design hybrid cloud solutions integrating on-prem systems with Azure (e.g., VPN/ExpressRoute Virtual Network Gateway, Azure Arc, PrivateLink). Assess and remediate technical debt and outdated architecture. Governance, Security, and Compliance Enforce enterprise standards using Azure Policy, RBAC, tagging policies, and cost control mechanisms. Manage secrets with Azure Key Vault and implement secure identity practices (managed identities, MFA). Proactive Management and Audit-enabled Deployments Set up monitoring and alerting using Azure Monitor, Log Analytics, Microsoft Sentinel, etc. Create dashboards and alert rules for proactive incident detection. Develop and maintain Standard Operating Procedures (SOPs) for common operational issues and escalations. Collaboration & DevOps Practices Work cross-functionally with developers, architects, operations, and security teams to deliver infrastructure aligned with application needs. Participate in Agile ceremonies (standups, sprint planning, retrospectives). Review code, mentor team members, and promote DevOps best practices. Documentation & Knowledge Sharing Maintain comprehensive technical documentation, including architecture diagrams, deployment guides, CI/CD pipeline workflows, operational runbooks, and disaster recovery procedures. Conduct internal knowledge-sharing sessions and training. Continuous Improvement & Innovation Evaluate and adopt emerging Azure services, DevOps tools, and Terraform capabilities. Identify automation opportunities to streamline workflows and reduce manual operations. Continuously optimize cloud costs, performance, and resource usage. Technical Knowledge and Understanding: Microsoft Azure Core Services Strong understanding of Azure compute services: Virtual Machines, VMSS, App Services, AKS. Deep knowledge of Azure networking: VNets, Subnets, NSGs, UDRs, VPN Gateway, ExpressRoute, Private Link. Familiarity with Azure storage options: Blob, File Shares, Disks, and backup solutions. Experience with Azure PaaS services: Azure SQL, Cosmos DB, Application Gateway, Azure Functions, Logic Apps. Infrastructure as Code (IaC) Proficient in Terraform: Writing clean and modular Terraform code, backend configuration and remote state management, workspaces and environment separation, and using the AzureRM provider effectively. Familiarity with Bicep or ARM templates. CI/CD and Version Control Deep understanding of Git fundamentals: branching, merging, PRs, versioning. Experience with GitHub Actions (or equivalents like Azure DevOps Pipelines): Building pipelines for infrastructure and application delivery, managing secrets and environment approvals, and integrating security scans and validations. Containerization & Orchestration Writing Dockerfile, building, and securing container images. Managing multi-stage builds and custom base images. Understanding container orchestration concepts and experience with Azure Kubernetes Service (AKS), Kubernetes YAML manifests or Helm charts, and Azure Container Registry (ACR) usage and access control. Azure Automation Knowledge of Azure Automation Accounts, runbooks, function apps, and webhooks. Scripting skills in PowerShell and/or Bash for automation and task orchestration. Identity & Access Management Strong understanding of Azure AD / Entra ID, user and group management, Role-Based Access Control (RBAC), Conditional Access policies, and MFA. Managed Identities, Service Principals,