Cloud Engineer Microsoft Azure

Overview

Remote
Depends on Experience
Full Time

Skills

Azure
Azure AI
Azure Active Directory
Azure SQL
Azure Administrator
Azure Cosmos DB
Cosmos DB
FedRAMP
FISMA
Azure Virtual Networks
Azure Automation
Azure Security
Software as a Service
SaaS
Python
PowerShell

Job Details

Responsibilities

  • Architecting and designing Azure infrastructure solutions tailored to meet government enterprise requirements, including networking, storage, compute, security, and identity management.
  • Deploying and configuring Azure resources such as virtual machines, virtual networks, storage accounts, databases, and other services according to best practices and security standards.
  • Ensuring compliance with government regulations, standards, and security policies such as FedRAMP, FISMA, NIST, and DISA STIGs. Implementing security controls, encryption, and access management to safeguard sensitive data.
  • Configuring Azure Active Directory (AAD) for identity and access management, including user provisioning, single sign-on (SSO), role-based access control (RBAC), and multi-factor authentication (MFA).
  • Setting up and managing Azure Virtual Networks (VNets), subnets, VPN gateways, and ExpressRoute connections to establish secure connectivity between on-premises data centers and Azure cloud resources.
  • Implementing Azure monitoring solutions such as Azure Monitor, Azure Security Center, and Azure Log Analytics to track performance, detect security threats, and ensure operational efficiency. Configuring alerts and dashboards for proactive monitoring.
  • Developing automation scripts and templates using tools like Azure Resource Manager (ARM) templates, PowerShell, Azure CLI, or Azure Automation to streamline deployment, configuration, and management tasks.
  • Designing and implementing disaster recovery (DR) solutions, backup strategies, and high availability architectures to ensure business continuity and minimize downtime for critical government services.
  • Optimizing Azure resource usage and costs by implementing cost management strategies, tagging resources, monitoring usage, and identifying opportunities for cost savings and efficiency improvements.
  • Collaborating with cross-functional teams including developers, system administrators, security specialists, and compliance officers to ensure alignment with organizational goals and requirements. Documenting architecture designs, configurations, and operational procedures for knowledge sharing and compliance purposes.
  • Providing training and knowledge transfer sessions to internal teams and stakeholders on Azure best practices, new features, and emerging technologies to promote adoption and skill development within the organization.
  • Liaising with Microsoft Azure support and other third-party vendors for technical support, issue resolution, and escalation management to ensure timely resolution of issues and optimal performance of Azure services in the government enterprise environment.

Education

  • Bachelor's degree in Computer Science, Information Technology, Engineering
  • Master's in Computer Science or Information Systems

Experience:

  • 5+ years experience working as a cloud engineer, systems engineer, or a similar role is essential.
  • Specific experience deploying and managing cloud solutions in Microsoft Azure is highly desirable, particularly in government or regulated environments.
  • Experience with other cloud platforms such as AWS or Google Cloud Platform may also be beneficial.
  • Experience working in government or highly regulated industries is advantageous due to familiarity with compliance requirements and security standards.

Tools/Technology:

  • Proficiency in Microsoft Azure services and technologies, including Azure Virtual Machines, Azure Active Directory, Azure Networking, Azure Storage, Azure Security Center, etc.
  • Strong understanding of cloud computing concepts such as Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS).
  • Knowledge of government compliance standards and regulations such as FedRAMP, FISMA, NIST, and DISA STIGs.
  • Familiarity with networking concepts such as VPNs, ExpressRoute, DNS, TCP/IP, and subnetting.
  • Proficiency in scripting and automation using tools like PowerShell, Azure CLI, ARM templates, or other scripting languages.
  • Understanding of identity and access management principles, including Azure Active Directory, RBAC, and SSO.
  • Experience with monitoring and logging tools for cloud environments such as Azure Monitor, Azure Security Center, and Azure Log Analytics.
  • Strong problem-solving skills and the ability to troubleshoot complex issues in cloud environments.
  • Excellent communication skills to collaborate with cross-functional teams, document designs, and present solutions to stakeholders.
  • Certifications such as Microsoft Certified: Azure Solutions Architect Expert, Microsoft Certified: Azure Administrator Associate, or other relevant Azure certifications demonstrate expertise in Azure cloud technologies.

Continuous Learning:

  • Given the rapidly evolving nature of cloud technologies, candidates should demonstrate a commitment to continuous learning and staying updated with the latest developments in Azure and cloud computing in general.
  • Participation in training programs, attending conferences, pursuing additional certifications, or engaging in self-directed learning through online resources can help candidates stay competitive in the field.

Required Skillsets:

Infrastructure as Code (IaC) and Secure Pipeline Release Process: Developing automation scripts and templates using tools like Azure Resource Manager (ARM) templates, PowerShell, Azure CLI, or Azure Automation to streamline deployment, configuration, and management tasks.

Entra ID: Configuring Azure Active Directory (AAD) for identity and access management, including user provisioning, single sign-on (SSO), role-based access control (RBAC), and multi-factor authentication (MFA).

Azure Infrastructure Services: Proficiency in designing and implementing Azure infrastructure components, including virtual networks, Azure Firewall, DNS, Express Route, storage accounts, virtual machines, and databases.

Azure Landing Zone Concepts and Principles: Understanding and experience with the Landing zone principals and design architecture.

Infrastructure as Code and Scripting: Strong understanding and experience with infrastructure as code (IaC) in Azure using Terraform. Scripting skills in Powershell, Python and Azure CLI

Pipelines and repos: Experience designing, creating, and maintaining pipelines and repos in GitHub.

Azure Governance: Knowledge of Azure governance frameworks, policies, and resource management best practices, including Azure Policy, Azure Blueprint, and Azure Resource Manager templates. Assigning rights and permissions using management groups, subscriptions and resource groups.

Azure Security and Compliance: Experience implementing security controls, compliance policies, and monitoring solutions in Azure environments, Azure Policy, Azure Monitor, and Sentinel.

Azure Virtual Desktop: Skilled in Azure Virtual Desktop including deployment, management, and optimization

Azure Data Platforms: Knowledge and experience related Azure SQL, Azure Cosmos DB, Databricks, and Fabric.

Authentication: Familiarity with Active Directory, Azure Active Directly, SAML, and OAuth

On-Prem to Cloud Migration: Experience migrating on prem systems including servers, apps, and storage into Azure.

Azure AI: Awareness of Azure AI and it s capabilities.