Job Title: Cloud Engineer
Location: NYC, NY (5 Days onsite)
About the Role:
A private Equity Firm is seeking an Azure Cloud Engineer to provision and maintain the firm's Azure environment, build CI/CD pipelines, and deploy and manage web applications. This is a hands-on infrastructure and DevOps role requiring deep Azure expertise and a security-first mindset suited to a regulated financial services environment.
Cloud Infrastructure & Environment:
- Provision and manage Azure infrastructure using Terraform and/or Bicep across dev, staging, and production environments
- Design and maintain VNets, subnets, NSGs, private endpoints, hub-spoke topologies, Azure Firewall, and Application Gateway
- Manage Azure subscriptions, resource groups, tagging policies, and governance guardrails
- Handle DNS, SSL/TLS certificate lifecycle, and custom domain configurations for hosted applications
Web Application Deployment & Hosting:
- Deploy and manage web applications on Azure App Service, Azure Container Apps, and AKS
- Configure staging slots, blue-green deployments, and traffic routing for zero-downtime releases
- Manage application settings, environment variables, and Key Vault integration for secrets
- Configure Azure Front Door and Load Balancers for high availability and global routing
CI/CD Pipelines & DevOps:
- Build and maintain CI/CD pipelines using Azure DevOps Pipelines and/or GitHub Actions
- Manage container image builds, versioning, and multi-environment promotion via ACR
- Integrate SAST, dependency scanning, and secrets detection into pipeline workflows
- Maintain pipeline-as-code standards with reusable templates and shared pipeline libraries
Security, Identity & Compliance:
- Manage identity and access via Azure Entra ID, RBAC, Managed Identities, and Key Vault
- Implement audit logging, diagnostic settings, and Azure Policy to support SEC/FINRA requirements
- Enforce least-privilege access, network isolation, and DevSecOps best practices across all services
Monitoring, Operations & Cost Management:
- Set up monitoring, alerting, and dashboards using Azure Monitor, Log Analytics, and Application Insights
- Manage infrastructure cost tracking and optimization using Azure Cost Management and tagging
- Respond to infrastructure incidents, perform root cause analysis, and implement remediations
Collaboration & Documentation:
- Produce and maintain runbooks, deployment guides, and architecture documentation
- Support application developers with deployments, onboarding, and infrastructure troubleshooting
Required Qualifications:
- 5+ years of cloud infrastructure/DevOps experience with 3+ years focused on Azure
- Hands-on experience with Azure App Service, AKS, ACR, Virtual Networks, Application Gateway, and Azure Monitor
- Infrastructure-as-Code proficiency: Terraform and/or Bicep
- CI/CD pipeline experience: Azure DevOps Pipelines and/or GitHub Actions
- Container orchestration with Docker and Kubernetes (AKS)
- Azure identity and access management: Entra ID, RBAC, Managed Identities, Key Vault
- DevSecOps fundamentals: secrets management, SAST tooling, private endpoints, and secure pipeline design
- Manage API gateway controls, rate limiting, and cost monitoring for AI API integrations - specifically Anthropic Claude API and Azure OpenAI
Preferred Qualifications:
- Azure certifications: AZ-104, AZ-204, or AZ-305
- Experience with Azure API Management, Python (FastAPI/Flask), and PowerShell scripting
- Familiarity with Azure AI Foundry or Azure OpenAI services
- Prior experience in investment banking or regulated financial services
- Exposure to integrating LLM APIs in production environments - Anthropic Claude API and Azure OpenAI - including token cost management and basic observability
Never miss an opportunity! Create an alert based on the job you applied for.
