Stefanini Group is looking for a Kubernetes Engineer for a globally recognized company! For interested applicants, click the apply button or you may reach out Micah Andres at / for faster processing. Thank you!
We are seeking an experienced Kubernetes Engineer/Administrator. This role focuses on managing and scaling our enterprise-grade Azure Kubernetes Service (AKS) infrastructure. You will be responsible for designing, implementing, and maintaining production Kubernetes clusters that support critical enterprise workloads across multiple Azure regions.
Primary ResponsibilitiesAzure Kubernetes Service (AKS) ManagementDesign, deploy, and manage enterprise-scale AKS clusters across multiple Azure regionsImplement and maintain private AKS clusters with advanced networking configurationsConfigure and manage customer-managed encryption keys (CMK) for cluster disk encryptionImplement blue/green deployment strategies for zero-downtime cluster upgradesManage AKS cluster lifecycle including upgrades, node pool scaling, and disaster recoveryOptimize cluster performance, cost, and resource utilizationImplement AKS Fleet Manager for multi-cluster management and orchestrationConfigure AKS Automatic for simplified cluster operations and auto-scalingManage AKS Managed Namespaces for improved multi-tenancy and resource isolation
Security & ComplianceImplement and maintain private networking architectures with Azure Private EndpointsConfigure and manage Workload Identity (OIDC) and user-assigned managed identitiesIntegrate Azure Policy for governance, compliance, and security enforcementImplement Kubernetes RBAC and Azure RBAC integrationManage secrets integration with Azure Key Vault using CSI driversEnsure secure communication between AKS and Azure PaaS servicesImplement network policies and pod security standards
Service Mesh & Advanced NetworkingDeploy and manage Linkerd service mesh for secure service-to-service communicationImplement mTLS between services with automatic certificate rotationConfigure traffic splitting, load balancing, and observability with LinkerdTroubleshoot service mesh networking and performance issuesIntegrate service mesh metrics with Azure Monitor
Infrastructure as Code (IaC)Develop and maintain Terraform modules for AKS and supporting Azure infrastructureBuild reusable, production-ready Terraform patterns following Azure best practicesImplement infrastructure automation and GitOps workflowsManage Terraform state, version control, and module lifecycleCreate and maintain comprehensive documentation for infrastructure patterns
GitOps & CI/CDDesign and implement GitOps workflows using ArgoCD for application deploymentsBuild and maintain CI/CD pipelines using GitHub Actions for Kubernetes workloadsIntegrate AKS with Azure Container Registry (ACR) for container image managementImplement automated testing and validation for infrastructure and application changesManage deployment strategies (rolling updates, blue/green, canary)Maintain GitHub Actions workflows for infrastructure provisioning and testing
Azure Platform IntegrationIntegrate AKS with Azure services includingConfigure and maintain private endpoints for all Azure servicesImplement VNet integration and subnet delegation patternsDesign and implement service connectivity across Azure regions
Monitoring, Observability & OperationsImplement comprehensive monitoring and alerting with Azure MonitorConfigure Log Analytics workspaces and integrate with AKSBuild dashboards and alerts for cluster health, performance, and securityLeverage Linkerd metrics and distributed tracing for service observabilityTroubleshoot complex cluster, networking, and application issuesConduct capacity planning and cost optimizationParticipate in on-call rotation for production supportPerform post-incident analysis and implement preventive measures
Required QualificationsTechnical Skills - Azure & Kubernetes5+ years of hands-on Kubernetes experience in production environments2+ years of Azure Kubernetes Service (AKS) experience requiredStrong Terraform expertise with proven ability to build reusable, production-ready modulesDeep understanding of Kubernetes architecture, networking, storage, and securityExperience with private AKS clusters and Azure Private Link/Private EndpointsProficiency with Azure networking: VNets, subnets, NSGs, private DNS zones, VNet peeringStrong understanding of Azure managed identities, Workload Identity, and RBACExperience with Azure Key Vault integration (CSI driver, disk encryption sets)Hands-on experience with customer-managed encryption keys in AzureExperience with Azure Container Registry including geo-replication and vulnerability scanningKnowledge of AKS advanced features (Fleet Manager, AKS Automatic, Managed Namespaces) isa plus
Infrastructure as Code & AutomationAdvanced Terraform skills with module development experienceGit version control and branching strategies (GitHub)GitOps tools: ArgoCDGitHub Actions for CI/CD pipelinesInfrastructure testing and validation practices
Platform & ToolsAzure CLI and Azure PowerShellkubectl, helm, kustomizeLinux system administrationScripting: Bash, Python, or PowerShellContainer technologies: Docker, containerdGitHub workflows and Actions
Soft SkillsStrong analytical and troubleshooting abilitiesExcellent documentation skills with focus on knowledge sharingCollaborative team player with mentoring capabilitiesEffective communication for both technical and business audiencesSelf-motivated with ability to manage complex projects
Preferred QualificationsAdvanced Kubernetes & Cloud SkillsCertified Kubernetes Administrator (CKA) or Certified Kubernetes Security Specialist (CKS)Experience with Linkerd service mesh - deployment, configuration, and troubleshootingExperience with AKS Fleet Manager for multi-cluster orchestrationFamiliarity with AKS Automatic and managed namespace patternsExperience with Kubernetes operators and Custom Resource Definitions (CRDs)Service mesh implementations (Linkerd preferred; Istio, Open Service Mesh)Advanced CNI configurations (Azure CNI, Calico, Cilium)Multi-cluster management and federationExperience with other cloud platforms (Google Cloud Platform GKE, AWS EKS) is a plus
Azure CertificationsAzure Solutions Architect Expert (AZ-305)Azure Security Engineer Associate (AZ-500)Azure Administrator Associate (AZ-104)
Platform Engineering ExperienceBuilding internal developer platforms on KubernetesPolicy-as-code implementation (Azure Policy, OPA, Kyverno)Cost optimization and FinOps practices for KubernetesChaos engineering and reliability testingMulti-region disaster recovery patterns
Required QualificationsTechnical Skills - Azure & Kubernetes5+ years of hands-on Kubernetes experience in production environments2+ years of Azure Kubernetes Service (AKS) experience requiredStrong Terraform expertise with proven ability to build reusable, production-ready modulesDeep understanding of Kubernetes architecture, networking, storage, and securityExperience with private AKS clusters and Azure Private Link/Private EndpointsProficiency with Azure networking: VNets, subnets, NSGs, private DNS zones, VNet peeringStrong understanding of Azure managed identities, Workload Identity, and RBACExperience with Azure Key Vault integration (CSI driver, disk encryption sets)Hands-on experience with customer-managed encryption keys in AzureExperience with Azure Container Registry including geo-replication and vulnerability scanningKnowledge of AKS advanced features (Fleet Manager, AKS Automatic, Managed Namespaces) is a plus
#LI-MA1
#LI-HYBRID
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
- Dice Id: 10106616
- Position Id: 63892
- Posted 23 hours ago
Never miss an opportunity! Create an alert based on the job you applied for.
