Senior Platform & Cloud Engineer
Design and secure, resilient cloud infrastructure (Azure, AWS, or GCP) including networking, compute, storage, and platform services. Develop Infrastructure-as-Code (IaC) solutions using Terraform, CloudFormation, or similar tools to standardize and automate environment provisioning. Design and implement robust identity and access strategies leveraging Azure AD / Entra ID, AWS IAM, or equivalent identity providers. Develop role-based access control (RBAC), least-privilege models, conditional access policies, MFA enforcement, and identity governance processes. Integrate authentication and authorization solutions using modern standards (OAuth2, OIDC, SAML, SCIM). Partner with IT and business teams to establish and maintain identity guardrails, identity lifecycle automation, and compliance controls. Support workload identities, service principals, managed identities, and secretless/cloud-native authentication patterns. Build automation and tooling to reduce operational overhead, streamline deployments, and improve reliability using PowerShell, Python, Go, or similar languages. Implement monitoring, observability, and logging frameworks to provide visibility across cloud platforms and identity services. Troubleshoot complex issues spanning IAM, cloud infrastructure, networking, and application integration. Embed identity-first security principles into platform design and daily operations. Manage cloud security posture, including identity hardening, privileged access, policy-as-code, and security scanning integrations. Collaborate with compliance teams to ensure adherence to regulatory standards such as SOC2, HIPAA, PCI, FedRamp, CMMC or ISO 27001. Conduct threat modeling and support remediation of identity and platform-related vulnerabilities. Serve as a subject-matter expert on identity and cloud architecture for engineering, security, and operations teams. Mentor junior engineers and help establish best practices for cloud identity management and platform operations. Drive cross-functional initiatives to modernize platform capabilities and improve developer experience. 5-10+ years in cloud engineering, platform engineering, or DevOps roles. Advanced experience with Azure AD / Entra ID, AWS IAM, or other enterprise identity platforms. Strong proficiency with Terraform, CI/CD pipelines, and automation tooling. Deep understanding of cloud networking, IAM security patterns, and zero-trust architecture. Practical experience configuring and managing Proofpoint Email Security. Familiarity with endpoint management and protection using SCCM, Intune, and Defender. Strong scripting skills in PowerShell, Python, Go, or Bash. Excellent communication, documentation, and problem-solving skills. Experience with CrowdStrike, Palo Alto Networks, CyberArk or Zscaler platforms a plus. Microsoft certifications (e.g., SC-200, MS-500, AZ-500). Exposure to detection and response workflows and security operations center processes. Strong problem-solving ability, curiosity, and willingness to learn new tools and techniques. Excellent verbal and written communication skills, with attention to detail in documentation. API integrations, PowerShell, and/or Python competency are highly desirable.
About the job
Apply for this position
Senior Platform & Cloud Engineer
Design and secure, resilient cloud infrastructure (Azure, AWS, or GCP) including networking, compute, storage, and platform services. Develop Infrastructure-as-Code (IaC) solutions using Terraform, CloudFormation, or similar tools to standardize and automate environment provisioning. Design and implement robust identity and access strategies leveraging Azure AD / Entra ID, AWS IAM, or equivalent identity providers. Develop role-based access control (RBAC), least-privilege models, conditional access policies, MFA enforcement, and identity governance processes. Integrate authentication and authorization solutions using modern standards (OAuth2, OIDC, SAML, SCIM). Partner with IT and business teams to establish and maintain identity guardrails, identity lifecycle automation, and compliance controls. Support workload identities, service principals, managed identities, and secretless/cloud-native authentication patterns. Build automation and tooling to reduce operational overhead, streamline deployments, and improve reliability using PowerShell, Python, Go, or similar languages. Implement monitoring, observability, and logging frameworks to provide visibility across cloud platforms and identity services. Troubleshoot complex issues spanning IAM, cloud infrastructure, networking, and application integration. Embed identity-first security principles into platform design and daily operations. Manage cloud security posture, including identity hardening, privileged access, policy-as-code, and security scanning integrations. Collaborate with compliance teams to ensure adherence to regulatory standards such as SOC2, HIPAA, PCI, FedRamp, CMMC or ISO 27001. Conduct threat modeling and support remediation of identity and platform-related vulnerabilities. Serve as a subject-matter expert on identity and cloud architecture for engineering, security, and operations teams. Mentor junior engineers and help establish best practices for cloud identity management and platform operations. Drive cross-functional initiatives to modernize platform capabilities and improve developer experience. 5-10+ years in cloud engineering, platform engineering, or DevOps roles. Advanced experience with Azure AD / Entra ID, AWS IAM, or other enterprise identity platforms. Strong proficiency with Terraform, CI/CD pipelines, and automation tooling. Deep understanding of cloud networking, IAM security patterns, and zero-trust architecture. Practical experience configuring and managing Proofpoint Email Security. Familiarity with endpoint management and protection using SCCM, Intune, and Defender. Strong scripting skills in PowerShell, Python, Go, or Bash. Excellent communication, documentation, and problem-solving skills. Experience with CrowdStrike, Palo Alto Networks, CyberArk or Zscaler platforms a plus. Microsoft certifications (e.g., SC-200, MS-500, AZ-500). Exposure to detection and response workflows and security operations center processes. Strong problem-solving ability, curiosity, and willingness to learn new tools and techniques. Excellent verbal and written communication skills, with attention to detail in documentation. API integrations, PowerShell, and/or Python competency are highly desirable.