Key Responsibilities

Platform Operations & Advanced Support

Lead day‑to‑day L2 operations across Azure services (VMs, VNets, LB, App Services, AKS, Storage, Key Vault, SQL/MI, Backup/ASR).
Own incident triage and L2/L3 troubleshooting using Azure Monitor, Log Analytics, Application Insights, and Sentinel.
Perform root‑cause analysis (RCA), implement corrective/preventive actions, and update runbooks/SOPs.
Serve as the technical escalation point for junior engineers and operations teams.

Provisioning, Automation & Infrastructure Engineering

Develop and maintain IaC deployments (ARM/Bicep/Terraform), including reusable modules, standards, and CI/CD integrations.
Enhance Azure DevOps/GitHub Actions pipelines for automated builds, tests, deployments, and governance enforcement.
Manage hardened image baselines, VM extensions, diagnostics configurations, and OS lifecycle updates.
Contribute to engineering backlogs and drive improvements that reduce operational toil.

Governance, Compliance & Security Engineering

Implement and maintain enterprise policies using RBAC, PIM, Azure Policy, management groups, subscription standards, and identity controls via Entra ID.
Enforce tagging, naming, backup, and DR requirements across environments.
Support security operations (Defender for Cloud, vulnerability remediation, endpoint protection) and participate in audits and compliance reporting.
Maintain evidence for regulatory/governance requirements (baselines, patching, access reviews, cost attribution reports).

Networking & Connectivity Engineering

Support and troubleshoot advanced networking elements: VNets, subnets, NSGs, Azure Firewall, Private Endpoints, Application Gateway/WAF, and network diagnostics.
Assist in designing and maintaining hybrid connectivity (ExpressRoute, VPN, Private Link, and service endpoint architectures).
Validate configurations against landing zone and Cloud Adoption Framework (CAF) standards.

Cost, Performance & Optimization

Analyze resource utilization and recommend rightsizing, reserved instances, savings plans, and architecture efficiency improvements.
Perform performance deep‑dives (compute, storage, network) and contribute to capacity planning.
Provide optimization insights to product/application teams and drive continuous improvement cycles.

Collaboration & Continuous Improvement

Work closely with application, DevOps, security, and operations teams to meet SLAs and reduce repeat incidents.
Mentor junior engineers and help mature operational processes.
Produce high‑quality documentation, KB articles, automation scripts, and engineering standards.
Support cloud service onboarding and platform enablement for new workloads.

Required Qualifications & Skills

4-6 years of cloud/infrastructure/operations experience with strong hands‑on Azure expertise.
Deep understanding of Azure core services: VNets, NSGs, LB, VMs, Storage, Key Vault, IAM, monitoring, backup/DR.
Strong proficiency in PowerShell and/or Python for automation.
Practical experience with IaC (ARM/Bicep/Terraform) and Git‑based CI/CD workflows.
Solid understanding of Entra ID identity concepts, PIM, least privilege, and security baselines.
Hands‑on experience with log analytics (KQL), Sentinel, Defender for Cloud, and vulnerability remediation.
Proven troubleshooting skills across compute/storage/network/platform layers.
Familiarity with Azure landing zones/CAF, policy‑driven governance, subscription architecture.
Experience with containers/AKS, App Gateway/WAF, Private Link, ASR, and Azure Backup.
Understanding of cost management frameworks (tagging, budgeting, showback/chargeback).
Strong communication skills and ability to lead small technical initiatives.

Preferred Certifications