Senior Cloud Engineer- Azure

Overview

We are seeking a Senior Cloud Engineer to lead the design, implementation, and governance of our Azure cloud environment landing zone. This role is ideal for a seasoned professional with deep expertise in Microsoft Azure, cloud governance, identity and access management, networking and with experience using infrastructure as code. You will play a critical role in ensuring our cloud environments are secure, scalable, and aligned with Microsoft’s Cloud Adoption Framework (CAF) while also accessible to product team adoption.

Location- Providence/West Greenwich, RI or Moncton, Canada. Must live in commutable distance.

Responsibilities

• Architect and manage Azure landing zones, subscriptions, and resource hierarchies.
• Design and enforce cloud governance frameworks, including policy management, tagging strategies, naming conventions, and cost controls.
• Implement and manage Microsoft Entra ID (Azure AD) for identity lifecycle, RBAC, Conditional Access, MFA, and SSO.
• Automate governance controls and remediation using Terraform, Azure Automation, and GitHub Actions.
• Monitor and audit identity access, ensuring least privilege principles and compliance with internal and external standards.
• Develop and maintain infrastructure as code using Terraform and GitHub workflows.
• Establish governance processes and administer the organizations GitHub Enterprise instance.
• Collaborate with DevOps, Security, and Compliance teams to ensure cloud solutions meet business and regulatory requirements.
• Implement and manage Azure Monitor, Log Analytics, and Cost Management for visibility and optimization.
• Lead incident response and root cause analysis for cloud-related issues.
• Maintain clear documentation of governance policies, procedures, and architectural decisions
• Stay current with Azure innovations and proactively recommend improvements.

Qualifications

Required 

• 5+ years of hands-on experience managing Microsoft Azure environments.
• Proven expertise in Azure governance, including Azure Policy, Blueprints, Management Groups, and RBAC.
• Strong proficiency with Terraform and GitHub for infrastructure automation and CI/CD.
• Deep understanding of Microsoft Entra ID, including identity protection, access reviews, and privileged identity management.
• Experience designing and managing Azure landing zones and enterprise-scale architectures.
• Familiarity with Microsoft’s Cloud Adoption Framework, especially the Governance, Manage, and Secure pillars.

Preferred Certifications

• Microsoft Certified: Azure Solutions Architect Expert
• Microsoft Certified: Azure Administrator Associate
• Microsoft Certified: Azure Security Engineer Associate
• Microsoft Certified: Azure Network Engineer Associate
• Microsoft Certified: Identity and Access Administrator Associate (SC-300)

Preferred Skills

• Experience with Azure Sentinel, Defender for Cloud, and Key Vault.
• Knowledge of DevOps practices, including CI/CD pipelines and automation.
• Familiarity with multi-cloud environments, especially:
• AWS: IAM, Organizations, Control Tower, CloudTrail, Config, and Cost Explorer.
• GCP: IAM, Resource Manager, Organization Policies, and Cloud Monitoring.
• Strong scripting skills (e.g., PowerShell, Bash, Python).
• Excellent communication, collaboration, and documentation skills.

Keys to Success

• Building collaborative relationships
• Decision making
• Drive results
• Foster innovation
• Personal energy
• Self-leadership

#LI-BK1