Azure Platform Engineer

<p>We are seeking a senior Azure Platform Engineer to lead design, deployment, and operation of production workloads on Azure Kubernetes Service (AKS). This role is critical for enabling scalable, secure microservices and accelerating time-to-market through repeatable AKS bootstrapping, CI/CD enablement, and platform automation.<br>The engineer will work hands-on across AKS cluster administration, deployment pipelines, security enforcement, observability, and automation templates. This is an opportunity to shape a Platform-as-a-Service offering, improve operational maturity, and drive GitOps-based delivery for event-driven microservices.</p> <p></p><p><br></p><b>Responsibilities</b><div> <ul> <li style="list-style-type: disc;">Design, deploy, and operate workloads on Azure Kubernetes Service (AKS) to meet security, resilience, and performance goals</li> <li style="list-style-type: disc;">Lead AKS bootstrapping, cluster/node/pod configuration, and operational support activities</li> <li style="list-style-type: disc;">Build automated deployment templates for customers to provision AKS instances</li> <li style="list-style-type: disc;">Implement and maintain CI/CD and GitHub build/release pipelines for Dev, Stage, and Production environments</li> <li style="list-style-type: disc;">Configure autoscaling (Horizontal Pod Autoscaler, Cluster Autoscaler) and integrate Azure Container Instance (ACI) where appropriate</li> <li style="list-style-type: disc;">Implement Pod security policies, node-to-node encryption, and enforce NIST-aligned security controls when deploying container images</li> <li style="list-style-type: disc;">Integrate AKS logs (application, event, cluster, user activity, diagnostics) into Azure Event Hub or Storage and enable real-time monitoring</li> <li style="list-style-type: disc;">Manage authentication and authorization for cluster access using managed identities, service principals, certificates, and secrets</li> <li style="list-style-type: disc;">Deploy and manage HTTPS Ingress controllers and TLS certificate management for Kubernetes services</li> <li style="list-style-type: disc;">Use governance and scanning tools to monitor images, runtime, vulnerabilities, registries, and hosts</li> </ul> </div><p><br></p><b>Requirements</b><div> <ul> <li style="list-style-type: disc;">3-4 years of hands-on container deployment experience on Azure AKS</li> <li style="list-style-type: disc;">7+ years working with microservices, with focus on event-based services, scalability, and security</li> <li style="list-style-type: disc;">4+ years of Azure engineering experience designing, developing, and deploying Azure cloud solutions</li> <li style="list-style-type: disc;">Proven experience developing and implementing AKS-hosted solutions and Kubernetes build pipelines</li> <li style="list-style-type: disc;">2+ years building automation/CD pipelines with Terraform and Flux following GitOps practices</li> <li style="list-style-type: disc;">Hands-on experience with Docker and Kubernetes concepts: pods, nodes, ConfigMaps, selectors, services</li> <li style="list-style-type: disc;">Experience deploying and configuring HPA, Cluster Autoscaler, and integrating Azure Container Instance (ACI)</li> <li style="list-style-type: disc;">Experience deploying Linux and/or Windows Kubernetes clusters from Azure CLI and using AKS for CI/CD runtime</li> <li style="list-style-type: disc;">Working knowledge of NIST security policies and standards, FedRAMP, CSA, or ISO cloud/container standards</li> <li style="list-style-type: disc;">Proficient with code versioning tools such as GitHub</li> <li style="list-style-type: disc;">Experience pulling images from private Azure Container Registry (ACR) and deploying to AKS</li> <li style="list-style-type: disc;">Familiarity with API standards (Swagger, REST) and database technologies mentioned (Azure SQL Server, MongoDb, PostgreSQL)</li> </ul> </div><p><br></p><b>Nice to have</b><div> <ul> <li style="list-style-type: disc;">Hands-on knowledge of Istio, Envoy, Helm, Kustomize, Flux, Crossplane</li> <li style="list-style-type: disc;">Experience with governance and security tools such as Arnica, Wiz, SonarQube</li> <li style="list-style-type: disc;">Familiarity with observability tools like Prometheus and Dynatrace</li> <li style="list-style-type: disc;">Experience with Kusto query language or integrating logs into Azure monitoring systems</li> <li style="list-style-type: disc;">Background working in Agile, Scrum, Kanban, or GitOps-based development lifecycles</li> <li style="list-style-type: disc;">Terraform scripting</li> <li style="list-style-type: disc;">YAML</li> <li style="list-style-type: disc;">Shell scripting for Azure CLI automation</li> </ul> </div><p><br></p><p></p>