Cloud Engineer

The Opportunity

As part of the Cloud Engineering team you will design implement and operate our Azure-based Kubernetes infrastructure (AKS) Cloud Development Environment (CDE) and CI/CD pipeline runners for application teams. You ensure that our cloud platform and developer services are secure scalable reliable and easy to use for application teams.

You independently build operate and maintain our cloud platform and underlying infrastructure designing secure and scalable environments to host CI/CD pipeline runners cloud-native workloads and developer services. You have experience with Kubernetes-based platforms and containerized workloads and you ensure reliability security and cost efficiency across these environments. You actively contribute to automation documentation platform standards and the continuous improvement of our developer experience.

You collaborate closely with Architecture Security Application and Operations teams to deliver robust cloud and platform solutions for application teams - working fluently in English with German being a plus.

• You design deploy and operate Azure Kubernetes Service (AKS) clusters as a shared platform for application teams ensuring scalability availability and security.

• You build and maintain infrastructure for CI/CD pipeline runners on AKS (Azure DevOps agents GitHub Actions runners) to enable automated deployments for application teams.

• You configure and manage AKS networking components including load balancer controllers DNS and certificates to provide secure and reliable connectivity for applications and developer services.

• You implement and operate monitoring logging and alerting for the AKS platform CI/CD pipeline runners and shared services ensuring transparency and operational readiness.

• You manage the AKS cluster lifecycle (upgrades scaling patching node pool management) ensuring minimal downtime and adherence to reliability and security standards.

• You provide guidance and best practices to application teams on running workloads on the platform (e.g. containerization standards resource requests/limits Helm charts or Kubernetes manifests) without being responsible for individual application deployments.

• You ensure compliance with security best practices on the platform level including RBAC secrets management image policies/scanning and other cloud-native security controls.

• You design and support backup and disaster recovery strategies for the AKS platform and critical shared components (e.g. configuration persistent volumes used by platform services).

• Bachelors or Masters degree in Computer Science Information Technology Software Engineering or a related field or equivalent practical experience in cloud/platform engineering.

• Practical experience operating Kubernetes in production ideally with Azure Kubernetes Service (AKS).

• Solid hands-on experience with Microsoft Azure (compute networking storage IAM).

• Strong knowledge of containers and Docker including image build registry usage and runtime considerations.

• Experience with Infrastructure as Code (e.g. Terraform Bicep ARM templates) for managing cloud resources.

• Experience operating CI/CD infrastructure (e.g. Azure DevOps GitHub Actions) and managing self-hosted pipeline runners/agents.

• Good understanding of cloud security concepts (identity & access management network security secrets management)

• Experience with monitoring logging and alerting tools (e.g. Prometheus/Grafana Azure Monitor Log AnalyticsFluentBit).

• Experience working in a Linux-based environment and with Git-based workflows.

• Relevant certifications are a plus (e.g. Microsoft Certified: Azure Administrator Azure DevOps Engineer Certified Kubernetes Administrator CKA).

• Proven track record in operating cloud and Kubernetes platforms in a professional environment.

• You are fluent (written and spoken) in English.

• Highly self-motivated and proactive team player with a strong sense of ownership a hands-on mentality and the ability to drive and manage change independently

• You have effective verbal and written communication skills.

• You are curious self-driven and motivated to learn/upskill across new technologies

• You are a Team player comfortable collaborating across countries and cultures

• In-depth experience with AKS platform design (node pools autoscaling upgrades cluster configuration).

• Experience with HelmKustomize or raw Kubernetes manifests to define platform components and shared services

• Experience with container image security and supply chain security (e.g. image scanning policies SBOM).

• Exposure toGitOpsconcepts and tooling (Argo CD)

#LI-BS1 #LI-Hybrid