Amazon Web Services (AWS), Authentication, Bash Scripting, Cloud Computing, Communication Skills, Continuous Deployment/Delivery, Continuous Integration, DevOps, Engineering, Firewalls, Git, GitHub, Government, Identity Data Management, Microsoft Windows Azure, Network Design, Network Routing, Performance Tuning/Optimization, Problem Solving Skills, Python Programming/Scripting Language, Scripting (Scripting Languages), Security Infrastructure, Software Engineering, Source Code/Configuration Management (SCM), System Operations, Technical Writing, U.S. National Institute of Standards and Technology (NIST), United States Citizen, United States Department of Defense (DoD), Windows PowerShell
Cloud Infrastructure Engineer (Terraform/Azure)
Location : US-based (Remote)
Citizenship : US Citizen required
Clearance : CJIS clearance may be required once candidate starts
Duration : 12 months (extension likely)
Schedule : Primarily 8:00am 5:00pm EST
Top required skills: Azure Cloud/Dev experience and Terraform are a must !
Role Overview
We are seeking a Cloud Infrastructure Engineer with deep expertise in Terraform and Infrastructure as Code (IaC) to design, build, and secure enterprise-scale cloud environments. This role blends software engineering principles with cloud infrastructure delivery, supporting highly regulated, security-first platforms primarily in Microsoft Azure.
Key Responsibilities
Infrastructure as Code & Automation
" Serve as the Terraform subject matter expert, designing highly modular, reusable Terraform codebases.
" Build and manage infrastructure as production-grade code with strong testing, versioning, and CI/CD practices.
" Integrate Terraform into Git-based workflows (GitHub, GitLab, Azure DevOps).
" Contribute to advanced IaC patterns including custom modules and providers.
Cloud Architecture & Landing Zones
" Design and implement Azure Landing Zones or equivalent cloud foundation frameworks.
" Support application migrations and greenfield builds with secure, scalable architectures.
" Maintain architecture diagrams and technical documentation.
Networking & Zero-Trust Security
" Design secure Azure networking (VNets, routing, firewalls, private endpoints).
" Enforce private connectivity only, no public access.
" Enable secure cross-VNet communication using zero-trust patterns.
"They need to have some degree of understanding on how cloud networking works "
Identity, Security & Compliance
" Implement Managed Identities and Entra ID RBAC.
" Enforce least-privilege access and security guardrails using Azure Policy.
" Eliminate secrets-based access patterns.
" Support regulated environments (FedRAMP / DoD experience a plus).
Kubernetes & Platform Engineering
" Design and support secure AKS environments.
" Implement workload identity and zero-trust authentication.
" Configure Kubernetes HA, scaling, and security controls.
Collaboration & Optimization
" Partner with DevOps, application, and security teams.
" Optimize cloud environments for performance, reliability, and cost.
Required Qualifications
" Expert-level Terraform experience (modules, state, CI/CD).
" Strong software engineering background.
" Deep Azure networking, identity, and security knowledge.
" Git-based version control proficiency.
" Strong problem-solving and communication skills.
Preferred Qualifications
" Experience with Azure Government Cloud (preferred) or AWS GovCloud
" Experience building Azure Landing Zones or AWS Control Tower style landing zone architectures
" Experience supporting government, defense, or highly regulated environments
" Kubernetes platform engineering experience.
" Familiarity with FedRAMP, NIST, or DoD frameworks.
" Scripting (Python, PowerShell, Bash).
" Cloud certifications or equivalent experience.
Certifications such as:
Azure (AZ-104, AZ-305, AZ-700, AZ-500)
AWS (Solutions Architect, SysOps, Security)
Equivalent hands-on experience will be considered in place of certification