Senior Cloud Engineer

We are seeking a highly skilled and experienced Senior Cloud Engineer to implement, optimize, and evolve Stellantis Financial Services’ Microsoft Azure cloud infrastructure. The ideal candidate brings deep hands-on Azure expertise, strong automation and DevOps skills, and a proven track record of delivering scalable, secure, and cost-effective cloud solutions. This role leads implementation efforts, mentors junior engineers, and ensures cloud infrastructure aligns with enterprise architecture standards, security policies, and business objectives. The Senior Cloud Engineer serves as a technical anchor for the infrastructure team, driving operational excellence and continuous improvement across hybrid and cloud-native environments.

• Design, Develop, and Implement Cloud Solutions – Lead the deployment and configuration of Azure infrastructure including virtual machines, storage, networking, containers, and platform services aligned to business requirements and enterprise architecture standards.
• Monitor, Troubleshoot, and Resolve Problems – Implement and support proactive monitoring solutions across Azure environments; perform root cause analysis for incidents and implement preventive measures to ensure availability and performance.
• Infrastructure as Code & Automation – Develop and maintain IaC pipelines using Terraform, Bicep, and ARM templates; automate provisioning, patching, and operational tasks using PowerShell, Python, .Net, Java, and Azure CLI.
• Azure DevOps & CI/CD – Establish and maintain CI/CD pipelines using Azure DevOps; integrate infrastructure deployment workflows with development release cycles to support agile delivery.
• Security & Compliance – Enforce Azure security best practices including Entra ID (Azure AD) RBAC, Microsoft Defender for Cloud, Key Vault, encryption at rest and in transit, and adherence to financial regulatory requirements (PCI-DSS, SOX, GLBA, FFIEC, SOC-2).
• Cost Optimization – Analyze Azure resource utilization and implement cost governance strategies including tagging, budget alerts, reserved capacity, and rightsizing recommendations.
• Hybrid & Cloud Networking – Design and manage Azure Virtual Networks, VPN Gateways, ExpressRoute connectivity, NSGs, Azure Firewall, Private Endpoints, and DNS to support hybrid on-premises integration.
• Backup, Recovery & Business Continuity – Implement and validate backup and disaster recovery solutions using Azure Backup, Azure Site Recovery, and Rubrik; ensure RPO/RTO targets are met.
• Document Technical Processes & Solutions – Maintain comprehensive documentation of cloud configurations, engineering designs, runbooks, and troubleshooting procedures to support team continuity.
• Team Leadership & Mentorship – Lead and mentor junior Cloud Engineers and Systems technicians; conduct code and design reviews; serve as an escalation point for complex Azure issues.
• Collaborate on Cross-Functional Projects – Partner with Application Development, Data Engineering, Security, and Architecture teams to deliver integrated Azure solutions that meet business objectives.
• Data Analytics & Performance Monitoring – Track and report on cloud infrastructure KPIs and SLAs; drive continuous improvement using performance data and emerging Azure capabilities.

• Strategic Thinking: Ability to align Azure cloud infrastructure with long-term business goals; drives cloud strategy contributions and roadmap input.
• Problem-Solving: Strong analytical and troubleshooting skills to resolve complex cloud infrastructure issues and incidents.
• Communication: Excellent verbal and written communication skills to convey technical concepts to non-technical stakeholders.
• Collaboration: Proven ability to work effectively with cross-functional teams, vendors, and business partners.
• Leadership: Demonstrated ability to lead infrastructure projects, mentor team members, and drive continuous improvement.
• Attention to Detail: Meticulous approach to designing, configuring, and documenting cloud infrastructure solutions.
• Innovation: Proactively evaluates and recommends emerging Azure capabilities to improve performance, security, and efficiency.

• Azure Cloud Platforms: Deep expertise in Azure compute (VMs, VMSS, AKS, Container Apps, Azure Functions), storage (Blob, Files, Managed Disks), networking (VNet, VPN Gateway, ExpressRoute, Azure Firewall, Front Door, APIM), and identity (Entra ID, Conditional Access, PIM).
• Infrastructure as Code: Minimum 3 years production experience with Terraform and Azure Bicep (ARM template literacy expected) in multi-environment, pipeline-driven workflows; demonstrated ability to design and operate reusable module libraries, manage remote state, detect and remediate drift, and enforce policy-as-code at scale. Candidates whose IaC experience is limited to one-off deployments or lab environments are not a fit for this role.
• Automation & Scripting: Advanced skills in PowerShell, Python, .Net, Java, and Azure CLI for cloud operations automation, including self-healing runbooks and Azure Automation.
• DevOps & CI/CD: Production experience designing and operating CI/CD pipelines in Azure DevOps Pipelines, GitHub Actions, and Azure Repos for infrastructure deployment workflows and release automation, including environment promotion strategies, approval gates, and pipeline credential management.
• Security & Compliance: Hands-on experience implementing and operating Microsoft Defender for Cloud, Microsoft Sentinel, Azure Key Vault, RBAC, Azure Policy, and Blueprints in an enterprise environment; must be able to diagnose a token acquisition failure across multiple services without guessing, with demonstrated fluency in OAuth 2.0 / OIDC flows, managed identities, service principals, and certificate lifecycle management; proven experience operating CSPM platforms and building infrastructure that satisfies auditors under financial regulatory frameworks (PCI-DSS, SOX, GLBA, FFIEC, SOC-2).
• Monitoring & Observability: Experience with Azure Monitor, Log Analytics Workspaces, Application Insights, and alerting for infrastructure health and SLA adherence; proficiency in KQL for writing log queries and telemetry analysis; experience building distributed tracing for containerized workloads.
• Virtualization & Containers: Proficiency operating Azure Kubernetes Service (AKS), Azure Container Apps, Docker containerization, and Azure Container Registry in production, including network integration, scaling behavior, registry management, and workload identity; operational exposure to Hyper-V and VMware in hybrid contexts.
• Hybrid Networking: Deep, production-grade experience with Azure ExpressRoute, VPN Gateways, Azure DNS (including private DNS zones and conditional forwarding), Private Link and Private Endpoints, NAT Gateway, and integration with on-premises network infrastructure; must be able to trace a request from a containerized workload through segmented networks across multiple DNS resolution layers and explain exactly where it broke.
• Backup & Disaster Recovery: Demonstrated experience with Azure Backup, Azure Site Recovery, Rubrik Cloud, and DR runbook testing to meet RPO/RTO objectives.
• Microsoft 365 & Collaboration Ecosystem: Demonstrated experience integrating Microsoft 365 services — Entra ID (SSO/MFA), SharePoint Online, and Teams — with Azure cloud infrastructure and enterprise identity controls.
• Project & Work Management: Proficiency with Azure DevOps Boards (ADO) for tracking infrastructure work items; experience with Monday.com for cross-team project coordination and reporting.
• Problem-Solving & Critical Thinking: Ability to analyze, troubleshoot, and develop solutions for complex cloud infrastructure challenges including performance bottlenecks and security incidents.

• Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
• Minimum of 5+ years of hands-on experience in cloud engineering with a focus on Microsoft Azure infrastructure.
• Proven experience in a Senior Cloud Engineer, Cloud Engineer, or IT Systems Engineer role in an enterprise environment.
• Prior experience in Financial Services, Auto Lending, or other regulated industries is a strong plus.
• Master’s Degree in STEM or Business Administration is a plus.
• Travel 0–10% as required on an as-needed basis.
• Must have reliable transportation and live within commutable distance to one of the following cities: Dallas, TX; Auburn Hills, MI; Atlanta, GA; Houston, TX.

Certifications:

• Microsoft Certified: Azure Administrator Associate (AZ-104) – Required
• Microsoft Certified: Azure Solutions Architect Expert (AZ-305) – Required
• Microsoft Certified: Azure Security Engineer Associate (AZ-500) – Preferred
• Microsoft Certified: DevOps Engineer Expert (AZ-400) – Preferred
• Microsoft Certified: Azure Network Engineer Associate (AZ-700) – Preferred
• Windows Server Hybrid Administrator Associate (AZ-800/AZ-801) – Preferred
• Microsoft Certified: Azure AI Engineer Associate – Nice to Have
• HashiCorp Terraform Associate – Nice to Have
• ITIL 4 Foundation – Nice to Have

• Experience with Azure Kubernetes Service (AKS), Helm charts, and container orchestration at scale.
• Hands-on experience operating and governing API management platforms (Azure APIM preferred; Apigee, Kong, or MuleSoft acceptable) at the infrastructure and configuration layer — not just consuming APIs — plus experience with Azure Service Bus, Azure Event Grid, and integration architecture patterns.
• Experience with Power Pages and Microsoft Entra External ID for partner/customer-facing portal infrastructure.
• Hands-on experience with Azure Arc for hybrid server management and policy enforcement.
• Knowledge of FinOps practices and Azure cost governance tooling (Azure Cost Management, Cloudability).
• Experience with SRE practices, AIOps, and AI-driven monitoring or anomaly detection.
• Exposure to GitHub Copilot or Azure OpenAI Service for infrastructure operational workflows.
• Experience in industries with high regulatory compliance requirements (PCI, SOX, GLBA, GDPR, FFIEC, SOC-2).
• Prior experience adopting IaC in brownfield environments, including import workflows, state manipulation, and reverse-engineering live infrastructure into code.
• Experience integrating ITSM platforms with DevOps pipelines to deliver governed, self-service cloud provisioning workflows.
• Experience with data platform infrastructure: cloud data warehouses, analytics platforms, or data lakehouses, particularly the networking and identity integration layers required to connect them securely to enterprise environments.

An applicant must be authorized to work in the United States to be eligible for this position. Stellantis Financial Services, Inc. will not sponsor applicants for work visas of any type for this position.