Senior Azure Cloud Engineer

MTSI is currently seeing to hire a Senior Azure Cloud Engineer to join MTSI supporting our infrastructure Information Technology team.

This role is 100% remote, requires US Citizenship and must have the ability to obtain a Secret Clearance.

Your day-to-day responsibilities include serving as the Azure Government cloud engineer for the MTSI Software Development Platform. You will support platform users (engineering teams) with the effective, secure use of Azure services and capabilities within our Azure GovCloud tenant, with an emphasis on automation and repeatability. You will design, build, and maintain standardized Azure landing-zone patterns, Infrastructure as Code, and CI/CD-enabled automated deployments using GitLab CI to provision and operate platform services. You will also work directly with stakeholders to troubleshoot issues, analyze root causes, and provide effective technical solutions, while partnering closely with cybersecurity and platform teams to ensure secure configurations, continuous monitoring, and alerting, especially for insecure or non-compliant deployed resources.

How you will contribute to our National Security and Defense mission:

As a Senior Azure Cloud Engineer, you will design, implement, secure, and sustain Azure Government cloud capabilities that power the MTSI Development Platform. You will help ensure the development platform remains resilient, auditable, and compliant in a highly regulated environment by applying strong governance controls, secure-by-default deployment patterns, and continuous monitoring/alerting for both operational health and security posture. This role supports mission outcomes by enabling rapid, repeatable, and secure delivery of software capabilities in an Azure Government environment designed to meet demanding government compliance requirements

You’ll be a great fit for this role if:

• Are passionate about Azure cloud engineering, automation, and secure platform enablement
• Enjoy supporting and educating development teams on cloud services and best practices
• Communicate effectively and can switch rapidly between tasks and contexts
• Work well both independently and within large, multidisciplinary teams
• Can translate technical issues and solutions for broad team understanding
• Are self-driven, adaptable, and committed to continuous learning
  
  

Responsibilities

Your essential job functions will include but may not be limited to:

• Serve as a primary technical resource for Azure Government services, constraints, and implementation patterns in support of MTSI Development Platform objectives.
• Design, implement, and maintain Azure subscription architecture and governance (management groups, RBAC, identity integration, networking patterns, resource organization, and guardrails).
• Build and maintain automated provisioning and deployment workflows using CI/CD with GitLab CI including reusable templates and shared pipeline components.
• Develop and maintain Infrastructure as Code (IaC) artifacts and “golden path” deployment patterns for Azure services (e.g., Terraform, Bicep/ARM), including policy-as-code where applicable.
• Provide hands-on support to platform users: onboarding, troubleshooting deployments, resolving Azure service integration issues, and improving developer experience through standardization and automation.
• Implement and operate enterprise-scale secrets management for developers and pipelines using Azure Key Vault, including rotation patterns, least-privilege access, and auditable retrieval mechanisms.
• Secure Azure resources in a highly regulated environment by applying governance and security controls (e.g., Azure Policy initiatives/assignments, secure configuration baselines, network controls, identity hardening, and continuous compliance monitoring).
• Implement monitoring, logging, and alerting for the Development Platform within Azure, including security posture monitoring and alerting for insecure or non-compliant resources.
• Secure CI/CD pipelines and supply-chain workflows: enforce least privilege for runners and service principals, harden pipeline configurations, reduce secret exposure, and integrate secure secret retrieval patterns (Key Vault or equivalent).
• Partner with cybersecurity/IA stakeholders to implement and validate required controls and support audit evidence collection through automation and logging.
• Contribute to platform documentation (architecture, runbooks, user guides), operational procedures, and continuous improvement of platform reliability and security.
  
  

Qualifications Required

• 5+ years of combined professional experience as a Cloud, Platform, DevOps/DevSecOps, SRE, Infrastructure, or Security Engineer.
• Azure experience is a must-have, including substantial hands-on experience across a broad range of Azure services and capabilities (IaaS, PaaS, identity, networking, data, AI, security, observability), and the ability to rapidly support additional Azure services as platform needs evolve.
• Direct experience with Microsoft Azure Government (GovCloud) is strongly preferred; experience working in regulated Azure cloud environments is required.
• Proven experience building automated deployments using CI/CD with a Git-based platform; GitLab CI/CD experience strongly preferred.
• Demonstrated experience securing CI/CD pipelines and managing developer secrets at scale using Azure Key Vault (or equivalent secrets management patterns and tooling).
• Hands-on experience implementing governance guardrails and compliance monitoring (e.g., Azure Policy, role-based access control, secure configuration standards).
• Experience implementing cloud security posture monitoring and alerting.
• Experience with IaC tools such as Terraform and/or Bicep/ARM; experience with modular, reusable patterns and secure defaults.
• Experience with Azure monitoring/logging toolchains (Azure Monitor, Log Analytics, Application Insights) and designing actionable alerts/dashboards for platform operations and security.
• Proficiency with scripting/programming languages (e.g., PowerShell, Python, Bash) and interacting with Azure programmatically via the Azure CLI.
• Strong troubleshooting skills across cloud services, identity, networking, cost control and deployment automation stacks.
  
  

Education

Bachelor's degree in Cybersecurity, Computer Science, Computer Engineering, or related field.

Clearance Requirements

US Citizenship is required. Must be able to obtain and maintain a DoD Security Clearance.