Posted today
Secret
Senior Level Career (10+ yrs experience)
$185,000 - $200,000
No Traveling
IT - Security
Position Title: Senior Azure Government Cloud Engineer (IL5 | SRE & Data Solutions Architect)
Location: Remote, United States
End Client: Dept. of Commerce
Clearance Requirements: Active Secret Clearance (required)
Position Status: Full Time
Pay Rate: $185,000 to 200,000
________________________________________
Position Overview
We are seeking an experienced FSDS Azure Systems Administrator- SRE & Data Solutions Architect to support and maintain a Microsoft Azure Government (IL5) cloud environment. As a technical leader, this role ensures seamless integration of Azure services to meet mission objectives and modernize cloud operations, while reducing technical debt and fostering system resiliency. To design, implement, and maintain a highly secure, scalable, and efficient Microsoft Azure Government (IL5) cloud environment, supporting advanced data solutions, Site Reliability Engineering (SRE) practices, and compliance with DoD Cloud Computing SRG, NIST 800-53, and FedRAMP High standards. The position drives innovation through the adoption of AI/ML, DevOps, and Infrastructure as Code (IaC) techniques while ensuring cloud optimization, automation, and data security.
The ideal candidate has deep technical expertise in Azure Government environments, with a strong focus on regulatory compliance, cloud optimization, and advanced data solutions leveraging AI/ML. They excel in implementing SRE practices, Infrastructure as Code (IaC), and automation to drive scalability, resiliency, and operational efficiency while maintaining a robust security posture. As a collaborative leader, they foster innovation, mentor teams, and ensure seamless delivery of mission-critical cloud and data solutions.
Key Duties & Responsibilities
Expert Technical Leadership
• Deliver advanced expertise in Azure cloud technologies, Site Reliability Engineering (SRE) practices, and data solutions. This includes designing, building, and optimizing APIs, implementing robust identity and access management (IAM) systems, and establishing stringent data security protocols to protect sensitive information.
• Translate program and organizational visions into comprehensive technical architectures across Levels 0-3, leveraging tools like Microsoft Visio, Lucidchart, and Azure Architecture Center. Develop scalable, secure, and efficient solutions that meet mission-critical objectives.
• Architect and manage resilient Azure environments that emphasize high availability, disaster recovery, and performance optimization using tools such as Azure Monitor, Application Insights, and Log Analytics.
• Provide hands-on leadership and mentorship to teams, enabling seamless adoption and proper utilization of advanced Azure services, such as Azure Kubernetes Service (AKS), Azure Data Factory, Logic Apps, and Cosmos DB.
• Drive adoption of Infrastructure as Code (IaC) tools, such as Terraform, ARM templates, and Bicep, to automate deployment pipelines and enforce configuration consistency across environments.
• Implement and standardize DevOps practices utilizing Azure DevOps, GitHub Actions, and CI/CD pipelines to ensure rapid and reliable delivery of applications and updates.
• Lead efforts to optimize database performance in Azure SQL, PostgreSQL, and Cosmos DB environments, while ensuring efficient data structuring, warehousing, and analytics capabilities.
• Stay ahead of emerging trends in cloud computing, data engineering, and AI/ML to recommend and integrate innovative solutions into delivered systems.
• Conduct detailed technical training sessions and workshops to upskill team members on Azure services, DevOps best practices, and the latest technologies. Provide thought leadership by designing knowledge resources and playbooks that enable sustained technical excellence across projects.
Advanced Data Solutions & AI/ML Integration
• Design and implement data-centric solutions using Azure services such as Data Factory, Synapse Analytics, and Azure Data Lake.
• Support the integration of AI/ML workloads using Azure Machine Learning services, leveraging cloud optimization for scalable processing and analysis.
• Collaborate with data science and analytics teams to design, optimize, and operationalize modern data platforms in Azure.
• Drive the adoption of serverless computing and event-driven architectures for advanced data solutions.
Azure Cloud Infrastructure Operations
• Administer and maintain Azure Government IL5 environments across multiple subscriptions (Dev, Test, Stage, Prod).
• Monitor health, performance, and availability of Azure resources (e.g., VMs, VNets, App Services, Firewall).
• Manage and troubleshoot infrastructure components like VPN Gateway, Azure Firewall, Private Endpoints, and Bastion.
• Implement and maintain RBAC and least-privilege access models.
• Conduct VM size upgrades, OS upgrades, adjust infrastructure scaling, and optimization for data-processing workloads.
• Establish and maintain Service Level Indicators (SLIs), SLOs, and SLAs to ensure reliability, scalability, and performance.
• Implement chaos engineering practices to validate system reliability and resiliency.
Patch Management & System Maintenance
• Perform OS patching for Windows and Linux VMs using tools like Azure Update Manager.
• Ensure patch compliance with IL5/DoD DISA STIG requirements.
• Coordinate maintenance windows with stakeholders and perform system hardening tasks.
Backup & Disaster Recovery
• Configure and manage Azure Backup and Recovery Services Vaults.
• Ensure proper backup policies are applied and validate backups through disaster recovery testing.
• Maintain Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO).
• Implement techniques for cost optimization, including reserved instance analysis, Azure Advisor recommendations, and automated scaling.
• Monitor and forecast cloud cost expenditures for transparency and efficiency.
• Leverage tagging strategies for cost tracking, forecasting, and resource management.
• Analyze usage trends and implement Reserved Instances or Spot VMs where appropriate.
Identity & Access Management
• Manage users, groups, and service principals in Microsoft Entra ID.
• Implement RBAC across management groups, subscriptions, and resource groups.
• Manage Privileged Identity Management (PIM) roles and support Conditional Access policies.
• Integrate CBA and PIV-based authentication where required.
• Develop and enforce advanced Conditional Access policies based on real-time risk assessments and zero-trust principles.
• Implement features like access reviews, entitlement management, and identity governance for enhanced security posture.
Security & Compliance
• Support IL5 compliance aligned with DoD Cloud Computing SRG, NIST 800-53, and FedRAMP High requirements.
• Manage Microsoft Defender for Cloud recommendations and support vulnerability scanning (e.g., Tenable/Nessus).
• Assist with log aggregation, monitoring (Microsoft Sentinel), and Azure Monitor alerting configurations.
• Ensure alignment with government compliance mandates while balancing data-centric risks and security controls.
• Develop automation workflows to ensure rapid compliance adherence and audit readiness.
Automation & Infrastructure as Code & Reliability Engineering
• Support and troubleshoot Bicep, ARM, or Terraform deployments.
• Maintain CI/CD pipelines (e.g., GitLab) for infrastructure automation and deployments.
• Automate patching, onboarding, and configuration enforcement.
• Ensure adherence to naming conventions and tagging compliance.
• Expand automation to integrate advanced data pipeline deployments and AI/ML workflows.
• Optimize CI/CD processes to include testing, monitoring, and deploying AI models and data-centric workloads.
• Design and deploy self-healing workflows for increased system reliability and efficient incident recovery.
• Implement robust observability practices using Azure Monitor, Log Analytics, and Application Insights to ensure end-to-end visibility.
Required Qualifications
Education: Bachelor’s degree in Computer Science, Engineering, or a related field (advanced degree preferred).
Clearance: Active Secret Clearance is required.
• Strong proficiency managing data-centric Azure environments, including workload optimization for AI/ML and advanced data solutions.
• Familiarity with frameworks and tools supporting data ingestion, transformation, and reporting (e.g., Azure Data Factory, Power BI, Databricks).
• Strong experience managing Azure Government environments (IL5 or equivalent), including secure cloud operations.
• Knowledge of Mission Landing Zones (MLZ) architectures.
• Experience with cloud resource monitoring, backup/recovery, and scaling operations in Azure.
Site Reliability Engineering Knowledge:
• Demonstrated understanding of SLOs, SLAs, and SLIs to enhance operational excellence and service reliability.
• Experience with chaos engineering practices to validate system resiliency.
• Proven ability to design self-healing architectures and automate incident recovery.
Security Knowledge:
• Familiarity with DoD SRG, NIST 800-53, FedRAMP High, and DISA STIG requirements.
• Experience with vulnerability scanning tools and security monitoring solutions, such as Microsoft Sentinel.
Tools & Automation:
• Experience embedding automation with data solutions and pipelines while optimizing CO/CD for AI/ML
• Proficiency with Infrastructure as Code tools (Bicep, ARM, Terraform) and CI/CD pipeline management (e.g., GitLab).
• Ability to automate configurations and perform lifecycle management tasks.
Identity Management:
• Hands-on experience with Entra ID, RBAC, Privileged Identity Management (PIM), and Conditional Access policies.
Location: Remote, United States
End Client: Dept. of Commerce
Clearance Requirements: Active Secret Clearance (required)
Position Status: Full Time
Pay Rate: $185,000 to 200,000
________________________________________
Position Overview
We are seeking an experienced FSDS Azure Systems Administrator- SRE & Data Solutions Architect to support and maintain a Microsoft Azure Government (IL5) cloud environment. As a technical leader, this role ensures seamless integration of Azure services to meet mission objectives and modernize cloud operations, while reducing technical debt and fostering system resiliency. To design, implement, and maintain a highly secure, scalable, and efficient Microsoft Azure Government (IL5) cloud environment, supporting advanced data solutions, Site Reliability Engineering (SRE) practices, and compliance with DoD Cloud Computing SRG, NIST 800-53, and FedRAMP High standards. The position drives innovation through the adoption of AI/ML, DevOps, and Infrastructure as Code (IaC) techniques while ensuring cloud optimization, automation, and data security.
The ideal candidate has deep technical expertise in Azure Government environments, with a strong focus on regulatory compliance, cloud optimization, and advanced data solutions leveraging AI/ML. They excel in implementing SRE practices, Infrastructure as Code (IaC), and automation to drive scalability, resiliency, and operational efficiency while maintaining a robust security posture. As a collaborative leader, they foster innovation, mentor teams, and ensure seamless delivery of mission-critical cloud and data solutions.
Key Duties & Responsibilities
Expert Technical Leadership
• Deliver advanced expertise in Azure cloud technologies, Site Reliability Engineering (SRE) practices, and data solutions. This includes designing, building, and optimizing APIs, implementing robust identity and access management (IAM) systems, and establishing stringent data security protocols to protect sensitive information.
• Translate program and organizational visions into comprehensive technical architectures across Levels 0-3, leveraging tools like Microsoft Visio, Lucidchart, and Azure Architecture Center. Develop scalable, secure, and efficient solutions that meet mission-critical objectives.
• Architect and manage resilient Azure environments that emphasize high availability, disaster recovery, and performance optimization using tools such as Azure Monitor, Application Insights, and Log Analytics.
• Provide hands-on leadership and mentorship to teams, enabling seamless adoption and proper utilization of advanced Azure services, such as Azure Kubernetes Service (AKS), Azure Data Factory, Logic Apps, and Cosmos DB.
• Drive adoption of Infrastructure as Code (IaC) tools, such as Terraform, ARM templates, and Bicep, to automate deployment pipelines and enforce configuration consistency across environments.
• Implement and standardize DevOps practices utilizing Azure DevOps, GitHub Actions, and CI/CD pipelines to ensure rapid and reliable delivery of applications and updates.
• Lead efforts to optimize database performance in Azure SQL, PostgreSQL, and Cosmos DB environments, while ensuring efficient data structuring, warehousing, and analytics capabilities.
• Stay ahead of emerging trends in cloud computing, data engineering, and AI/ML to recommend and integrate innovative solutions into delivered systems.
• Conduct detailed technical training sessions and workshops to upskill team members on Azure services, DevOps best practices, and the latest technologies. Provide thought leadership by designing knowledge resources and playbooks that enable sustained technical excellence across projects.
Advanced Data Solutions & AI/ML Integration
• Design and implement data-centric solutions using Azure services such as Data Factory, Synapse Analytics, and Azure Data Lake.
• Support the integration of AI/ML workloads using Azure Machine Learning services, leveraging cloud optimization for scalable processing and analysis.
• Collaborate with data science and analytics teams to design, optimize, and operationalize modern data platforms in Azure.
• Drive the adoption of serverless computing and event-driven architectures for advanced data solutions.
Azure Cloud Infrastructure Operations
• Administer and maintain Azure Government IL5 environments across multiple subscriptions (Dev, Test, Stage, Prod).
• Monitor health, performance, and availability of Azure resources (e.g., VMs, VNets, App Services, Firewall).
• Manage and troubleshoot infrastructure components like VPN Gateway, Azure Firewall, Private Endpoints, and Bastion.
• Implement and maintain RBAC and least-privilege access models.
• Conduct VM size upgrades, OS upgrades, adjust infrastructure scaling, and optimization for data-processing workloads.
• Establish and maintain Service Level Indicators (SLIs), SLOs, and SLAs to ensure reliability, scalability, and performance.
• Implement chaos engineering practices to validate system reliability and resiliency.
Patch Management & System Maintenance
• Perform OS patching for Windows and Linux VMs using tools like Azure Update Manager.
• Ensure patch compliance with IL5/DoD DISA STIG requirements.
• Coordinate maintenance windows with stakeholders and perform system hardening tasks.
Backup & Disaster Recovery
• Configure and manage Azure Backup and Recovery Services Vaults.
• Ensure proper backup policies are applied and validate backups through disaster recovery testing.
• Maintain Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO).
• Implement techniques for cost optimization, including reserved instance analysis, Azure Advisor recommendations, and automated scaling.
• Monitor and forecast cloud cost expenditures for transparency and efficiency.
• Leverage tagging strategies for cost tracking, forecasting, and resource management.
• Analyze usage trends and implement Reserved Instances or Spot VMs where appropriate.
Identity & Access Management
• Manage users, groups, and service principals in Microsoft Entra ID.
• Implement RBAC across management groups, subscriptions, and resource groups.
• Manage Privileged Identity Management (PIM) roles and support Conditional Access policies.
• Integrate CBA and PIV-based authentication where required.
• Develop and enforce advanced Conditional Access policies based on real-time risk assessments and zero-trust principles.
• Implement features like access reviews, entitlement management, and identity governance for enhanced security posture.
Security & Compliance
• Support IL5 compliance aligned with DoD Cloud Computing SRG, NIST 800-53, and FedRAMP High requirements.
• Manage Microsoft Defender for Cloud recommendations and support vulnerability scanning (e.g., Tenable/Nessus).
• Assist with log aggregation, monitoring (Microsoft Sentinel), and Azure Monitor alerting configurations.
• Ensure alignment with government compliance mandates while balancing data-centric risks and security controls.
• Develop automation workflows to ensure rapid compliance adherence and audit readiness.
Automation & Infrastructure as Code & Reliability Engineering
• Support and troubleshoot Bicep, ARM, or Terraform deployments.
• Maintain CI/CD pipelines (e.g., GitLab) for infrastructure automation and deployments.
• Automate patching, onboarding, and configuration enforcement.
• Ensure adherence to naming conventions and tagging compliance.
• Expand automation to integrate advanced data pipeline deployments and AI/ML workflows.
• Optimize CI/CD processes to include testing, monitoring, and deploying AI models and data-centric workloads.
• Design and deploy self-healing workflows for increased system reliability and efficient incident recovery.
• Implement robust observability practices using Azure Monitor, Log Analytics, and Application Insights to ensure end-to-end visibility.
Required Qualifications
Education: Bachelor’s degree in Computer Science, Engineering, or a related field (advanced degree preferred).
Clearance: Active Secret Clearance is required.
• Strong proficiency managing data-centric Azure environments, including workload optimization for AI/ML and advanced data solutions.
• Familiarity with frameworks and tools supporting data ingestion, transformation, and reporting (e.g., Azure Data Factory, Power BI, Databricks).
• Strong experience managing Azure Government environments (IL5 or equivalent), including secure cloud operations.
• Knowledge of Mission Landing Zones (MLZ) architectures.
• Experience with cloud resource monitoring, backup/recovery, and scaling operations in Azure.
Site Reliability Engineering Knowledge:
• Demonstrated understanding of SLOs, SLAs, and SLIs to enhance operational excellence and service reliability.
• Experience with chaos engineering practices to validate system resiliency.
• Proven ability to design self-healing architectures and automate incident recovery.
Security Knowledge:
• Familiarity with DoD SRG, NIST 800-53, FedRAMP High, and DISA STIG requirements.
• Experience with vulnerability scanning tools and security monitoring solutions, such as Microsoft Sentinel.
Tools & Automation:
• Experience embedding automation with data solutions and pipelines while optimizing CO/CD for AI/ML
• Proficiency with Infrastructure as Code tools (Bicep, ARM, Terraform) and CI/CD pipeline management (e.g., GitLab).
• Ability to automate configurations and perform lifecycle management tasks.
Identity Management:
• Hands-on experience with Entra ID, RBAC, Privileged Identity Management (PIM), and Conditional Access policies.
group id: 10119426
