OneStream SoftwareRemote
Senior Cloud DevOps Engineer – FedRAMP, Advanced Networking, Azure
United States
Full Time
2 hours ago
$140,000 - $160,000 USD
No H1B
Key skills
AnsibleAWSAzureChefCloudFirewallsGoogle Cloud PlatformKubernetesMS SQL ServerOpenShiftPuppetPythonSQLTerraformBashPowerShellAmazon Web ServicesGCPGoogle CloudEKSAKSCloudFormationAzure DevOpsSQL ServerActive DirectoryIdentity ManagementGitGitHubBitbucketSource ControlSaaSJiraAgileWAFFirewall
About this role
Role Overview
- Lead the design, continuous monitoring, implementation, and security operations of Azure cloud solutions, ensuring they meet industry best practices and comply with FedRAMP High, IL4 requirements
- Lead team in developing modular Infrastructure-as-Code utilizing Terraform, PowerShell, ARM, Bicep, and YAML languages
- Lead projects of moderate complexity to completion
- Sustain a high level of reliability for key automated systems
- Leads teams to define, estimate, and implement requirements for new automations or services of moderate complexity needing development
- Stay up to date with the latest Azure and FedRAMP regulatory changes and industry trends, advising teams on potential impacts and necessary adjustments
- Update technical documentation, workflows, and knowledge base articles
- Provide feedback in pull requests and peer coding reviews
- Solid knowledge in focused areas of OneStream Software
- Participate in on-call rotation to support production systems
- Assist in efforts to debug the problems which arise in production
- Ability to mentor others in several technical areas
- Understanding practical use of FedRAMP/SOC controls to assist Compliance and Security teams.
Requirements
- BS/BA in computer science, engineering, or technology-related field (or equivalent work experience)
- 8+ years of cloud infrastructure experience
- 2+ years of compliance programs and security control sets such as NIST SP 800-53, FedRAMP High, IL4, as applied to cloud SaaS, PaaS, and IaaS environments
- Expert knowledge of: VNets/vWAN, subnets, UDRs, routing, peering
- ExpressRoute, VPN Gateway, Private Link/Endpoint
- Azure Firewall, NSG/ASG, WAF, Application Gateway, Web Application Firewalls
- Hands-on experience implementing network design and firewall configurations
- Hands on experience implementing IPv6 routing and strict egress filtering strategies
- Ability to translate DISA STIGs and NIST controls into enforceable network guardrails and evidence artifacts
- Advanced understanding of Infrastructure-As-Code concepts and tooling (Terraform, CloudFormation templates, Bicep or ARM templates) on Microsoft Azure, Amazon Web Services (AWS), or Google Cloud Platform (GCP)
- Deep knowledge of Configuration Management/Orchestration utilities such as Ansible, PowerShell DSC, Chef, and Puppet
- Advanced understanding of cloud concepts including elasticity, security, and identity management
- Well versed familiarity with Agile Development methodologies utilizing Jira or Azure DevOps Boards
- Strong understanding of Azure Kubernetes Services (AKS) with container-based deployment skills or other platforms such as OpenShift, GKS, EKS
- Proficient knowledge in Software Development Lifecycles
- 8+ years of hands-on experience with the following technologies, tools, and concepts: Automating processes using PowerShell, Bash, CLI, REST APIs, python, ARM Templates or other scripting languages
- Comfortable leveraging source control tools such as Git, BitBucket, or GitHub
- Microsoft Azure, Amazon Web Services (AWS) or Google Cloud (GCP)
- Microsoft Windows 11, Windows Server, IIS, Microsoft SQL Server, Active Directory.
Tech Stack
- Ansible
- AWS
- Azure
- Chef
- Cloud
- Firewalls
- Google Cloud Platform
- Kubernetes
- MS SQL Server
- OpenShift
- Puppet
- Python
- SQL
- Terraform
Benefits
- Vision
- Medical
- Life
- Dental
- 401K