Senior Cloud Infrastructure Engineer

Job DescriptionJob DescriptionDescription:

Senior Cloud Infrastructure Engineer

Venesco LLC is looking for an Senior Cloud Infrastructure Engineer.

This role is responsible for designing and deploying Azure infrastructure that aligns with specific Microsoft best practices—including the Azure Well-Architected Framework, Zero Trust security, and least privilege access controls—to safeguard both modern and legacy applications. The candidate will design secure network architectures, deploy and access management controls, and enforce strong governance and compliance standards.

As the Senior Cloud Infrastructure Engineer you will:

RESPONSIBILITIES:

Infrastructure Deployment:

o Deploy and manage Azure resources using Microsoft’s Azure Well-Architected Framework as a guide.

o Support environments for both modern and legacy applications, ensuring scalable and secure deployments.

Networking & Security (Zero Trust Focus):

o Architect secure networks incorporating Zero Trust principles with network segmentation and conditional access.

o Implement specific best practices such as enabling Azure Firewall and enforcing secure VPN configurations (site-to-site and point-to-site).

o Use Entra to implement multi-factor authentication (MFA), role-based access control (RBAC), and least privilege access.

Governance & Compliance:

o Manage management groups and resource hierarchies to maintain proper governance, cost controls, and resource consistency.

Monitoring & Optimization:

o Integrate Azure Monitor, Log Analytics, and Security Center to ensure operational excellence and proactive security posture.

Collaboration & Documentation:

o Partner with DevOps teams to ensure that infrastructure supports CI/CD pipelines and automated workflows.

o Document network architectures, security models, and deployment procedures following Microsoft’s technical guidance.

Requirements:

MINIMUM SKILLS, EDUCATION AND EXPERIENCE

• Extensive experience with Azure infrastructure, networking, and security.
• Deep knowledge of Microsoft best practices including the Azure Well-Architected Framework, Zero Trust security, RBAC, and least privilege principles.
• Proven track record configuring VPNs, Azure Firewall, and network segmentation.
• Familiarity with legacy and modern application environments and migration strategies.
• Excellent communication skills and experience working in collaborative, cross-functional teams.

SKILLS, EDUCATION OR EXPERIENCE

• Experience with container orchestration (e.g., Azure Kubernetes Service) and serverless architectures.
• Familiarity with advanced security tools such as Azure Sentinel for threat detection and response.
• Expertise in hybrid cloud environments and integration with on-premises data centers.
• Strong scripting skills (e.g., PowerShell, Python) to automate routine tasks and deployments.
• Knowledge of cost optimization strategies in Azure, including reserved instances and budget management.
• Experience with compliance standards (e.g., ISO, NIST, GDPR) and implementing continuous compliance processes.

Venesco LLC, is an equal opportunity and affirmative action employer. Venesco is committed to administering all employment and personnel actions on the basis of merit and free of discrimination based on race, , , , , , , protected veteran status, or status as an individual with a . Consistent with this commitment, we are dedicated to the employment and advancement of qualified minorities, women, individuals with disabilities, protected veterans, persons of all backgrounds and religions according to their abilities.