Senior Infrastructure-as-Code; IaC Engineer – Multi-Cloud & Automatio

Overview

This role focuses on designing, implementing, and maintaining robust infrastructure-as-code (IaC) strategies and automation across multiple cloud and on-prem environments. The incumbent will develop reusable IaC blueprints, enforce governance, drive Git Ops practices, and ensure compliance with leading security and compliance frameworks.

• Define and implement an enterprise IaC strategy, standards, and governance frameworks.
• Build reusable IaC blueprints, modules, and templates.
• Establish Git Ops workflows, approval pipelines, and policy enforcement.
• Define environment lifecycle stages (Dev, QA, UAT, Prod).
• Design and implement IaC solutions across Azure, AWS, OCI, on‑prem VMware, Open Stack, and Bare Metal.
• Automate networking, compute, storage, Kubernetes, and security services.
• Implement cross‑cloud disaster recovery and high‑availability architectures.
• Develop advanced Terraform modules and reusable components.
• Manage remote state, state locking, and security controls.
• Implement Terragrunt structures for multi‑environment orchestration.
• Enable drift detection, policy validation, and automated remediation.
• Integrate Terraform with Vault, Key Vault, KMS, and secrets engines.
• Develop Ansible playbooks and automation pipelines.
• Automate Linux and Windows provisioning, patching, and hardening.
• Implement middleware and application configuration automation.
• Build end‑to‑end CI/CD pipelines for IaC deployments.
• Integrate tools such as Git Hub Actions, Azure Dev Ops, and Git Lab CI.
• Implement Git Ops workflows with ArgoCD and FluxCD.
• Enable automated testing, validation, and rollback mechanisms.
• Automate provisioning of AKS, EKS, OKE, and Open Shift clusters.
• Implement cluster lifecycle management, scaling, and upgrades.
• Deploy platform services for monitoring, logging, and security tools.
• Enable a full Git Ops lifecycle for Kubernetes environments.
• Automate network infrastructure (VPC, VNet, VCN, firewalls, load balancers).
• Implement Zero Trust and identity lifecycle automation.
• Enforce policy‑as‑code using OPA and Sentinel.
• Automate secrets management, encryption, and certificate rotation.
• Build automated IaC testing frameworks (linting, unit, integration tests).
• Integrate security tools such as Checkov, tfsec, Trivy, and Sonar Qube.
• Enforce compliance with CIS, NIST, and ISO standards.
• Implement automated validation and teardown processes.

• 5–10+ years of experience in cloud automation, platform engineering, or Dev Ops.
• Hands‑on experience with Terraform and multi‑cloud environments.
• Proven track record delivering production‑grade automation platforms.
• Proficiency in Terraform (mandatory) and Terragrunt.
• Strong infrastructure‑as‑code (IaC) skills.
• Multi‑cloud expertise (Azure, AWS, OCI).
• Robust automation and Dev Ops experience, including CI/CD pipelines with Azure Dev Ops, Git Hub, or Git Lab.
• Git Ops experience with ArgoCD or FluxCD.
• Configuration management using Ansible.
• Knowledge of cloud architecture and services across Azure, AWS, and OCI.
• Kubernetes expertise (AKS, EKS, OKE, Open Shift).
• Experience with landing zone automation.
• Security and governance knowledge, including policy‑as‑code (OPA, Sentinel), IAM, and secrets management (Vault, KMS).
• Familiarity with compliance frameworks such as CIS, NIST, and ISO.