Cloud Engineering Lead

Cloud Engineering Lead | Hedge Fund | $200k–$250k Base + Bonus + Profit Share

A globally respected institutional asset management firm headquartered in San Francisco is looking for a Cloud Engineering Lead to join their IT team at a pivotal moment in how they build and operate infrastructure. This is a hands‑on senior individual contributor role, not a manager pushing tickets. You will be responsible for designing, implementing, and evolving a multi‑cloud platform anchored in Azur
e, with production workloads in GCP and AWS. You'll own complex infrastructure from architecture through to delivery, and play a central role in shaping how the firm builds for its next chapter of growth. AI tools are first‑class collaborators here. If you're the kind of engineer who uses Claude Code, Git Hub Copilot, or similar LLM tooling as a genuine part of how you work and not just dabbles then this environment was built for you.

• Lead design and implementation of cloud infrastructure across Azure (primary), GCP, and AWS, using Terraform and infrastructure-as-code as the primary delivery mechanism
• Own and evolve the firm's Azure Landing Zone: hub/spoke networking, VWAN, Express Route, Azure Firewall policy, private endpoint architecture, and DNS
• Build and maintain shared platform services — Container Apps environments, ACR, Service Bus, Key Vault, managed identities — that internal development teams depend on
• Drive IaC quality across the module library: enforce standards, reduce duplication, implement automated testing, and manage Terraform Cloud work spaces and Git Ops pipelines via Azure Dev Ops
• Integrate AI engineering tools (Claude Code, Git Hub Copilot, Vertex AI, and similar) into daily workflows for architecture acceleration, code generation, documentation, and operational tooling
• Lead cloud migration and platform modernization initiatives, including application re-platforming to Linux/cloud‑native compute and legacy system decommissions
• Partner with cybersecurity on cloud security posture:
  Entra , Defender for Cloud, Conditional Access policies, MCAS/Defender for Cloud Apps, and IaC security controls
• Build and maintain operational tooling for infrastructure discovery, cost visibility, security posture, and cross‑cloud reporting
• Provide technical mentorship to team members on cloud engineering practices, IaC standards, and AI‑assisted development workflows
• Ensure cloud infrastructure supports compliance requirements for SEC, SOC 1/2, and NIST frameworks

• Bachelor's degree in Computer Science, Information Technology, Engineering, or equivalent experience required;
  Master's degree a plus
• 10+ years of hands‑on IT experience, with at least 5 years focused on cloud engineering at enterprise scale
• Deep Terraform expertise: writing production modules, managing Terraform Cloud work spaces, integrating with CI/CD pipelines, and enforcing standards across a team
• Strong Azure command across networking (VWAN, Express Route, Azure Firewall, Private Endpoints), compute (VMs, Container Apps, AKS), identity (Entra , RBAC, managed identities), and security (Defender for Cloud, Conditional Access, MCAS)
• Demonstrated, hands‑on experience using AI tools — Claude Code, Git Hub Copilot, or similar LLM‑based development tools — as a regular part of engineering and automation work; ability to discuss specific ways AI has changed how you deliver infrastructure
• Proficiency in Python and/or programming languages for infrastructure automation, operational tooling, and cross‑cloud scripting;
  Power Shell proficiency for Microsoft platform work
• Multi‑cloud fluency: GCP and/or AWS experience alongside primary Azure expertise
• Experience with Git Ops, Azure Dev Ops pipelines, self‑hosted agents, and container build/promotion patterns (ACR)
• Strong understanding of network security: zero‑trust architecture, private connectivity, Express Route, firewall policy design
• Experience in institutional asset management, financial services, or another similarly regulated industry strongly preferred
• Excellent written and verbal communication skills; comfortable driving technical decisions with both engineering peers and executive stakeholders
• Willingness to perform occasional after‑hours implementation or migration work as required