Basically an AWS Cloud Engineer. IaC, Kubernetes, etc. Engineering team – R&D lab environment strategy innovation. IaC, terraform AWS, Aure cloud native container orchestration. Kubernetes EKS rancher K8s CICD GitHub AWS code pipelines azure devops secrets management PKI HashiCorp vault any GitHub Copilot AI a big plus strong linux unix
This is a project-based engagement to support continuity of Enterprise Lab delivery during a period of planned team capacity change. The Assigned Personnel will execute against a defined delivery roadmap for Enterprise Lab OTSI s sandbox and strategic experimentation platform focusing on infrastructure build-out, self-service provisioning, and cloud governance.
Scope of Work:
o Enterprise Lab Infrastructure (AWS + Azure)
Maintain and extend Infrastructure-as-Code (IaC) patterns using Terraform for both AWS and Azure environments within the Enterprise Lab Zone.
Operate and evolve the Enterprise Lab management plane: EKS cluster configuration, GitLab CI/CD runners, ArgoCD deployments, Vault PKI, Traefik ingress, and AWS CodePipeline.
Resolve outstanding Azure/Entra billing and governance issues; bring Azure under the same unified governance model as AWS.
Maintain resource tagging compliance, cost visibility, and sandbox lifecycle controls (90%/100% cost thresholds) across both cloud providers.
o Self-Service Provisioning Pipeline (Phase 1)
Build and populate the Architecture Pattern Catalog: approved IaC patterns enabling users to provision sandbox environments without manual OTSI Engineering intervention.
Implement self-service cloud catalog to provision compute resources to sandbox environment(s).
Instrument and validate the Deployment Time SLA the time from session start to a provisioned environment targeting a threshold that makes 1-hour and 1-day lease durations frictionless for end users.
Contribute developer environment patterns to the catalog to expand the Enterprise Lab user base beyond infrastructure-only experiments.
o Git Persistence Model Operations
Operationalize the git persistence model: IaC patterns in approved experiment repositories, redeploy workflow documented and repeatable, session-start provisioning validated end-to-end.
Ensure all sandbox environments are fully reproducible from repository state; no persistent compute state assumed across lease cycles.
Support integration with GitHub Actions and the broader GitOps delivery pipeline used for Enterprise Lab experiment execution.
Document the redeploy workflow, catalog usage patterns, and environment architecture in the planned work management platform and experiment repositories.
- SKILL AND EXPERIENCE REQUIRED
o (3 5 years) Infrastructure-as-Code using Terraform, AWS CloudFormation/Ansible; provisioning and managing cloud resources across AWS and Azure.
o (3 5 years) Cloud-native container orchestration: Kubernetes (EKS preferred)/Rancher-k8s, including cluster operations, workload deployment, and project/namespace governance.
o (3 5 years) CI/CD pipeline development using tools such as GitHub Actions, AWS CodePipeline, GitLab CI, or Azure DevOps Pipelines.
o (2 3 years) GitOps delivery patterns using ArgoCD or equivalent; managing declarative application state from git repositories.
o (2 3 years) Secrets management and PKI: HashiCorp Vault configuration and operations / AWS KMS & Secrets Manager.
o (1 3 years) Observability and monitoring: Prometheus, Grafana, Elasticsearch, AWS CloudWatch/CloudTrail or equivalent enterprise logging and alerting tooling.
o Working knowledge of enterprise networking: ingress controllers (Traefik or equivalent), load balancers, security groups, and certificate-based authentication.
o Familiarity with GitHub Copilot or AI-assisted developer tooling integration within a CI/CD or developer environment context.