Sr Cloud Engineer

About Exostar

Exostar’s cloud-based platforms foster secure collaboration across Aerospace & Defense, Life Sciences, and other highly regulated industries. We help our customers build trust and accelerate operations through robust identity, access management, and data insights. Our solutions empower enterprises to make timely, informed decisions in a secure and compliant manner.

Job Overview

Are you passionate about building secure, scalable, and innovative cloud platforms? As a Senior Azure Cloud Engineer, you’ll architect, implement, and automate Azure solutions that enable digital transformation across regulated industries. You’ll operate at the intersection of infrastructure, security, automation, and AI—working hands-on with cutting-edge Azure services and driving best-in-class DevSecOps, compliance, and observability.

Responsibilities

Your day if you join us:

Azure Cloud Architecture & Engineering

• Design, deploy, and manage Azure-based environments at scale, leveraging services including Compute, Virtual Machines, App Services, AVD (Azure Virtual Desktop), Azure SQL, Cosmos DB, Blob/Table/Queue Storage, API Management, and serverless offerings (Azure Functions, Logic Apps, Event Grid, Service Bus).
• Architect solutions for security, scalability, cost optimization, and operational resilience using Infrastructure as Code (Terraform, Bicep).
• Automate provisioning, deployment, configuration, patching, and operations using CI/CD pipelines (Azure DevOps, GitHub Actions, YAML), scripting (PowerShell, Python, Bash), and REST API/CLI.
• Develop and maintain reusable modules, templates, and workflows to enable rapid and consistent cloud adoption.
• Champion infrastructure-as-code (IaC) and GitOps best practices.

Identity, Security & Compliance:

• Implement and manage Azure Entra ID (Azure AD), hybrid identity, B2B/B2C federation, SSO (SAML/OAuth2), SCIM, Conditional Access, RBAC/PBAC, and MFA.
• Develop and enforce cloud security posture using Azure Security Center, Defender for Cloud, Key Vault, Azure Policy (policy-as-code), and Azure Sentinel.
• Integrate FedRAMP, NIST, CMMC, and other regulatory frameworks, driving end-to-end compliance automation and audit readiness.
• Lead cloud vulnerability scanning, incident response, patch management, and secrets management.

Networking & Connectivity:

• Architect, configure, and monitor virtual networks (VNet), VPNs, NSG/ASG, ExpressRoute, peering, private endpoints, load balancers, firewalls, and DNS.
• Implement hybrid connectivity for seamless on-prem/cloud integration, supporting multi-tenant and cross-org architectures.

Observability & Operations

• Deploy and integrate monitoring and observability platforms (Azure Monitor, App Insights, Dynatrace, Log Analytics, custom dashboards).
• Automate health checks, performance tracking, SLO/SLA reporting, and alerting—including self-healing and proactive remediation.
• Develop custom metrics and operational analytics to support high-availability, auto-scaling, and resilient workloads.

DevOps, CI/CD & Process Automation

• Build, maintain, and enhance multi-stage CI/CD pipelines using Git, Azure DevOps, GitHub Actions, and YAML pipelines for both application and infrastructure deployments.
• Integrate automated testing, security scanning, compliance validation, and blue/green/canary deployment strategies.
• Champion DevSecOps and GitOps best practices, mentoring engineering teams and driving continuous improvement.

Collaboration, Community & Leadership:

• Serve as a subject matter expert, escalation point, and mentor for cloud, DevOps, and security topics across cross-functional teams.
• Communicate clearly with technical and non-technical stakeholders, translating requirements into actionable solutions.

Required Qualifications

You meet our “must haves” for this role if you have

• Bachelor’s degree in Computer Science, Engineering, IT, or related field (or equivalent professional experience)
• 8+ years of hands-on Azure cloud engineering/architecture experience
• Deep expertise in:
• Azure core services: Compute, Virtual Machines, AKS, App Services, AVD, Azure SQL, Cosmos DB, Blob/Table/Queue Storage, API Management, Functions, Logic Apps, Event Grid, Service Bus
• Identity, access, and compliance: Azure Entra ID (AD), SSO/SAML/OAuth, SCIM, Conditional Access, RBAC/PBAC, Key Vault, Azure Policy, Security Center, Defender, Sentinel
• Automation & IaC: Terraform, Bicep, ARM, Ansible, PowerShell, Python, Bash, Azure CLI, REST API, Git
• Networking: VNet, VPN, NSG/ASG, Load Balancer, ExpressRoute, DNS, Private Endpoints, Firewalls
• DevOps: Azure DevOps, GitHub, YAML pipelines, automated testing, security scanning, GitOps, blue/green and canary deployment strategies
• Observability: Azure Monitor, App Insights, Log Analytics, Dynatrace, custom dashboards
• Experience supporting high-compliance, regulated SaaS environments (FedRAMP, NIST, CMMC, etc.)
• Strong troubleshooting, incident response, and root cause analysis skills

• U.S. Citizens only- Due to customer requirements, U.S. Citizenship is required.  Ability to gain and maintain Trusted Role is required.

Preferred Qualifications

You are exactly who we are looking for if you:

AI/ML & Modern Engineering: Collaborate with software and data teams to embed AI-driven workflows, automate business processes, and support innovative initiatives. Utilize AI/ML for operational analytics, security threat detection, intelligent automation, and workflow optimization.

• Azure, Security, or DevOps certifications (AZ-305, AZ-500, AZ-400, Security+, etc.)
• Experience in B2B SaaS, Aerospace & Defense, Life Sciences, or Government sectors
• Familiarity with hybrid/multi-cloud (Azure Arc), cost management (FinOps), and right-sizing best practices
• Proven ability to lead, mentor, and build internal engineering communities

Remote Locations:

NC, GA, TX, NJ, WA, PA, IL, DC, MD, OH, FL, SC, CO, IN

Exostar’s cloud-based platforms create exclusive communities within the Aerospace and Defense, Life Sciences, and other highly regulated industries where members securely collaborate, share information, and operate compliantly. Within these communities we build trust. By analyzing community data, we provide insights and intelligence, enabling organizations to make better, timelier decisions, to mitigate risk, and operate more efficiently.

• We believe in employee development: we promote internally and provide training and educational assistance
• We provide a fun, engaged workplace, with social and community-building events
• We offer comprehensive benefits and flexible time off plans

Exostar is an Equal Opportunity Employment Employer.  The company provides equal employment opportunities to all applicants without regard to race, color, religion, sex, national origin, age, marital status, disability status or genetic information.  Exostar is committed to providing equal employment opportunities for all persons in all facets of employment including recruiting, hiring, compensation, promotion, training, benefits, transfers and working conditions.