HM Note: This onsite contract role is in office every day at the manager's discretion. Candidate resumes must include first and last name, email and telephone contact information. Candidates can work in client offices at 5700 Yonge Street Toronto, 222 Jarvis Street Toronto, 300 Water St Peterborough, 1000 Southgate Drive Guelph, 301 ST Paul Street St Cathrines and 200 First Avenue North Bay. This engagement commences April 2025 until March 2027

Description

Deliverables:

• Provide expert support for the GO public cloud environments, primarily Azure and AWS.
• Design secure, scalable solutions, assist with complex migrations from on-premise infrastructure, and develop infrastructure-as-code pipelines to automate provisioning.
• Support monitoring and reporting to improve visibility into performance and compliance.
• Familiarity with Identity and Access Management (IAM) and ITS service integration will help ensure secure access across platforms.
• Expertise will be key to sustaining operations and advancing cloud capabilities, including AI integration.

Key Responsibilities:

• Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code.
• Integrate and secure cloud services to support application modernization and platform resilience.
• Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI.
• Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture.
• Contribute to product planning, service documentation, process optimization, and internal communication strategies.

Skills

Experience and Skill Set Requirements

Key Responsibilities:

• Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code.
• Integrate and secure cloud services to support application modernization and platform resilience.
• Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI.
• Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture.
• Contribute to product planning, service documentation, process optimization, and internal communication strategies.

Evaluation Breakdown

1. Deploy and Design - 25%

Parameters: The candidate must have advanced design and implementation knowledge for Azure or AWS

• Compute: Azure Virtual Machines, AKS, App Services
• Networking: VNet, NSG, Load Balancer, Front Door, ExpressRoute
• Storage: Blob, Files, Data Lake
• Identity & Security: Azure AD, RBAC, Key Vault, Policies
• Monitoring: Azure Monitor, Log Analytics
• Automation: ARM Templates, Bicep, Terraform
• Data Services: Azure SQL, Synapse, Cosmos DB
• CI/CD: Azure DevOps, GitHub Actions
• Cost Management: Azure Cost Analysis, Reservations
• Data skills for AI familiar with data bricks, fabric
• Know ledge vector embeddings, chunking strategies
• LLM integration experience and knowledge

Or

• Compute: EC2, ECS, EKS, Lambda
• Networking: VPC, Route 53, ALB/NLB, Direct Connect
• Storage: S3, EBS, EFS, Glacier
• Identity & Security: IAM, KMS, Secrets Manager
• Monitoring: CloudWatch, X-Ray
• Automation: CloudFormation, Terraform
• Data Services: RDS, DynamoDB, Redshift
• CI/CD: CodePipeline, CodeBuild
• Data skills for AI experience with data bricks know ledge vector embeddings
• LLM integration experience and knowledge

Nice to have:

• GCP and OCI

• Compute Engine (VMs), Google Kubernetes Engine (GKE)

• VPC design, subnets, firewall rules, Cloud Load Balancing

• Hybrid connectivity (Cloud VPN, Interconnect)

• Cloud Storage (buckets, lifecycle policies)

• BigQuery (data warehouse), Cloud SQL, Firestore

• Dataflow and Pub/Sub for streaming and ETL

• Load Balancer and FastConnect for hybrid connectivity

• OCI Identity Domains and IAM policies

• Dynamic groups and resource principals

• Cost Management: AWS Cost Explorer, Savings Plan

2. Security - 25%

Parameters:

• Microsoft Entra

• Entra Permissions Management (CIEM)

• Entra Verified ID (Decentralized Identity)

• Advanced governance with Identity Protection

• Conditional Access Mastery

• Complex policy design for multiple apps and roles

• Integration with Intune for device compliance

• Policy simulation and troubleshooting

• Threat Detection & Response

• Microsoft Sentinel (SIEM) deployment and playbooks

• Defender for Identity integration

• Zero Trust Architecture

• Implementing Zero Trust principles across identity, network, and endpoints

• Automation & Governance

• Automating security policies with PowerShell and Graph API

• Azure Blueprints for compliance frameworks (ISO, NIST, CIS)

3. Project - 20%

Parameters:

• Stakeholder engagement and requirement gathering
• Risk assessment and mitigation strategies
• Vendor and third-party integration management
• Leading technical teams through design and build phases
• Strong communication for reporting
• Decision-making under constraints
• Mentoring and knowledge transfer

Must Have:

• Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code.
• Integrate and secure cloud services to support application modernization and platform resilience.
• Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI.
• Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture.
• Contribute to product planning, service documentation, process optimization, and internal communication strategies.