Cloud Platform Engineer
PayPalSalary not specified
Full Time
Junior (1 to 2 years)
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Healthcare, TechnologyIndustries
Requirements
- 5+ years combined experience across Azure and enterprise systems engineering
- 2+ years hands-on Azure in production
- 3+ years administering Windows Server/AD DS and M365/Intune in a hybrid environment
- Strong proficiency with Infrastructure as Code (Terraform or Bicep), scripting (PowerShell; Python a plus), and Git workflows
- Solid understanding of Entra ID, RBAC/PIM/Conditional Access, and managed identities
- Experience with Azure networking, virtualization (vSphere/Hyper-V), storage, and backup/DR
- Familiarity with observability (Azure Monitor/Log Analytics/KQL) and security tooling (Defender, Sentinel)
- Excellent troubleshooting, documentation, and cross-team communication skills
- Preferred Qualifications
- Certifications (one or more): AZ-104, AZ-305, AZ-500, AZ-700, AZ-400, MS-102, VMware VCP, ITIL, CompTIA Security+
- AKS/Kubernetes (ingress, Helm), container registry (ACR), and container security
- Policy-as-code, identity governance, and automation at scale
- Experience in healthcare/regulated environments (HIPAA, SOC 2, HITRUST) and change management/ITIL practices
Responsibilities
- Design and implement Azure landing zones (hub/spoke or vWAN), subscription topology, and policy guardrails aligned to the Well-Architected Framework
- Provision and manage compute (VMSS, App Service, AKS), storage (Blob/Files), data services (Azure SQL/MI), and PaaS offerings
- Build reusable Infrastructure as Code modules (Terraform or Bicep) and CI/CD pipelines (Azure DevOps or GitHub Actions)
- Drive FinOps practices: budgets, tags, right-sizing, reservations/Savings Plans, and monthly optimization reviews
- Administer Active Directory Domain Services, Group Policy, DNS/DHCP, certificate services (AD CS), file/print, IIS, and RDS
- Operate Microsoft 365 services (Exchange Online, Teams, SharePoint/OneDrive) and Intune (Autopilot, device compliance/configuration, app lifecycle)
- Support virtualization (VMware vSphere or Hyper-V), Windows/Linux servers, and enterprise storage (SAN/NAS)
- Operate Entra ID (Azure AD) and hybrid identity (AD DS ↔ Entra), MFA/SSPR, Conditional Access, PIM, RBAC, and managed identities
- Configure and tune Microsoft Defender for Cloud and Microsoft Sentinel (KQL analytics, workbooks, automation) and integrate with incident response
- Implement and document HIPAA/SOC 2/HITRUST-aligned controls, tagging standards, and evidence collection
- Instrument with Azure Monitor, Log Analytics, and Application Insights; author KQL for dashboards and alerts
- Own backup/DR patterns (Azure Backup, Site Recovery, and/or Veeam), conduct restoration testing, and track RTO/RPO
- Author PowerShell and/or Python tooling for lifecycle tasks, drift detection, and self-service workflows
- Provide Tier 3 escalation, participate in a rotating on-call schedule, document runbooks/reference architectures, and mentor junior engineers
Skills
Azure
Terraform
Bicep
Active Directory
Entra ID
Microsoft 365
Intune
VMware vSphere
Hyper-V
Windows Server
Linux
VMSS
App Service
AKS
Azure SQL
Azure DevOps
GitHub Actions
Microsoft Defender for Cloud
Microsoft Sentinel
KQL
FinOps
BrightAI
Digitizes physical assets for legacy enterprises
About BrightAI
BrightAI transforms traditional industries by digitizing physical assets and processes using technologies like the Internet of Things (IoT), Edge AI, cloud computing, and mobile technologies. The company primarily serves legacy enterprises, helping them modernize their operations to become more competitive in the global market. By quickly integrating its solutions, BrightAI drives immediate improvements in cash flow, creating a cycle of growth and profitability for its clients. The goal is to make digital transformation accessible and affordable for a wide range of businesses.
San Francisco, CaliforniaHeadquarters
2019Year Founded
$14.6MTotal Funding
SEEDCompany Stage
Data & Analytics, Industrial & Manufacturing, AI & Machine LearningIndustries
51-200Employees
Benefits
Remote Work Options
Flexible Work Hours
Risks
Competition from tech giants like Google and Microsoft could overshadow BrightAI.
Rapid technological advancements may render BrightAI's solutions obsolete if innovation lags.
Economic downturns could reduce demand for BrightAI's digital transformation solutions.
Differentiation
BrightAI specializes in digitizing physical assets for legacy enterprises.
The company leverages IoT, Edge AI, and cloud technologies for digital transformation.
BrightAI's solutions create an EBITDA flywheel, driving growth and profitability.
Upsides
BrightAI raised $15M in seed funding to enhance its AI platform.
The rise of 5G technology benefits BrightAI's real-time asset monitoring solutions.
Growing focus on predictive maintenance boosts demand for BrightAI's AI-driven platform.
Related Jobs
RemoteRemoteSalesforce Solution Architect, Service Cloud Voice
NeuraFlashSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Data Analytics Engineer
RPS North AmericaSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteDevOps Engineer
Swish AnalyticsSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteInfrastructure Engineer
1047 GamesSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSr. Cloud Infrastructure Engineer
Serve Robotics$150,000 - $200,000/year
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemotePigment Systems Administrator
Huntress$140,000 - $150,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteEngineer III, Cloud SDET - Channel File Systems (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years)