Senior Cloud Platform Engineer - CL

About the Role

You will be the primary architect and operator of our multi-cloud ecosystem. This is a high-impact, generalist role that requires a deep understanding of the entire technology stack—from the underlying operating systems and networking to container orchestration and automated governance. You will design, secure, and scale the infrastructure that powers our global applications while mentoring engineering teams on cloud-native best practices.

Responsibilities

● Design and implement secure, multi-account structures and landing zones across AWS.

● Manage and evolve multi-cloud IAM, SSO, and Role-Based Access Controls (RBAC) to ensure least-privilege access.

● Enforce tagging standards, resource hierarchies, and cost-optimization strategies (rightsizing, idle resource elimination) to maintain fiscal accountability.

● Lead the deployment, scaling, and management of Kubernetes clusters (EKS, GKE, or self-managed). Manage CNI plugins, ingress controllers, and service meshes (Istio/Linkerd).

● Administer and optimize Linux (Ubuntu, Amazon Linux, RHEL) and Windows Server environments, ensuring hardened configurations and automated patching.

● Manage the intersection of cloud services and traditional OS-level dependencies, including Active Directory integration and file system performance tuning.

● Develop and maintain modular templates using Terraform, CloudFormation, or Pulumi.

● Build and optimize deployment pipelines using GitHub Actions, GitLab CI, Flux, or ArgoCD to enable "GitOps" workflows.

● Design security controls including encryption at rest/transit (KMS), VPC Service Controls, and audit logging to meet SOC2, HIPAA, or FedRAMP standards.

● Leverage AI-native development tools (e.g., Cursor, GitHub Copilot) and LLM-powered agents to accelerate Infrastructure-as-Code (IaC) authoring, automate complex root-cause analysis, and proactively optimize cloud utilization through predictive anomaly detection.

AWS specific (Must have)

  • AWS Organizations & Landing Zones
  • IAM, SSO, RBAC
  • VPCs, Transit Gateway, networking
  • EKS administration
  • Terraform
  • CloudFormation
  • GitOps (ArgoCD/Flux)
  • Linux administration
  • Kubernetes security
  • Cost optimization
  • Multi-account governance

GCP specific (nice to have)

  • GKE
  • VPC Service Controls
  • IAM
  • Organization hierarchy

Azure specific (nice to have)

VNET, subscriptions

Experience You’ll Need

● Bachelor’s or Master’s degree in Computer Science, Information Technology, or a related field.

● 8+ years of experience in Cloud Engineering, SRE, or DevOps, with deep proficiency in AWS and/or GCP.

● Expert-level experience administering Linux (shell scripting, kernel tuning) and Windows Server (Active Directory, Group Policy, PowerShell).

● Proven track record of running production-grade Kubernetes workloads at scale, including experience with Helm and container security.

● Strong proficiency in Python, Go, or Bash for infrastructure automation and tool development.

● Solid understanding of VPC/VNet design, peering, Transit Gateways, and zero-trust security models.

Preferred Qualifications

● Experience with "Cloud-Native" monitoring stacks (Prometheus, Grafana, ELK).

● Background in migrating legacy Windows/Linux monolithic applications into containerized microservices.

● Relevant certifications: AWS Solutions Architect Professional, Google Professional Cloud Architect, or Certified Kubernetes Administrator (CKA).

At Endava, we’re committed to creating an open, inclusive, and respectful environment where everyone feels safe, valued, and empowered to be their best. We welcome applications from people of all backgrounds, experiences, and perspectives—because we know that inclusive teams help us deliver smarter, more innovative solutions for our customers. Hiring decisions are based on merit, skills, qualifications, and potential. If you need adjustments or support during the recruitment process, please let us know.