Cloud Engineer, Automation & Security Focus
Northern Trust
- Chicago, IL
- Permanent
- Full-time
- Develop infrastructure-as-code (IaC) automation (e.g., Terraform) to create IaC patterns and modules to provide acceleration to development end users programmatically.
- Utilize modern software DevOps and CI/CD tooling, such as GitHub, GitHub Actions, ADO, Jenkins, etc., to provision infrastructure resources and prevent configuration drift.
- Collaborate with development teams to ensure seamless continuous integration of code and deployment as well as promoting disciplined code versioning practices.
- Familiarity and experience with Terraform Cloud for workspace and state management.
- Collaborate with product, architecture, and other stakeholders to ensure cloud technologies are designed in accordance with product roadmaps and well architected frameworks.
- Investigate and resolve complex cloud infrastructure related issues and recommend and develop solutions to issues and create documentation of reengineering processes as required.
- Participate in IT Service Management (ITSM) change, incident, and general requests for cloud platform support for business as usual (BAU) operations.
- Contribute to cloud operation disciplines and improve processes and own such as OS lifecycle management, backup and recovery, disaster recovery, certificate management, etc.
- Develop, implement, and enforce Policy-as-Code (PaC) for cloud environments (Azure, AWS) to configure, detect, remediate, and enforce security standards.
- Define and implement security policies based upon CIS/NIST industry benchmarks.
- Support remediation of security vulnerabilities using cloud posture management and ITSM tooling in accordance with service level agreements (SLA)
- Manage, configure, enhance, and operate cloud security posture management platforms (e.g., Wiz, Prisma Cloud, etc.) for pre-deployment scanning of IaC code to protect infrastructure.
- Bachelor’s degree in computer science, engineering, or related technical fields
- 10+ years of technology experience
- 4 to 8+ years cloud computing (Microsoft Azure, AWS)
- Terraform Infrastructure as code automation
- Experience with Azure networking tools (V-WAN, VNET, BGP, etc.)
- Proven understanding of DevSecOps concepts, and has implemented or working knowledge of using those skills in an already existing framework
- Strong passion for end-to-end DevOps automation via CI/CD pipelines to deploy Infrastructure as Code (IaC) and usage of tools (e.g., ADO, GitHub/Actions, Jenkins, or equivalents).
- Ability to manage infrastructure environments, configurations, and IaC scripts to support application pattern and workflows via self-service automation (e.g., Backstage.io).
- Support all phases of the cloud resource lifecycle management and develop new IaC automation capabilities when new cloud service products are created and business need.
- Strong understanding of the design, implementation and maintenance of network infrastructure in multi-region and multi-cloud environments
- Proficiency in scripting languages: Python, Perl, Ruby, PowerShell, YAML, KQL, other
- Proficiency in waterfall and Agile, Scrum, Kanban, SAFe, etc. delivery methodologies
- Knowledge and experience in testing automation harnesses and frameworks
- Understanding and ability to ensure operational stability and enforcement of security controls via Policy-as-Code and IaC automation.
- Independently managing workload, coordinating priorities with technical leads, and completing deliverables per the processes and standards
- Ability to work independently and manage multiple tasks and projects and maintain day-to-day management and administration of projects in an Agile environment.