The Cloud Network & Security Engineer is a pivotal role in the IT organization, responsible for architecting, implementing, and maintaining complex cloud environments that support the company's critical applications and services.    As a Cloud Engineer, you will have be responsible for designing, implementing, and managing network infrastructure within AWS (primary) and Azure (secondary) public cloud environments including on-prem DC to cloud connectivity, multi-cloud connectivity and intra-cloud connectivity. Your expertise will be pivotal in ensuring the reliability, scalability, and security of our cloud-based networks. You will work closely with cross-functional teams to optimize cloud network performance and troubleshoot complex issues.  You will also have a strong focus in cloud security focusing both on Cloud Platform and network/perimeter security.

Key Responsibilities:

• Network Design & Implementation: Design and implement scalable and secure network architectures in AWS and Azure environments. Ensure integration with existing on-premises networks and cloud services.
• Configuration & Management: Configure and manage virtual networks, subnets, VPNs, load balancers, and firewall rules within AWS and Azure. Implement network segmentation and security controls to protect data and applications.
• Performance Optimization: Monitor network performance and troubleshoot issues to maintain high availability and reliability. Optimize network configurations to enhance performance and reduce latency.
• Security & Compliance: Implement and manage security policies and practices to protect cloud-based network resources. Ensure compliance with industry standards and company policies.
• Automation & Scripting: Develop and maintain automation scripts using tools like Terraform, AWS CloudFormation, or Azure Resource Manager to streamline network provisioning and management tasks.
• Collaboration: Work closely with operations teams, application developers, and system administrators to support and troubleshoot network-related issues. Provide guidance on best practices for cloud network architecture and operations.
• Documentation & Reporting: Create and maintain detailed documentation for network configurations, processes, and procedures. Generate reports on network performance, incidents, and resolutions.
• Tier 3 Support -when our CDK operational teams get stuck with a cloud networking issues, you will be the point of escalation.

Qualifications:

• Education: Bachelor’s degree in Computer Science, Engineering, Information Technology, or a related field, or equivalent work experience.
• Experience: Minimum of 5-7 years of experience in network engineering with a focus on cloud environments (AWS and Azure).
• Certifications: Relevant certifications such as AWS Certified Solutions Architect, AWS Certified Advanced Networking, AWS or Microsoft Security Specialization, Microsoft Certified: Azure Network Engineer Associate, or similar are highly desirable.

​Skills:

• This is a hands-on role.  You will be the subject matter expert at CDK for all things AWS networking and security.
• Strong understanding and hands-on use of cloud networking capabilities and services (ex. Routing, VPC’s, Transit Gateways, VPN’s, Direct Connect, Azure Virtual Network, ExpressRoute).
• Proficiency in network protocols, services and tools (ex. TCP/IP, BGP, DNS, DHCP, HTTP/HTTPS, IPAM, New Relic, etc.).
• Experience with network monitoring (New Relic, CloudWatch) and diagnostic tools.  Extensive use of Cloud Watch and log files for forensics and operational remediations.
• Knowledge of network security practices and tools (CSPM tools, firewalls, IDS/IPS, encryption).  Deep experience with network design within a public cloud environment with a strong focus on perimeter security.
• Familiarity with automation tools and frameworks (Terraform, AWS CloudFormation, Ansible, Puppet, etc.).
• Excellent problem-solving skills and the ability to troubleshoot complex network issues.
• Strong communication skills with the ability to work collaboratively in a team environment.
• Experience with AWS and Azure Native services like AWS Config, Cloud Watch, Cloud Trail, Route53, Guard Duty, Detective, Inspector, Security Hub, Secrets Server, KMS, AWS Shield, Security Groups, etc.
• Experience with 3rd party tools like Rapid7, Prisma Cloud (CSPM), Wiz, Delinea, etc.
• Experience writing scripts using AWS API to pull data and/or automation cloud admin/governance functions.

At CDK, we believe inclusion and diversity are essential in inspiring meaningful connections to our people, customers and communities. We are open, curious and encourage different views, so that everyone can be their best selves and make an impact.

CDK is an Equal Opportunity Employer committed to creating an inclusive workforce where everyone is valued. Qualified applicants will receive consideration for employment without regard to race, color, creed, ancestry, national origin, gender, sexual orientation, gender identity, gender expression, marital status, creed or religion, age, disability (including pregnancy), results of genetic testing, service in the military, veteran status or any other category protected by law.

Applicants for employment in the US must be authorized to work in the US.  CDK may offer employer visa sponsorship to applicants.