Role Overview
Cloud Infrastructure & Platform Engineering is a hands-on technical leader responsible for designing, automating, securing, and operating hybrid and multi-cloud infrastructure across on-premises and Google Cloud platforms.
This role combines deep technical execution with strategic leadership, driving cloud modernization initiatives, infrastructure automation, database migrations, network/security architecture, and mentoring of next generation engineers.
A person in this role, actively architects and implements enterprise grade solutions across VMware, GCVE, Kubernetes, Network Security (GCP & Palo Alto), Database platforms, Cisco/Dell switches, EMC/Pure Storage, Brocade SAN switches while guiding teams in best practices for Infrastructure as Code (IaC), DevSecOps, and reliability engineering.
Key Responsibilities
- Cloud & Hybrid Infrastructure Leadership
- Lead operational management of:
- Google Cloud Platform (GCP)
- Google Cloud VMware Engine (GCVE)
- On prem VMware & NSX environments
- Drive pre production to GCP Oracle and BRM migrations for all programs
- Design secure hybrid connectivity models (VPN, firewall, load balancing)
- Ensure high availability, scalability, backup and disaster recovery readiness
Required Skills & Experience
Infrastructure as Code & Automation
Architect and maintain enterprise grade automation using:
- Ansible & Terraform
- Develop migration automation scripts for:
- VM provisioning, Network placement, SSH key configuration, root password setup,
- Oracle Data Guard & Cascaded Data Guard configuration
- Database failover orchestration, Upgrade and enhance IaC modules to support new cloud features
- Lead Blue/Green deployment automation strategies
Database & Oracle Migration Engineering
Lead Oracle database migrations from on prem to GCVE/GCP
Design and automate:
- Data Guard setup
- Cascaded Data Guard
- Failover orchestration
- Implement GCP Datastream integrations
- Optimize performance and resiliency for mission critical databases
Kubernetes & GKE Platform Engineering
Lead GKE cluster lifecycle management:
- New feature evaluation
- IaC upgrades to support features
- Cluster version upgrades
- Blue/Green traffic switching
- Ensure secure, scalable Kubernetes environments
- Integrate load balancing, firewall, and security controls
Load Balancing & Traffic Engineering
Configure and manage:
- GCP Load Balancers, AVI Load Balancer, AVI/NSX Load Balancing
- maintain VM with Iptables move for F5 replacement for Internet to GCP to GCVE based transactions
- Implement production grade traffic routing strategies
- Ensure performance optimization and high availability
Security & Network Architecture
Manage and architect:
- Palo Alto Firewalls (Prod, Staging, Lab), CloudArmor WAF
- GCP FQDN Firewall (design, IaC, and production rollout)
- NSX security configurations, Design secure VPN connectivity (e.g., Chase Billing VPN setup via IaC), Implement Zero Trust and least privilege principles
- Oversee firewall rule governance and compliance
API & Platform Services
- Lead Apigee X deployment and configuration in GCP
- Ensure secure API gateway integration with backend services
- Align API platform with enterprise security and networking standards
GCVE, NSX & Virtualization Management
Oversee lifecycle management of:
- GCVE infrastructure
- NSX networking
- AVI load balancers
- Optimize virtualized network performance and segmentation
- Maintain enterprise HA and DR posture
Leadership & Mentorship
- Mentor and develop new and mid level engineers
- Promote Infrastructure as Code and automation first mindset
- Establish technical standards and design review practices
- Lead incident reviews and architectural decision boards
- Drive continuous improvement culture
Technical Expertise
- Cloud & Virtualization, GCP (Compute, Networking, Datastream, GKE, CloudArmor)
- GCVE – VMware vSphere, NSX T
