Cloud Platform Engineer Summary
We are seeking a Cloud Platform Engineer to build and operate the core public cloud platform foundations that underpin all application workloads. The role focuses on implementing landing zones, identity integration, networking, and Infrastructure as Code (IaC) frameworks, working closely with senior platform engineers and platform services teams. It is a hands‑on engineering role with strong automation and DevOps practices.
Responsibilities
* Cloud Platform Foundations
o Implement and maintain cloud landing zones, account/subscription structures, and baseline configurations.
o Provision and manage shared platform services such as network hubs, identity integrations, and management groups.
* Identity & Access
o Implement cloud IAM policies, role‑based access control, and federated identity integration.
o Automate identity provisioning and access workflows where possible.
* Cloud Networking
o Build and maintain cloud networking components (VNets/VPCs, routing, DNS, gateways, private endpoints).
o Support connectivity patterns such as hub‑and‑spoke and private connectivity to on‑premises.
* Infrastructure as Code (IaC)
o Develop and maintain Terraform templates and modules.
o Support CI/CD pipelines for platform provisioning and automation.
o Ensure environments are built consistently using code‑driven approaches.
* Platform Automation & Tooling
o Contribute to automation tooling, scripts, and internal platform tooling.
o Support self‑service capabilities for application and product teams.
* Operational Support (BAU)
o Support day‑to‑day platform operations and incident response.
o Apply patches, upgrades, and maintenance to platform components.
o Assist with onboarding new cloud environments and subscriptions/accounts.
* Documentation & Collaboration
o Maintain engineering documentation, runbooks, and platform patterns.
o Collaborate with Security, FinOps, and Platform Services teams to embed operational and governance controls.
* BAU vs Project Responsibilities
o BAU: Maintain landing zones, IAM integrations, networking, and IaC pipelines; respond to platform incidents and support requests; perform routine maintenance, upgrades, and configuration management.
o Project/Change: Implement new platform capabilities and architectural enhancements; improve automation, self‑service, and developer experience; refactor platform components to enhance security, scalability, and reliability.
Qualifications
* Intermediate or advanced cloud certifications in AWS, Azure, or OCI (above Fundamentals level).
* Eligible for UK Security Clearance.
Required Skills & Experience
* Experience with at least one public cloud platform (AWS, Azure, or OCI).
* Experience with Infrastructure as Code tools (Terraform).
* Understanding of cloud networking and identity fundamentals.
* Familiarity with CI/CD pipelines and automation tools.
* Experience working in DevOps, SRE, or platform engineering environments.
* Experience within ITIL frameworks.
* Automation skills using Bash, Python, or PowerShell.
* Knowledge of cloud governance basics (tagging, policies, cost controls).
Engineering Practices
* Experience in DevOps, SRE, or platform engineering environments.
* Working within ITIL frameworks.
* Ability to automate repetitive tasks using scripting.
* Understanding of cloud governance basics.
Soft Skills
* Collaborative and team‑oriented approach.
* Ability to follow architectural standards and engineering guidance.
* Clear communication with engineering and operations teams.
Desirable Experience
* Experience designing or supporting enterprise network environments, including routing, firewalls, DNS, and private connectivity (VPN, ExpressRoute, Direct Connect).
* Experience administering Windows Server environments, including Active Directory integration, patching, and hardening.
* Experience administering Unix/Linux systems (RHEL, Ubuntu, SUSE), including configuration management and security hardening.
* Exposure to container platforms and Kubernetes (AKS, EKS, GKE, OKE or on‑prem Kubernetes).
* Experience integrating monitoring and observability tooling (Azure Monitor, CloudWatch, Prometheus, Grafana, Manage Engine, SolarWinds).
Benefits
* Private Medical Cover funded by NEC for Employees (with option to add family members at an additional cost).
* 25 days paid holiday with the option to buy/sell (FTE).
* Basic salary life assurance cover funded by NEC (with option to increase cover at an additional cost).
* A Group Pension Plan with employer contributions up to 8.5%.
* Flexible benefits to suit individual needs.
* Free access to LinkedIn Learning (over 15000 courses).
Other Information
* Candidates must demonstrate a pre‑existing right to work and travel within the UK and provide documentary evidence.
* All offers are subject to satisfactory vetting, references and occupational health checks.
* Depending on the nature of the role, a Disclosure Barring Service (DBS) check may also be required.
Security Clearance
This position requires you to either currently have national security vetting clearance at the Security Check (SC) level or higher, Non‑Police Personnel Vetting (NPPV) Level 3, or the ability to gain Enhanced Security Clearance.
Equal Opportunity Statement
NEC Software Solutions is an equal opportunities employer, welcoming applications from all communities. If you require any reasonable adjustments or have specific accessibility needs during the recruitment or interview process, please share these with us. We are committed to ensuring an inclusive and accommodating experience for all candidates.
#J-18808-Ljbffr