Senior Azure / AKS Platform Engineer (Terraform Expert | Advanced Networking

Senior Azure / AKS Platform Engineer (Terraform Expert | Advanced Networking | GitOps)

We are looking for a senior platform engineer with deep, hands-on experience designing enterprise Azure and AKS infrastructures at scale.

This role is for engineers who build cloud platforms using advanced Terraform, next-generation Kubernetes networking, and GitOps automation.

If you are used to solving complex infrastructure challenges and designing systems that must be secure, resilient, and production-critical, this role is for you.

We are looking for a Senior Azure / AKS Platform Engineer with deep expertise in Terraform, advanced Kubernetes networking, and GitOps, to design, implement, and evolve enterprise-grade Azure Kubernetes Service (AKS) platforms.

The role involves working on highly advanced cloud-native infrastructure scenarios, including Infrastructure as Code at scale, zero-trust network architectures, and next-generation Kubernetes networking models.

Key responsibilities include:

Design and maintenance of complex Terraform modules for Azure infrastructure, including advanced lifecycle management and multi-environment state strategies
Extension of standard provider capabilities using AzAPI and custom integrations
Design and implementation of advanced AKS networking architectures, including:
- Cilium eBPF dataplane (kube-proxy replacement)
- WireGuard inter-node encryption
- Azure Application Gateway for Containers (AGC)
Migration from traditional Ingress Controllers (NGINX / Traefik) to Kubernetes Gateway API architectures integrated with native Azure load balancing
Implementation of dynamic node provisioning strategies (Karpenter-based approaches or equivalent AKS dynamic scaling models) optimizing On-Demand vs Spot workloads
Automation of DNS and identity integration, including:
- External-DNS (Azure Private DNS / GoDaddy)
- Azure Workload Identity integration (Key Vault, Storage, and platform services)
Implementation of namespace isolation and Zero-Trust security models, including kernel-level security integrations and Network Policies enforcement
Support GitOps delivery pipelines using Flux CD or ArgoCD
Collaboration with architecture, security, and DevOps teams to ensure platform scalability, reliability, and security compliance

Required Skills

4–5+ years real production experience with Terraform on Azure
Deep understanding of Azure infrastructure components, including:
- VNET architecture (Peering, Overlay models, Subnet Delegation)
- Managed Identities
- Private Endpoints / Private Link
- Traffic management and routing strategies
Strong architectural and operational experience with Azure Kubernetes Service (AKS), including control plane and data plane behavior
Strong experience with advanced Kubernetes networking (CNI, dataplane behavior, service routing, network policies)
Proven experience implementing GitOps delivery models using Flux CD or ArgoCD
Strong troubleshooting capabilities in complex distributed cloud environments
Ability to work autonomously in high-complexity enterprise environments

Preferred Skills

Microsoft Certified: Azure Solutions Architect Expert
HashiCorp Certified: Terraform Associate (or higher)
Experience in multi-cluster or multi-region architectures
Experience designing global traffic routing and failover strategies
Experience in Zero-Trust infrastructure and platform security models

Incuriosito?

Invia la tua candidatura

Spiegaci perché potresti essere la persona giusta e allega il tuo CV o il tuo portfolio.

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Sempre abilitato

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Durata	Descrizione
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Performance

Analytics

Others