Job Description

HM Note: This onsite contract role is in office every day at the manager's discretion. Candidate resumes must include first and last name, email and telephone contact information. Candidates can work in client offices at

5700 Yonge Street Toronto, 222 Jarvis Street Toronto, 300 Water St Peterborough, 1000 Southgate Drive Guelph, 301 ST Paul Street St Cathrines and 200 First Avenue North Bay. This engagement commences April 2025 until March 2027

Description

Deliverables:

Provide expert support for the GO public cloud environments, primarily Azure and AWS. Design secure, scalable solutions, assist with complex migrations from on-premise infrastructure, and develop infrastructure-as-code pipelines to automate provisioning. Support monitoring and reporting to improve visibility into performance and compliance. Familiarity with Identity and Access Management (IAM) and ITS service integration will help ensure secure access across platforms. Expertise will be key to sustaining operations and advancing cloud capabilities, including AI integration.

Key Responsibilities:

Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code. Integrate and secure cloud services to support application modernization and platform resilience. Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI. Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture. Contribute to product planning, service documentation, process optimization, and internal communication strategies.



Skills
Experience and Skill Set Requirements

Key Responsibilities:

Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code. Integrate and secure cloud services to support application modernization and platform resilience. Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI. Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture. Contribute to product planning, service documentation, process optimization, and internal communication strategies.

Evaluation Breakdown

1. Deploy and Design - 25%

Parameters:

The candidate must have advanced design and implementation knowledge for Azure or AWS

Compute: Azure Virtual Machines, AKS, App Services Networking: VNet, NSG, Load Balancer, Front Door, ExpressRoute Storage: Blob, Files, Data Lake Identity & Security: Azure AD, RBAC, Key Vault, Policies Monitoring: Azure Monitor, Log Analytics Automation: ARM Templates, Bicep, Terraform Data Services: Azure SQL, Synapse, Cosmos DB CI/CD: Azure DevOps, GitHub Actions Cost Management: Azure Cost Analysis, Reservations Data skills for AI familiar with data bricks, fabric Know ledge vector embeddings, chunking strategies LLM integration experience and knowledge

OrCompute: EC2, ECS, EKS, Lambda Networking: VPC, Route 53, ALB/NLB, Direct Connect Storage: S3, EBS, EFS, Glacier Identity & Security: IAM, KMS, Secrets Manager Monitoring: CloudWatch, X-Ray Automation: CloudFormation, Terraform Data Services: RDS, DynamoDB, Redshift CI/CD: CodePipeline, CodeBuild Data skills for AI experience with data bricks know ledge vector embeddings LLM integration experience and knowledge

Nice to have:

GCP and OCI

Compute Engine (VMs), Google Kubernetes Engine (GKE) VPC design, subnets, firewall rules, Cloud Load Balancing Hybrid connectivity (Cloud VPN, Interconnect) Cloud Storage (buckets, lifecycle policies) BigQuery (data warehouse), Cloud SQL, Firestore Dataflow and Pub/Sub for streaming and ETL Load Balancer and FastConnect for hybrid connectivity OCI Identity Domains and IAM policies Dynamic groups and resource principals Cost Management: AWS Cost Explorer, Savings Plan

2. Security - 25%

Parameters:

Microsoft Entra Entra Permissions Management (CIEM) Entra Verified ID (Decentralized Identity) Advanced governance with Identity Protection

Conditional Access Mastery Complex policy design for multiple apps and roles Integration with Intune for device compliance Policy simulation and troubleshooting

Threat Detection & Response Microsoft Sentinel (SIEM) deployment and playbooks Defender for Identity integration Zero Trust Architecture Implementing Zero Trust principles across identity, network, and endpoints

Automation & Governance Automating security policies with PowerShell and Graph API Azure Blueprints for compliance frameworks (ISO, NIST, CIS)

3. Project - 20%

Parameters:

Stakeholder engagement and requirement gathering Risk assessment and mitigation strategies Vendor and third-party integration management Leading technical teams through design and build phases Strong communication for reporting Decision-making under constraints Mentoring and knowledge transfer

Must Have:

Maintain and enhance cloud environment configurations and delivery pipelines through infrastructure-as-code. Integrate and secure cloud services to support application modernization and platform resilience. Develop and refine reusable technology patterns for IaaS, PaaS, SaaS, and emerging capabilities like generative AI. Advance GoCLOUD product maturity by implementing roadmap-driven features and supporting target architecture. * Contribute to product planning, service documentation, process optimization, and internal communication strategies.