Position Title: Public Cloud Service Engineer - (Hybrid)
Location: Atlanta, GA
Duration: 12 Months Contract with possibility to extend
Job Description
Foundation Skills (Basic Cloud Networking and Services):
These are the essential skills that an entry-level or early-career candidate should be able to handle:
- VPC (Virtual Private Cloud) design – Ability to logically design and manage a VPC, including the management of services within it.
- IP Address Management – Knowledge of IP addressing and how to reserve and allocate IP addresses within a cloud environment.
- Subnetting & Routing – Understanding of IP subnetting for efficient network design and the ability to set up routing within the VPC.
- VM Deployment – Deploying Virtual Machines (VMs) with both single and multiple interfaces, including in multiple Availability Zones (AZs).
- Security Groups – Basic understanding of cloud security groups to control traffic flow to and from VMs.
- Elastic IPs – Ability to use Elastic IPs (static IP addresses that can be associated with instances).
- Services like EKS, DMS – Deploying AWS-based services like Amazon EKS (Elastic Kubernetes Service) or Database Migration Service (DMS).
- Strong Knowledge on AWS and GCP.
Intermediate Skills (More Advanced Network Design and Services):
These skills are a bit more advanced and will require hands-on experience:
- Transit Gateway – Understanding of Transit Gateway’s role in connecting multiple VPCs and on-premise networks, including routing and attachments.
- Direct Connect & VPNs – Setting up private network connections to AWS using Direct Connect, and configuring Virtual Private Gateways and VPN connections for secure access.
- VPC Endpoints – Knowledge of creating VPC Endpoints to allow private connections to AWS services.
- Static and Asymmetric Routing – Experience with setting static routes and handling asymmetric routing situations, common in complex networking environments.
- Security Group Configuration – Understanding which security group to update depending on the specific traffic flow or security requirements.
Advanced Skills (Complex Cloud Infrastructure and Security):
These are the high-level skills that demonstrate deep expertise and would be required for troubleshooting and managing large-scale, high-availability cloud environments:
- Dynamic Routing (BGP) – Expertise in BGP (Border Gateway Protocol) for dynamic routing in hybrid cloud setups.
- Datapath Tracing & Troubleshooting – Advanced troubleshooting ability, including understanding the flow of data through various network components like route tables, transit gateways, and firewalls.
- High-Availability Setup – Ensuring that networking and services are highly available across different regions and peering centers.
- Palo Alto Firewalls – Experience with managing Palo Alto firewalls, especially in cloud environments, both as part of Transit VPC setups and as VPN endpoints.
- Load Balancing – Expertise in configuring various types of load balancers (Network and Application Load Balancers) to ensure proper traffic distribution and availability.
- Automation & Infrastructure as Code – Experience automating cloud infrastructure using tools like AWS CloudFormation, Terraform, or similar.
- Logging & Metrics – Setting up and managing cloud logging and monitoring systems to ensure the infrastructure’s performance and security are tracked.
Key Focus Areas:
- AWS (Amazon Web Services) and possibly GCP (Google Cloud Platform).
- Cloud Networking: VPC, routing, subnets, security.
- Security: Firewalls, security groups, VPNs, etc.
- Automation: Infrastructure as code, automation of deployments, monitoring.
- High Availability & Fault Tolerance: Ensuring the cloud network remains operational and resilient.
