Staff Engineer – Cloud Infrastructure, Security

This is a fully remote position, open to applicants in India.

📋 Description

• Design and enhance infrastructure architecture on GCP to ensure scalability, resilience, and security.

• Establish standards for:

• Project and environment structures

• Multi-region deployments

• High availability and failover methodologies

• Lead architectural assessments for significant infrastructure modifications.

• Ensure infrastructure accommodates high-scale, multi-tenant SaaS applications.

• Architect and refine Kubernetes (GKE) environments for production workloads.

• Define and enforce:

• Cluster architecture and node pool strategies

• Workload isolation and scheduling policies

• Upgrade and lifecycle management strategies

• Enhance reliability, scalability, and operational efficiency of Kubernetes environments.

• Design and supervise secure, scalable cloud networking components:

• VPCs, subnets, routing, and firewalls

• Load balancing and traffic routing

• Manage integration with Cloudflare, including:

• CDN configuration

• WAF rules and DDoS protection

• Edge security and traffic management

• Ensure low-latency, resilient, and secure traffic flows.

• Design and enforce a least-privilege IAM architecture across GCP and platform systems.

• Establish standards for:

• Service accounts and roles

• Access control policies

• Just-in-time access and auditing

• Collaborate with Cyber Security to continuously enhance access posture and mitigate risks.

• Create and enforce secure-by-default infrastructure patterns.

• Work closely with Cyber Security teams to:

• Identify and address vulnerabilities

• Implement security controls and guardrails

• Support threat modeling and risk evaluations

• Secure Kubernetes workloads, networking layers, and cloud services.

• Promote the adoption and quality of Infrastructure as Code (IaC) using tools like Terraform.

• Develop reusable infrastructure modules and automation frameworks.

• Ensure infrastructure modifications are Auditable, Repeatable & Safe.

• Minimize manual operational tasks through automation.

• Design and enhance disaster recovery (DR) and failover strategies.

• Define and validate RTO / RPO objectives.

• Collaborate with SRE teams to enhance incident response, system resilience, and operational preparedness.

• Engage in postmortems and drive systemic improvements.

• Identify infrastructure inefficiencies and performance bottlenecks.

• Collaborate with FinOps and Cloud teams to:

• Optimize resource utilization

• Enhance cost visibility and predictability

• Balance performance, reliability, and cost in architectural choices.

• Serve as a technical leader across Cloud Infrastructure and Security domains.

• Mentor SDE2, SDE3, and Lead engineers.

• Facilitate design reviews, architectural discussions, and best practices.

• Influence teams throughout the organization without direct authority.

• Collaborate closely with:

• Platform Engineering (CI/CD, DevEx)

• SRE & InfraOps (operations and reliability)

• Cyber Security teams (security and compliance)

• Clearly communicate complex technical concepts to stakeholders and leadership.

⛳️ Requirements

• Bachelor’s degree or equivalent experience in Engineering or a related field.

• Over 9 years of experience in cloud infrastructure, platform engineering, or security.

• Extensive hands-on experience with:

• GCP (preferred) or alternative cloud platforms

• Kubernetes (GKE) in production settings

• Cloud networking and distributed systems

• Strong experience with:

• Cloudflare (CDN, WAF, edge security)

• IAM and access control systems

• Proven track record in designing secure, highly available systems at scale.

• Strong analytical and system design skills.

• Excellent communication and leadership capabilities.

🏝️ Benefits

• Competitive salary and performance-based bonuses.

• Comprehensive health, dental, and vision insurance.

• Flexible working hours and remote work options.

• Opportunities for professional development and continuous learning.

• Collaborative and inclusive work environment.