Location: Remote (USA)
Experience Level:
Junior to Mid-level
About the Role
We are looking for a Cloud Engineer to own our multi-cloud infrastructure across AWS, Azure, and GCP. This role is responsible for cloud account governance, IAM and access controls, cost management, network architecture within cloud environments, and supporting our engineering teams with cloud tooling and best practices. You will also own cloud-specific compliance work in support of our SOC 2 Type II program, including access reviews and cloud security posture findings. This is a role for someone who is comfortable working across multiple cloud providers and who understands that cloud infrastructure is not just about deploying resources — it is about operating them reliably, securely, and cost-effectively over time.
Responsibilities
- Own and operate infrastructure across AWS, Azure, and GCP including account structure, resource organization, and network architecture (VPCs, subnets, peering, transit gateways)
- Manage IAM across all three cloud environments; enforce least-privilege access principles and conduct periodic access reviews as required by SOC 2
- Own cloud cost management: tagging standards, budget alerting, rightsizing recommendations, and reporting to leadership
- Configure and maintain cloud audit log export to our SIEM (CloudTrail, Azure Monitor, GCP Audit Logs); work with the IT Security Engineer on detection coverage
- Support engineering teams with cloud infrastructure questions, account access, and best practices; serve as the IT point of contact for cloud-related engineering work
- Manage cloud security posture findings and drive remediation of misconfigurations
- Maintain cloud infrastructure documentation including account maps, network diagrams, and access policies
- Participate in SOC 2 evidence collection for cloud-related controls
- Manage Tailscale network configuration for secure connectivity between cloud environments and on-premises infrastructure; maintain ACL policies and integrate with cloud IAM where applicable
Required Qualifications
- 4+ years of hands-on cloud infrastructure experience
- Strong working knowledge of at least two of AWS, Azure, and GCP; familiarity with all three is preferred
- Deep understanding of cloud IAM concepts (roles, policies, service accounts, federation) across providers
- Experience with cloud networking: VPCs, security groups, transit gateways, VPN, and DNS
- Familiarity with cloud audit logging and log export pipelines
- Understanding of cloud security posture concepts and tooling (AWS Security Hub, Azure Defender, GCP Security Command Center, or third-party CSPM)
- Experience with IaC tooling such as Terraform or CloudFormation
- Working knowledge of SOC 2 or similar compliance frameworks as they apply to cloud environments
Nice to Have
- AWS Solutions Architect, Azure Administrator, or GCP Professional Cloud Architect certification
- Experience with FinOps tooling (CloudHealth, Apptio, or native cloud cost management)
- Scripting or automation experience (Python, Bash) for cloud operations tasks
- Exposure to Kubernetes or container orchestration on cloud platforms
Compensation
Compensation may vary based on location, experience, and skills. We are open to discussing total compensation including benefits, equity, and professional development budget.
Volexity values diversity and is an equal opportunity employer. All employment is decided on the basis of qualifications, merit, and business need.