Design and deliver multi-cloud platforms across AWS, Azure, and GCP, covering compute, networking, storage, identity, and managed services.
Define cloud landing zone strategies, governance frameworks, and account/subscription structures aligned to organisational policies.
Drive IaC adoption using Terraform, Ansible, or cloud-native tools (CloudFormation / ARM Templates / Deployment Manager / AWS CDK) at enterprise scale.
Architect and deliver Kubernetes platforms (EKS, AKS, GKE), including cluster lifecycle, multi-tenancy, RBAC, and node pool strategies.
Design and govern CI/CD pipeline frameworks supporting trunk-based development, canary, and blue-green deployment strategies.
Define Helm chart standards for application packaging, versioning, and multi-environment promotion across Kubernetes clusters.
Implement GitOps workflows using Argo CD and establish internal developer platforms (IDPs) and self-service infrastructure capabilities.
Champion GitDevSecOps—embedding security gates, SAST/DAST, container scanning, SBOM generation, and Policy as Code (OPA/Conftest) into delivery pipelines.
Own secret management and ensure compliance with CIS, NIST, and SOC 2 cloud security benchmarks.
Implement service mesh solutions (Istio) for traffic management, mTLS, observability, and fault injection.
Design cloud networking covering VPC/VNet, transit gateways, WAF, DNS, private connectivity, and zero-trust access models.
Lead architecture reviews, contribute to ADRs and RFCs, and act as a trusted advisor to engineering and executive leadership.
Define FinOps strategies, including reserved instances, rightsizing, Spot workloads, and cost visibility tooling.
Drive scalability and reliability design — auto-scaling, elastic architectures, capacity planning, and chaos engineering practices.
Design and implement a full-stack observability platform using Grafana and the Elastic Stack (Elasticsearch, Logstash, Kibana).
Define and standardize the collection of metrics, logs, and traces across multi-cloud Kubernetes platforms (EKS, AKS, and GKE).
Mentor senior and mid-level engineers and foster a culture of engineering excellence and blameless post-mortems.
Strong hands-on expertise across all three major cloud platforms: AWS, Microsoft Azure, and Google Cloud Platform (GCP).
Deep experience with Infrastructure as Code using Terraform (modules, state management, workspaces) and at least one cloud-native IaC tool.
Solid understanding of Kubernetes architecture and operations, including Helm chart authoring, lifecycle management, and multi-cluster patterns.
Practical experience designing and operating service mesh solutions (Istio, Linkerd, or equivalent).
Strong cloud networking knowledge, including VPC/VNet design, transit architectures, private connectivity, and zero-trust models.
Hands-on experience building and maintaining a full observability stack using open-source and/or commercial tooling.
Strong understanding of Git, DevSecOps principles, and the ability to embed security into platform and delivery pipelines.
Experience implementing GitOps practices using Argo CD or similar tools.
Scripting and automation proficiency in Python, Go, Bash, or similar.
Proven experience designing for scale, high availability, and disaster recovery across cloud environments.
Strong FinOps awareness—ability to architect for cost visibility, accountability, and optimization.
