Provide expert network management and troubleshooting services, drive automation using Infrastructure as Code, ensure system reliability and security, and analyze network traffic for performance and security improvements.

• Design, provision, and maintain secure and scalable cloud infrastructure on AWS, utilizing services like EKS (Elastic Kubernetes Service) and ECS (Elastic Container Service). • Build, maintain, and optimize robust CI/CD pipelines using GitLab CI and Azure DevOps to ensure smooth and automated software delivery. • Utilize Terraform for provisioning and managing cloud resources and Ansible for configuration management and application deployment. • Write high-quality, maintainable code for automation, tooling, and system integrations using Python, Java, or Golang. • Monitor system performance, troubleshoot complex infrastructure issues, and implement proactive solutions to ensure high availability and minimal downtime. • Work closely with our .NET development teams to streamline the development lifecycle, optimize application architecture for the cloud, and foster a culture of DevOps best practices.

• Define the APAC infrastructure architecture. This isn't a maintenance role. You'll design and own the Azure footprint for our APAC businesses end-to-end — compute, networking, storage, identity, containerisation, and application hosting — and set the patterns the region builds on. New regional environments for our Philippines and India businesses are live work from day one. • Own cross-region connectivity. Take ownership of the network paths connecting our cloud environments to local partners and HQ: site-to-site VPN tunnels, partner IP allow-listing, edge and CDN custom domains, certificate management, and the DNS and TLS hygiene that keeps customer-facing endpoints healthy. • Drive the migration and hardening programs. Lead infrastructure migrations across clouds safely and at scale — including moving sensitive customer data — and own the APAC side of our PCI-DSS hardening program. These are active, in-flight programs, not future roadmap items. • Lead incident response for the region. When something breaks during APAC hours, you run the response — calmly, methodically, and all the way through. That means root cause analysis, blameless post-mortems, and durable fixes. The on-call posture is follow-the-sun: APAC business hours, not 3am pages. • Operate and improve the platform over time. Keep hardening reliability, deploy-pipeline confidence, alert quality, and Azure spend right-sizing. Security and compliance are baked into how we operate — you'll partner with those teams on PCI-DSS scope, vulnerability scanning, least-privilege access, and secret management. • Raise the bar across the team. Through code, runbooks, architecture decisions, and peer collaboration with our US-hours Platform engineers, your work sets the standard for how infrastructure gets done in the region. • Work AI-first. Use AI tooling — coding assistants, observability assistants, IaC helpers — to investigate faster, cut toil, and ship more reliable work. Our Platform team is actively reshaping how engineering and ops are done with AI, and we expect you to bring that same instinct.

• Review, improve, and help design secure architectures across AWS and Microsoft Azure environments. • Implement and maintain cloud security controls related to IAM, network segmentation, encryption, logging, key management, backups, secure configuration, and access control. • Identify and remediate cloud misconfigurations, excessive permissions, insecure storage, public exposure, weak logging, and missing security controls. • Partner with engineering and infrastructure teams to integrate security checks and DevSecOps practices into CI/CD workflows. • Operate and improve vulnerability management processes, including scanning, validation, prioritization, remediation tracking, reporting, and exception review. • Use security monitoring and telemetry platforms to support alert triage, endpoint visibility, log review, investigation, and detection improvement. • Support compliance monitoring, evidence collection, control mapping, and audit readiness activities using Vanta and Compyl. • Map technical controls to compliance requirements, internal policies, customer security expectations, and audit evidence needs. • Participate in threat modeling and security reviews for new applications, infrastructure changes, cloud deployments, and third-party integrations. • Support incident response activities, including alert investigation, log analysis, evidence gathering, containment recommendations, and post-incident improvements. • Improve identity and access management practices, including least privilege, MFA, conditional access, service principals, role reviews, privileged access controls, and access certification support. • Create and maintain security documentation, cloud security standards, control narratives, runbooks, remediation procedures, and architecture diagrams. • Support implementation and maintenance of security benchmarks and frameworks such as CIS, NIST, SOC 2, ISO 27001, HIPAA, FedRAMP Moderate, and HITRUST. • Translate security and compliance requirements into practical technical tasks for engineering, IT, and infrastructure teams.