Job Overview

We have an exciting opportunity for a Cloud Engineer to join our team at our Milwaukee (South Harbor District) or Chicago Headquarters (near O’Hare). Candidates must live within a commutable distance to one of these locations. We work onsite four days per week with one flexible day, creating the right balance between in-person collaboration and the flexibility professionals value. At Komatsu, we believe the best ideas come from working together—building relationships, driving innovation, and making an impact every day.

This is a cloud engineering role responsible for designing, implementing, automating, and operating modern cloud platforms, services and applications. The position requires hands-on expertise in cloud architecture, Infrastructure as Code (Bicep), GitHub/ADO CI/CD pipelines, and secure zero-downtime deployments across Azure PaaS and containerized environments. The engineer will design and manage solutions using AKS, ACA, App Service Environments, Azure Front Door, and Azure SQL/Cosmos DB. The role emphasizes Zero Trust security, governance, observability, cost optimization, and cost cleanup with clear reporting of measurable results. Working closely with development teams, the engineer will support microservices design, optimize cloud-native architectures, and leverage AI-driven automation to enable scalable, secure, and efficient cloud operations.

Key Job Responsibilities

• Architect, deploy, and operate end-to-end Azure cloud solutions leveraging services such as App Service Environments, Function Apps, App Services, Azure Kubernetes Service (AKS), Azure Container Apps (ACA), Azure Front Door, Application Gateway, API Management, and Key Vault, ensuring secure, scalable, and resilient designs.
• Lead hands-on deployment and configuration of core Azure data and application services, including Cosmos DB, Azure SQL, Azure Storage, and Application Insights, with automated provisioning, for high availability.
• Implement Infrastructure as Code (IaC) using Bicep, seamlessly integrated into GitHub Actions pipelines, to ensure consistent, auditable, and repeatable provisioning of infrastructure across all environments.
• Design and manage Docker and Kubernetes-based workloads, building containerized microservices, managing deployment manifests, Helm charts, and ingress configurations for AKS and ACA.
• Build and maintain fully automated CI/CD pipelines using GitHub Actions to support blue-green and canary deployments, automated testing, rollback strategies, and environment promotion workflows.
• Drive Azure DevOps to GitHub migration initiatives, modernizing CI/CD pipelines, defining reusable workflow templates, and aligning all deployment automation with enterprise governance and security standards.
• Architect and enforce zero-trust and zero-downtime deployment strategies, integrating private endpoints, managed identities, and advanced networking configurations for secure and continuous availability.
• Collaborate closely with developers, architects, security engineers, and vendors to ensure that all solutions are cloud-optimized, compliant, and aligned with DevSecOps best practices.
• Guide development teams on designing and deploying Azure-native, containerized applications, ensuring adherence to architectural principles, performance tuning, and cost efficiency.
• Implement and manage observability and health monitoring using Dynatrace, Azure Monitor, Application Insights, and Log Analytics, enabling proactive detection, diagnostics, and performance optimization.
• Integrate Wiz into CI/CD pipelines for code-to-cloud security posture management, vulnerability detection, and compliance validation during build and runtime.
• Optimize cloud resources through performance tuning, auto-scaling, reserved capacity, and policy-driven cost governance, ensuring efficient utilization and budget alignment.
• Maintain detailed architecture documentation, Bicep templates, runbooks, and operational guides to enable repeatability, transparency, and business continuity.
• Lead cloud modernization and automation initiatives, driving DevOps maturity through standardized pipelines, IaC, security automation, and environment governance.
• Act as a hands-on Cloud Engineer and DevOps, ensuring every deployment, configuration, and workflow follows best practices for security, reliability, and scalability across Azure platforms.

Qualifications/Requirements

• Bachelor’s degree in computer science, Information Technology, or related discipline.
• 5+ years of hands-on experience in Azure cloud engineering with a focus on PaaS, automation, and infrastructure reliability.
• Strong expertise in Azure App Services, Function Apps, Azure Kubernetes Service (AKS), Azure Container Apps (ACA), Azure Front Door, and Application Gateway.
• Practical experience deploying and managing Azure SQL, Cosmos DB, and Storage with automation and health monitoring.
• Work closely with development teams to design and implement microservices-based architectures, guide technology selection, and ensure scalable, secure, and cloud-native solution delivery aligned with enterprise standards.
• Proficiency in Infrastructure as Code (Bicep) integrated with GitHub Actions for automated, auditable deployments.
• Experience with cost optimization, scaling strategies, and governance using Azure policies and monitoring tools.
• Design and configure Azure Front Door for global load balancing, custom domain management, WAF policies, and zero-downtime routing to ensure high availability and performance.
• Implement and maintain Azure Application Gateway with end-to-end TLS, path-based routing, and WAF configurations to secure and optimize application traffic across environments.
• Experience designing and maintaining CI/CD pipelines in GitHub Actions and Azure DevOps, including blue-green and canary strategies.
• Skilled in Docker and Kubernetes, building and deploying containerized microservices with secure ingress and zero-downtime principles.
• Strong understanding of observability and monitoring using Dynatrace, Azure Monitor, and Application Insights.
• Knowledge of DevSecOps and security automation, integrating Wiz, and CodeQL for vulnerability management.
• Solid collaboration, communication, and problem-solving skills working with cross-functional teams in agile environments.
• Incorporating testing into all aspects of development from unit testing, functional testing, integration testing.
• Awareness of cloud security practices, including identity-based access controls, role-based access management, and secure coding standards.
• Communication and collaboration skills developed through participation in agile, cross-functional teams to align technical solutions with organizational objectives.
• Bonus: Manage and automate Azure API Management (APIM) deployments, including API publishing, versioning, policies, and CI/CD integration for consistent and secure API delivery.

Additional Information