Sr. Cloud Platform Engineer

Job DescriptionAmazing Career Moments Happen HereThe best work happens when smart people move fast, together. At Applied, we’ve spent 40+ years building technology that solves real problems for insurance professionals, and we’re not slowing down. We’re pushing what’s possible in Insurtech and doing it inside a culture built on trust, inclusion, and growth. The Role at a GlanceRole: Senior Cloud Platform EngineerTeam: Corporate ITLocation: RemoteOpportunity for ImpactWe’re looking for a Senior Cloud Platform Engineer to join our Corporate IT and make a real difference for the people who depend on our products every day. This role owns our cloud platform across Azure (primary) and Google Cloud Platform (GCP), with strong preferred experience in AWS. You will design, build, and operate cloud-native infrastructure at enterprise scale — including landing zone automation, Kubernetes platforms, secrets management, hybrid networking, and application delivery pipelines. If you thrive in a fast-paced, collaborative environment and are passionate about driving business outcomes through cloud excellence and AI-augmented engineering, we want to hear from you What You’ll DoCloud Infrastructure & ArchitectureDesign, build, and maintain scalable, secure, and highly available environments across Azure (primary) and GCP, with working knowledge of AWSOwn landing zone design and automation for both Azure and GCP — including organization hierarchy, resource naming standards, IAM governance, and policy enforcementDesign and operate production-grade Kubernetes environments (AKS and GKE) including multi-tenant cluster strategies, workload identity, pod security standards, autoscaling, resiliency, cost optimization, and Helm-based application deploymentBuild and operate the GCP Project Factory for standardized, automated provisioning of GCP projects, IAM bindings, service accounts, and GitLab integrationDefine and enforce cloud resource naming conventions, project labeling standards, and organizational tagging policies aligned with FinOps and cost allocation requirementsInfrastructure as Code & AutomationDevelop and maintain Terraform modules for Azure and GCP resource provisioning (AWS IaC a plus), ensuring reusable, version-controlled infrastructureBuild and manage CI/CD pipelines (GitLab CI, Azure DevOps, Cloud Build, or equivalent) for automated infrastructure and application deployment, including container build, Artifact Registry publishing, and Cloud Run / GKE delivery patternsOwn and evolve the Ansible AWX automation platform (currently running on AKS) — develop and maintain playbooks and roles to automate system configuration, application setup, and operational workflowsAdminister and evolve the CloudBolt Cloud Management Platform (CMP) for multi-cloud resource provisioning, governance, cost visibility, and self-service workflowsDevelop automation scripts using Python, Bash, or PowerShell to streamline operational tasksLeverage AI tools including Claude to accelerate Infrastructure as Code development, runbook creation, and documentation — and help the broader team adopt these workflows effectively Operations & ReliabilityImplement and manage monitoring, alerting, and observability solutions using Google Cloud Monitoring, Azure Monitor, Cloud Logging, SigNoz, and DataDogDevelop and maintain runbooks and playbooks to guide incident response; perform root cause analysis (RCA) and document findingsRespond to escalated infrastructure service desk tickets and resolve complex cloud-related issues Security & ComplianceDesign, operate, and secure enterprise-grade secrets management using HashiCorp Vault across cloud and hybrid environments, including Vault role management and CI/CD pipeline integrationImplement and enforce cloud security controls across Azure (Managed Identity, Private Endpoints, NSG) and GCP (VPC Service Controls, Workload Identity, Binary Authorization, Secret Manager), including workforce and workload identity federation with external IdPsPartner with the Information Security organization to identify, prioritize, and remediate cloud security vulnerabilities Hybrid ConnectivityDesign and maintain hybrid network connectivity between Azure and GCP, including VPN tunnels, FMC/FTD integration, and cross-cloud routingDesign and implement hub-spoke network topologies with multi-region CIDR schemas supporting phased regional expansionAssist network design including VPC architecture, Shared VPC, Cloud Interconnect, Cloud NAT, and firewall policy management across both platformsDisaster Recovery & Business ContinuityDefine and implement disaster recovery strategies for cloud-hosted workloads across Azure and GCPConduct periodic DR drills and document recovery time/point objectives (RTO/RPO)Collaboration & DocumentationCreate and maintain thorough infrastructure documentation, architecture diagrams, and operational guides — owning the cloud knowledge base for the teamCollaborate cross-functionally with application teams,