DevOPS/Cloud Engineer

Project Overview

The project supports Common Components by designing, building, and operating cloud and hybrid infrastructure to enable digital products, including CI/CD automation, monitoring, and security controls across cloud and on-prem environments.

Key Responsibilities

• Assess frameworks, platforms, and tech stacks to assist in creating cloud-based solutions
• Design, build, and support cloud environments to create digital products
• Design, build, develop, and administer CI/CD pipelines to support continuous development and deployment
• Monitor and assess application performance in cloud environments to ensure availability
• Identify, analyze, and resolve infrastructure vulnerabilities and application deployment issues
• Create, test, and implement safeguards to maintain data integrity and protect against unauthorized access
• Manage and support identity and access controls
• Perform system maintenance, upgrades, and performance optimization
• Monitor system availability, performance, reliability, and capacity
• Coordinate infrastructure and application releases across DevOps, platform, and business teams
• Plan, schedule, and communicate releases, maintenance windows, and deployment activities
• Ensure release activities follow change management, approval workflows, and rollback procedures
• Facilitate release readiness reviews, go/no-go decisions, and post-release validation
• Maintain release calendars, deployment records, approvals, and change artifacts
• Support issue triage, incident response, and post-release root cause analysis
• Design, implement, and maintain centralized audit logging across cloud, on-prem, and DevOps platforms
• Ensure audit logs are collected, retained, protected, and searchable in accordance with requirements
• Support internal and external audits by providing evidence, reports, and log analysis
• Support vulnerability management, system hardening, and remediation of audit findings
• Create and maintain standard operating procedures, technical documentation, and audit evidence information

Qualifications & Requirements

REQUIRED

• Must be able to work 5 days onsite per week
• Design, deploy, and maintain hybrid infrastructure environments across public cloud platforms such as Azure, Amazon Web Services (AWS), Linux solutions, Software as a Service (SaaS), Commercial Off-the-Shelf (COTS) solutions and on‑premises systems
• Manage and support identity and access controls using Active Directory, Microsoft Entra ID, etc.
• Familiar with setting up and maintaining development environments using tools like Azure DevOps, JIRA, Confluence, and Maven
• Ability to design, build, and administer CI/CD pipelines for continuous development and deployment

EVALUATION CRITERIA

Cloud and Infrastructure - 40%

• Design , deploy, and maintain hybrid infrastructure environments across public cloud platforms such as Azure, Amazon Web Services (AWS), Linux solutions, Software as a Service (SaaS), Commercial Off-the-Shelf (COTS) solutions and on‑premises systems
• Proficiency with maintaining Windows and/or Linux servers, virtualization platforms, storage and core network services
• Assessment of frameworks, platforms, and tech stacks for creating cloud-based solutions.
• Experience in designing and building cloud environments.
• Knowledge of scripting languages (Python, Bash, PHP, Java, JavaScript, Node) and build tools (Git, Ansible, Chef, Puppet).
• Building and using APIs or other integration endpoints.
• Manage and support identity and access controls using Active Directory, Microsoft Entra ID, etc.
• Perform system maintenance, upgrades and performance optimization.
• Monitor system availability, performance, reliability, and capacity.
• Coordinate infrastructure and application releases across DevOps, platform, and business teams
• Plan, schedule, and communicate releases, maintenance windows, and deployment activities
• Ensure release activities follow change management, approval workflows, and rollback procedures
• Facilitate release readiness reviews, go/no-go decisions, and post-release validation
• Maintain release calendars, deployment records, approvals, and change artifacts
• Support issue triage, incident response, and post-release root cause analysis

DevOps & Automation - 20%

• Familiar with setting up and maintaining development environments using tools like Azure DevOps, JIRA, Confluence, and Maven
• Ability to design, build, and administer CI/CD pipelines for continuous development and deployment.
• Automate operational and compliance-related tasks using PowerShell, Bash, or Python
• Experience with Infrastructure as Code and version-controlled deployments
• Support containerized platforms (Docker, Kubernetes, AKS/EKS) as applicable
• Embed logging, monitoring, and auditability into infrastructure and deployment pipelines
• Mentor junior team members on operational discipline, automation, and audit readiness

Security and Compliance - 20%

• Apply security best practices across infrastructure and DevOps pipelines (e.g., least privilege, secrets management, secure logging, etc.) and ability adapt to security approaches in alignment with the Government of Ontario’s corporate policies (e.g., I&IT Directives and Policies, Government of Ontario Information and Technology Standards, Responsible Use of Artificial Intelligence Directive, etc.).
• Proficiency in Radware, Dynatrace, Splunk, and other security tools to manage security and audit logs.
• Embed logging, monitoring, and audibility into infrastructure and deployment guidelines.
• Understanding of industry web, architectural, and security standards.
• Identification and resolution of infrastructure vulnerabilities.
• Design, implement, and maintain centralized audit logging across cloud, on‑prem, and DevOps platforms.
• Ensure audit logs are collected, retained, protected, and searchable in accordance with organizational and regulatory requirements.
• Manage and monitor logs for:
• Infrastructure changes (cloud resources, servers, network devices)
• Access and authentication events (IAM, AD, privileged access)
• CI/CD pipelines and deployment activities
• Integrate logging platforms such as:
• Azure Monitor / Log Analytics, AWS CloudTrail / CloudWatch, SIEM solutions, or ELK stacks
• Support internal and external audits by providing evidence, reports, and log analysis
• Partner with security, risk, and compliance teams to enforce logging standards, retention policies, and alerting
• Assist with forensic investigations and incident reviews by analyzing audit trails and change records
• Support vulnerability management, system hardening, and audit findings remediation

Project Management Skills - 15%

• Effective project planning, scope definition, and resource allocation.
• Risk management, including risk assessment and mitigation strategies.
• Stakeholder communication and coordination of cross-functional teams.
• Support planning efforts such as roadmap development, modernization initiatives, and investment decisions.

General Skills - 5%

• Create and maintain Standard Operating Procedure, technical documentation, and audit evidence information.
• Document logging standards, release procedures, and operational controls.
• Collaborate closely with DevOps, security, compliance and application teams.
• Demonstrate a strong communication skills to translate complex technical concepts into clear, concise explanations for non-technical and executive audiences

Key Skills & Competencies

AWS, Azure, Google Cloud, Oracle Cloud, OCI, Linux, Windows Server, CentOS, Ubuntu, CoreOS, LAMP, MEAN, Drupal, Elasticsearch, JIRA, Confluence, Maven, Jenkins, Azure DevOps, Python, Bash, PHP, Java, JavaScript, Node, PowerShell, Git, Ansible, Chef, Puppet, Docker, Kubernetes, AKS, EKS, CI/CD, Infrastructure as Code, APIs, Active Directory, Microsoft Entra ID, Radware, Dynatrace, Splunk, Azure Monitor, Log Analytics, AWS CloudTrail, CloudWatch, SIEM, ELK Stack