Senior Azure / AKS Platform Engineer (Terraform Expert | Advanced Networking | GitOps)

Role Overview

We are looking for a senior platform engineer with deep, hands-on experience designing enterprise Azure and AKS infrastructures at scale . This role is for engineers who build cloud platforms using advanced Terraform, next-generation Kubernetes networking, and GitOps automation . If you are used to solving complex infrastructure challenges and designing systems that must be secure, resilient, and production-critical, this role is for you.

Role Description

We are looking for a Senior Azure / AKS Platform Engineer with deep expertise in Terraform, advanced Kubernetes networking, and GitOps , to design, implement, and evolve enterprise-grade Azure Kubernetes Service (AKS) platforms.

The role involves working on highly advanced cloud-native infrastructure scenarios, including Infrastructure as Code at scale, zero-trust network architectures, and next-generation Kubernetes networking models.

Key responsibilities include:

• Design and maintenance of complex Terraform modules for Azure infrastructure, including advanced lifecycle management and multi-environment state strategies
• Extension of standard provider capabilities using AzAPI and custom integrations
• Design and implementation of advanced AKS networking architectures , including:
• Cilium eBPF dataplane (kube-proxy replacement)
• WireGuard inter-node encryption
• Azure Application Gateway for Containers (AGC)
• Migration from traditional Ingress Controllers (NGINX / Traefik) to Kubernetes Gateway API architectures integrated with native Azure load balancing
• Implementation of dynamic node provisioning strategies (Karpenter-based approaches or equivalent AKS dynamic scaling models) optimizing On-Demand vs Spot workloads
• Automation of DNS and identity integration , including:
• External-DNS (Azure Private DNS / GoDaddy)
• Azure Workload Identity integration (Key Vault, Storage, and platform services)
• Implementation of namespace isolation and Zero-Trust security models , including kernel-level security integrations and Network Policies enforcement
• Support GitOps delivery pipelines using Flux CD or ArgoCD
• Collaboration with architecture, security, and DevOps teams to ensure platform scalability, reliability, and security compliance

Qualifications

Required Skills

• 4–5+ years real production experience with Terraform on Azure
• Deep understanding of Azure infrastructure components, including:
• VNET architecture (Peering, Overlay models, Subnet Delegation)
• Managed Identities
• Private Endpoints / Private Link
• Traffic management and routing strategies
• Strong architectural and operational experience with Azure Kubernetes Service (AKS) , including control plane and data plane behavior
• Strong experience with advanced Kubernetes networking (CNI, dataplane behavior, service routing, network policies)
• Proven experience implementing GitOps delivery models using Flux CD or ArgoCD
• Strong troubleshooting capabilities in complex distributed cloud environments
• Ability to work autonomously in high-complexity enterprise environments

Preferred Skills

• Microsoft Certified: Azure Solutions Architect Expert
• HashiCorp Certified: Terraform Associate (or higher)
• Experience in multi-cluster or multi-region architectures
• Experience designing global traffic routing and failover strategies
• Experience in Zero-Trust infrastructure and platform security models

Company Description

Widesolutions.it supports enterprise clients in improving performance and competitiveness through deep engineering expertise and specialized technological knowledge.

Founded in 2004 by senior infrastructure and software specialists, the company delivers high-value solutions tailored to complex enterprise environments, with strong focus on cloud architecture, platform engineering, DevOps transformation, and secure infrastructure design.

Widesolutions.it continuously evolves by investing in advanced technologies, automation, and cloud-native engineering practices. The company’s core strength lies in the technical excellence, professional preparation, and problem-solving mindset of its engineers.