About the Role
We are seeking an experienced Azure Managed Cloud Engineer L3 to support and manage a complex, security-focused Microsoft Azure environment under Rackspace’s managed services portfolio for ADGM.
The ideal candidate will have strong hands-on experience in Microsoft Azure infrastructure, networking, PaaS services, and security architecture—particularly in highly regulated environments where traffic inspection, private connectivity, and layered security controls are mandatory.
Key Responsibilities
- Manage and support a production Azure environment hosting critical financial workloads.
- Operate and optimize Azure compute services including:
- Azure Kubernetes Service (AKS)
- Azure App Services
- Azure Logic Apps
- Azure Function Apps
- Azure Virtual Machines (IaaS)
- Support and manage Azure data services including:
- Azure PostgreSQL
- Azure Cosmos DB
- Azure SQL Database
- Azure Storage Accounts
- Maintain and troubleshoot secure network architecture where:
- All Azure traffic is routed via NVAs using User Defined Routes (UDRs).
- Network Virtual Appliances (NVAs) perform centralized traffic inspection.
- Manage Azure Application Gateway (WAF + L7 Load Balancer) used to securely expose applications externally.
- Design, configure, and troubleshoot Private Endpoints and Private DNS Zones for all PaaS services.
- Ensure secure east-west and north-south traffic flow within a hub-and-spoke topology.
- Support incident management, root cause analysis, and performance optimization.
- Implement and maintain monitoring, logging, and operational excellence standards.
- Work closely with ADGM stakeholders and Rackspace internal teams to deliver SLA-driven managed services.
Required Technical Skills
- Azure Compute
- Strong hands-on experience with AKS (networking, ingress, scaling, troubleshooting).
- Experience managing Azure App Services, Logic Apps, and Function Apps in production.
- Solid understanding of IaaS VM management and OS-level troubleshooting.
- Azure Data Services
- Operational experience with Azure PostgreSQL, Cosmos DB, Azure SQL.
- Backup, HA/DR concepts, performance tuning, and connectivity troubleshooting.
- Understanding of storage accounts (Blob, File, performance tiers, security).
- Networking & Security (Critical)
- Deep understanding of:
- Hub-and-spoke Azure networking models.
- User Defined Routes (UDRs).
- Network Virtual Appliances (NVAs).
- Experience managing Azure Application Gateway with WAF policies.
- Strong practical experience with:
- Private Endpoints
- Private DNS Zones
- Service endpoint vs Private Endpoint architecture decisions
- PaaS isolation and secure connectivity patterns
- Security & Compliance
- Understanding of enterprise-grade security controls in regulated environments.
- Knowledge of zero-trust networking concepts.
- Familiarity with Azure RBAC, Managed Identities, and Key Vault integrations.
Preferred Qualifications
- Microsoft Azure certifications (AZ-104, AZ-305, or equivalent).
- Experience in financial services or regulated environments.
- Familiarity with ITIL-based managed service operations. Patch, Incident or Change Management.
- Scripting/automation skills (PowerShell, Azure CLI, Terraform).
What We’re Looking For
- Strong troubleshooting mindset across networking, compute, and platform services.
- Ability to understand and visualize complex traffic flows.
- Clear communication skills for working with enterprise stakeholders.
- Experience supporting production environments with strict SLAs.
- Ownership mentality and proactive operational thinking.
- If you are passionate about Azure, secure architecture, and operating mission-critical environments, we would love to hear from you.