DE-Cloud Platform Architect-IDP-GDSF02

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

Career Family       Cloud Platform Architect

Role Type  Full Time

The opportunity

Your role will be a Architect, or Senior Architect in the Cloud Engineering team. You will be responsible to be a part of the delivery of IT projects for our customers across the globe.

Key Description

Terraform & Azure

• Uses Terraform for AKS, networking, identities
• Understands Azure RBAC, Managed Identity, ACR
• Understands Azure Networking, Application Gateway, WAF

Helm & Kubernetes

• Can review vendor Helm charts
• Manages Helm upgrades, rollbacks, and values per environment
• Strong AKS troubleshooting (pods, networking, RBAC, upgrades)
• Can create/update manifests for Kubernetes resource deployment

DevOps / Pipelines

• Owns CI/CD pipelines for Helm deployments
• Enforces gated releases (non‑prod → prod)
• Understands security scans, approvals, and rollbacks
• Experience with GitHub

Vendor Governance

• Defines vendor vs platform responsibilities
• Reviews upgrades, enforces standards, manages incidents

Security & Operations

• Namespaced RBAC, secrets management
• Monitoring, logs, health checks, and rollback readiness

Communication & Administration

• Clear, concise communication between contractors and associates
• Participate in an on-call rotation that may fall outside of standard working hours
• Ability to implement production change requests during their assigned shift
• Strong decision-making skills and a self-motivator
• Participatory in Product meetings, providing valuable feedback
• On-Camera during Product team meetings
• Willingness to learn new skills specific to Data Quality to fully support the Product team down the road
• Ability to work US Business Day time for the first 4 weeks of the role.

Your key responsibilities

• Design, implement, and manage infrastructure on Azure using Terraform, including AKS clusters, networking components, and identity services.
• Administer and optimize Kubernetes workloads with a strong focus on AKS, including deployment, scaling, troubleshooting, and upgrades.
• Manage Helm-based application deployments, including reviewing vendor charts, handling upgrades/rollbacks, and maintaining environment-specific configurations.
• Own and maintain CI/CD pipelines (primarily GitHub-based) to support automated, secure, and reliable Helm deployments across environments.
• Enforce controlled release processes with proper gating from non-production to production environments.
• Monitor system health, logs, and performance, ensuring high availability and rollback readiness.
• Implement and enforce security best practices including RBAC, secrets management, and vulnerability scanning.
• Define and govern vendor engagement models, including responsibilities, upgrade reviews, incident management, and adherence to platform standards.
• Collaborate effectively with cross-functional teams, including vendors, contractors, and internal stakeholders, to ensure seamless delivery and operations.
• Participate in on-call rotations and support production deployments, including handling change requests outside standard working hours when required.
• Actively contribute to product discussions, providing technical insights and continuous improvement feedback.

Skills and attributes for success

• Experience 8 to 12 years
• Strong expertise in Terraform and Azure services such as AKS, Azure RBAC, Managed Identities, Azure Container Registry (ACR), and networking components (Application Gateway, WAF).
• Deep understanding of Kubernetes architecture, troubleshooting (pods, networking, RBAC), and cluster lifecycle management.
• Proficiency in Helm for managing Kubernetes deployments, including chart customization and environment-specific configurations.
• Solid experience in designing and managing CI/CD pipelines with GitHub, including release gating, approvals, and rollback strategies.
• Strong knowledge of cloud security practices, including secrets management, access control, and compliance enforcement.
• Ability to manage vendor relationships, enforce governance standards, and handle incident management effectively.
• Excellent analytical and problem-solving skills with a proactive, self-driven approach.
• Clear and concise communication skills, with the ability to interact effectively across technical and non-technical stakeholders.
• Strong decision-making capability and adaptability in a fast-paced, production-critical environment.
• Willingness to continuously learn and expand into areas such as Data Quality and product-specific domains.

To qualify for the role, you must have

• Proven experience working with Azure cloud services and infrastructure-as-code tools such as Terraform.
• Hands-on experience managing Kubernetes (preferably AKS) in production environments.
• Demonstrated experience with Helm, including chart management, upgrades, and rollbacks.  
• Practical experience in building and maintaining CI/CD pipelines using GitHub or similar platforms.
• Strong understanding of Azure networking, security (RBAC, Managed Identity), and container ecosystem (ACR).
• Experience implementing monitoring, logging, and operational readiness practices in cloud-native environments.
• Exposure to vendor management and governance in enterprise environments.
• Ability to support production systems, including participation in on-call rotations.
• Flexibility to align with US business hours initially (first 4 weeks) and collaborate with global teams.
• Bachelor’s degree in computer science, Information Technology, or a related field (or equivalent practical experience).

What we offer

EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across six locations – Argentina, China, India, the Philippines, Poland, and the UK – and with teams from all EY service lines, geographies, and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills, and insights that will stay with you throughout your career.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

EY | Building a better working world 

 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  

 
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  

 
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.