[Remote] Cloud Network Engineer
Note: The job is a remote job and is open to candidates in USA. AgreeYa is a global Systems Integrator seeking an experienced Cloud Network Engineer with hands-on DNS expertise. The role focuses on designing, implementing, and operating cloud networking solutions across hybrid environments, with particular emphasis on DNS architecture and traffic management.
Responsibilities
- Design and manage cloud networking components:
- AWS VPC / Azure VNet
- Subnets, route tables, gateways
- Implement hybrid connectivity:
- Site-to-site VPN
- Client VPN
- Exposure to ExpressRoute / Direct Connect
- Configure and maintain:
- Route tables (static + dynamic)
- Basic BGP configurations (under guidance)
- Support traffic flow optimization and routing decisions
- Troubleshoot routing issues:
- Connectivity failures
- Misconfigured routes
- Latency or asymmetric routing
- Manage DNS zones, records, and configurations to ensure proper domain resolution and minimize downtime
- Implement DNS security best practices, such as DNSSEC, to protect DNS infrastructure
- Migrate the current Infrastructure code for DNS records to Terraform
- Utilizing CI/CD methodology, ensure changes are implemented via pipelines and can eaasily backout
- Enable self-service DNS change management using IaC and CI/CD automation
- Assist with automation of network provisioning and configuration
- Maintain version-controlled network configurations
- Monitor network/DNShealth using cloud-native tools:
- Azure Monitor, AWS CloudWatch
- Investigate and resolve Level 2 network incidents
- Participate in on-call rotation (if applicable)
- Implement and maintain:
- NSGs / Security Groups
- Network ACLs
- Assist in enforcing segmentation and least-privilege access
- Support secure connectivity patterns (private endpoints, service endpoints)
- Maintain network diagrams and configuration documentation
- Develop and maintain runbooks for Cloud Network-related operations and incident response
- Identify opportunities for:
- Performance improvement
- Cost optimization (e.g., NAT gateway usage, egress traffic)
- Contribute to standardization of network design patterns
Skills
- Solid understanding of: TCP/IP, DNS, routing fundamentals, Subnetting and CIDR
- In-depth knowledge of DNS, DNSSEC, and BIND
- Experience with cloud-based DNS services such as AWS Route 53 and Azure DNS
- Knowledge of Linux Bind servers and Windows DNS
- Hands-on experience with at least one cloud platform: AWS or Azure
- Familiarity with Infrastructure as Code (IaC) tools like Terraform, and Ansible
- Strong troubleshooting and analytical thinking
- Ability to work independently on standard tasks
- Scripting/automation mindset
- Excellent communication and documentation skills
- Experience with hybrid cloud networking (on-prem to AWS/Azure)
- VPN configurations and troubleshooting
- Exposure to BGP routing concepts
- Load balancing
- AD-DNS, Route 53, Azure DNS
- Linux, Bind and SVN
Company Overview
Company H1B Sponsorship