[Remote] Cloud Network Engineer
Note: The job is a remote job and is open to candidates in USA. AgreeYa Solutions is a global Systems Integrator seeking an experienced Cloud Network Engineer to design, implement, and operate cloud networking solutions across hybrid environments. The role emphasizes enterprise DNS architecture and requires practical experience managing DNS in AWS and Azure, along with solid networking fundamentals.
Responsibilities
- Design and manage cloud networking components:
- AWS VPC / Azure VNet
- Subnets, route tables, gateways
- Implement hybrid connectivity:
- Site-to-site VPN
- Client VPN
- Exposure to ExpressRoute / Direct Connect
- Configure and maintain:
- Route tables (static + dynamic)
- Basic BGP configurations (under guidance)
- Support traffic flow optimization and routing decisions
- Troubleshoot routing issues:
- Connectivity failures
- Misconfigured routes
- Latency or asymmetric routing
- Manage DNS zones, records, and configurations to ensure proper domain resolution and minimize downtime
- Implement DNS security best practices, such as DNSSEC, to protect DNS infrastructure
- Migrate the current Infrastructure code for DNS records to Terraform
- Utilizing CI/CD methodology, ensure changes are implemented via pipelines and can easily backout
- Enable self-service DNS change management using IaC and CI/CD automation
- Assist with automation of network provisioning and configuration
- Maintain version-controlled network configurations
- Monitor network/DNS health using cloud-native tools:
- Azure Monitor, AWS CloudWatch
- Investigate and resolve Level 2 network incidents
- Participate in on-call rotation (if applicable)
- Implement and maintain:
- NSGs / Security Groups
- Network ACLs
- Assist in enforcing segmentation and least-privilege access
- Support secure connectivity patterns (private endpoints, service endpoints)
- Maintain network diagrams and configuration documentation
- Develop and maintain runbooks for Cloud Network-related operations and incident response
- Identify opportunities for:
- Performance improvement
- Cost optimization (e.g., NAT gateway usage, egress traffic)
- Contribute to standardization of network design patterns
Skills
- Solid understanding of: TCP/IP, DNS, routing fundamentals, Subnetting and CIDR
- In-depth knowledge of DNS, DNSSEC, and BIND
- Experience with cloud-based DNS services such as AWS Route 53 and Azure DNS
- Knowledge of Linux Bind servers and Windows DNS
- Hands-on experience with at least one cloud platform: AWS or Azure
- Familiarity with Infrastructure as Code (IaC) tools like Terraform, and Ansible
- Strong troubleshooting and analytical thinking
- Ability to work independently on standard tasks
- Scripting/automation mindset
- Excellent communication and documentation skills
- Experience with hybrid cloud networking (on-prem to AWS/Azure)
- VPN configurations and troubleshooting
- Exposure to BGP routing concepts
- Load balancing
- AD-DNS, Route 53, Azure DNS
- Linux, Bind and SVN
- Certifications (or in progress): AWS Solutions Architect Associate
- AWS Certified Advanced Networking/ AZ-700
- CCNP/CCNA
Benefits
- Dental insurance
- Health insurance
- Vision insurance
Company Overview
Company H1B Sponsorship