Azure Cloud Operations Engineer

Company Description

ENGEL, a global leader in the production of injection moulding machines and their automation, specializes in creating systems that manufacture plastic parts used in various everyday products such as cars, packaging, toothbrushes, smartphones, and toys. With nine production plants in Europe, North America, and Asia, and a presence in over 85 countries, ENGEL focuses on driving customer benefits through pioneering spirit and innovative strength. As a technology leader, ENGEL partners with renowned customers to foster a sustainably successful future.

Cloud Operations Engineer (ENGEL India IT Team)

Location:

Team:

Employment type:

Role Purpose

Cloud Operations Engineer

Responsibilities

Operate & Improve

• Operate

  Microsoft Entra ID

  (Global Adminlevel expertise expected) and

  Azure

  (Global Owner/Billing Admin expertise), focusing on

  governance, identity, subscriptions, policy, RBAC, PIM, cost controls

  , monitoring and incident/problem/change.
• Operate

  Azure Platform

  (Management Group / SubscriptionOwner Level), focussing on Policies, Governance, Monitoring and Operations

• Continuously monitor

  platform health and security posture; create and maintain

  dashboards and builtin reports

  in the Azure portal; raise improvements proactively.

• Plan and execute upgrades

  as vendors release updates; keep platform features and controls current and documented.

Best Practices, Policies & Processes

• Define, codify and maintain best practices

  for Azure and Entra ID (naming, tagging, RBAC, PIM, identity standards, network baselines, backup/DR, logging/monitoring).
• Contribute to

  developer guidelines

  for authentication/authorization (Entra ID app registrations, scopes/consent, token usage), CI/CD guardrails, and secure service connectivity.
• Write and maintain

  Runbooks, Workbooks, Standard Operating Procedure checklists

  , and

  operational guidelines

  aligned to

  ITIL

  and

  DevSecOps

  .

CSI, FinOps & Security

• Drive

  CSI

  cycles (review recommend implement measure document communicate).
• Partner with FinOps to

  analyze consumption

  , optimize cost, and prepare

  periodic cost & efficiency reviews

  .
• Work with the Security team to

  harden identity, access, posture and monitoring

  ; adopt tooling such as

  Tenable

  and

  Splunk

  where appropriate.

Collaboration & Support

• Collaborate with

  service owners, developers, platform services and security

  across

  Austria, Czech Republic, Germany, India

  and other ENGEL locations.
• Provide

  targeted L2/L3 support for developers

  (identity, pipelines, environment access, policies) and contribute to

  project work

  rolling out new solutions.

• Challenge assumptions

  constructively and help the team choose robust, scalable solutionsthen

  drive them to completion

  .

Required Skills & Experience

• Communication:

  Very good

  English

  (written/spoken); ability to work across time zones/cultures; crisp stakeholder updates. Open and proactively communicate with Colleagues, follow up and drive Changes.

• Security & process:

  Demonstrated

  DevSecOps

  mindset, Process oriented thinking;

  ITIL

  aligned operation (incident/change/problem, CMDB discipline).

• Ways of working:

  Proactive,

  security/stability/processoriented

  ; comfortable with

  longrunning upgrades

  and

  repetitive review work

  (CSI cadence);

  critical thinker

  who

  questions decisions

  constructively and

  sees things through

  .

• Azure administration (core)

  at

  tenant/subscription

  level: governance, policy, RBAC, PIM, cost management, monitoring, alerts, diagnostics, backup, disaster recovery, basic networking constructs (VNets/peering/VPN/LB concepts).

• Microsoft Entra ID

  at

  Global Admin

  level: identity governance, app registrations, enterprise apps, conditional access (concepts), PIM, groups/roles, MFA, SSPR, B2B/B2E patterns.

• Scripting & Automation: PowerShell

  ,

  Azure CLI

  ,

  REST APIs

  (Graph/management)

• Tooling & delivery:

  Git

  and

  Azure DevOps

  (repos, pipelines, boards); strong documentation habits.

• Kubernetes (AKS)

  Basics Operations, Patching, Upgrades, ACR Management

NicetoHave (Good to bring / nice to grow into)

• Azure networking

  deeper knowledge (routing, DNS, private endpoints, WAF, Firewall).

• Kafka, Databricks

  fundamentals.
• Experience with

  Tenable

  ,

  Splunk

  , Defender for Cloud/Identity, Purview, Sentinel.

• Knowedge in

  Terraform, Ansible, GitHub Actions, KQL

• .NET or Python

• Infrastructure as Code

  at scale, configuration management, policyascode.

• AWS

  Knowledge

DaytoDay Activities (Examples)

• Review Entra/Azure

  alerts

  and

  dashboards

  , triage deviations, raise/implement improvements.
• Use

  PowerShell/Azure CLI/REST

  to automate repetitive admin tasks, report generation and policy compliance checks.
• Evaluate

  vendor updates

  and plan rollouts with change windows and rollback paths.
• Run

  FinOps

  reviews (budget alerts, reservations, tag hygiene, cost anomalies) and propose optimizations.
• Support developers with

  app registration

  ,

  service principal

  ,

  RBAC

  and

  pipeline

  guardrails; improve docs and templates as you go.
• Prepare

  postimplementation reviews

  and CSI notes; publish outcomes and next steps.

Qualifications

• Bachelors degree in Computer Science/Engineering or equivalent experience.

• min 2 years

  in cloud operations/identity/platform engineering.
• Relevant certifications are a plus (e.g.,

  AZ104

  ,

  AZ305

  ,

  SC300

  ,

  SC100

  ).