Alibaba Cloud Logo Vector Jobs in Usa

Machine Learning Engineer | Python | Pytorch | Distributed Training | Optimisation | GPU | Hybrid, San Jose, CA

Title: Machine Learning Engineer

Location: San Jose, CA

Responsibilities:

• Productize and optimize models from Research into reliable, performant, and cost-efficient services with clear SLOs (latency, availability, cost).
• Scale training across nodes/GPUs (DDP/FSDP/ZeRO, pipeline/tensor parallelism) and own throughput/time-to-train using profiling and optimization.
• Implement model-efficiency techniques (quantization, distillation, pruning, KV-cache, Flash Attention) for training and inference without materially degrading quality.
• Build and maintain model-serving systems (vLLM/Triton/TGI/ONNX/TensorRT/AITemplate) with batching, streaming, caching, and memory management.
• Integrate with vector/feature stores and data pipelines (FAISS/Milvus/Pinecone/pgvector; Parquet/Delta) as needed for production.
• Define and track performance and cost KPIs; run continuous improvement loops and capacity planning.
• Partner with ML Ops on CI/CD, telemetry/observability, model registries; partner with Scientists on reproducible handoffs and evaluations.

Educational Qualifications:

• Bachelors in computer science, Electrical/Computer Engineering, or a related field required; Master’s preferred (or equivalent industry experience).
• Strong systems/ML engineering with exposure to distributed training and inference optimization.

Industry Experience:

• 3–5 years in ML/AI engineering roles owning training and/or serving in production at scale.
• Demonstrated success delivering high-throughput, low-latency ML services with reliability and cost improvements.
• Experience collaborating across Research, Platform/Infra, Data, and Product functions.

Technical Skills:

• Familiarity with deep learning frameworks: PyTorch (primary), TensorFlow.
• Exposure to large model training techniques (DDP, FSDP, ZeRO, pipeline/tensor parallelism); distributed training experience a plus
• Optimization: experience profiling and optimizing code execution and model inference: (PTQ/QAT/AWQ/GPTQ), pruning, distillation, KV-cache optimization, Flash Attention
• Scalable serving: autoscaling, load balancing, streaming, batching, caching; collaboration with platform engineers.
• Data & storage: SQL/NoSQL, vector stores (FAISS/Milvus/Pinecone/pgvector), Parquet/Delta, object stores.
• Write performant, maintainable code
• Understanding of the full ML lifecycle: data collection, model training, deployment, inference, optimization, and evaluation.

Machine Learning Engineer | Python | Pytorch | Distributed Training | Optimisation | GPU | Hybrid, San Jose, CA

*At Securian Financial the internal position title is Infrastructure Dir."

Mission

"To lead the engineering discipline that ensures Securian's technology platforms and cloud services are built and operated with uncompromising resilience, performance, and quality. This role drives the design and automation of fault-tolerant, high-availability architectures across AWS, Azure, and GCP-ensuring the enterprise meets resiliency, scalability, and efficiency expectations at every layer of technology."

Positioning

The Director of Resilience Engineering and Quality Leader is both a strategic peer and technical counterpart to the Infrastructure & Reliability Engineering Leader.

This role provides bench depth and succession coverage for REO's most technically complex domains while driving innovation in reliability, resilience, and performance practices.

• Strategic influence: Shapes cloud reliability, quality engineering, and resilience strategy across REO and Architecture domains.

• Operational authority: Leads Sr. Managers and Managers who own the execution of quality, resilience, and performance engineering capabilities.

• Enterprise collaboration: Works hand-in-hand with Technology, Solution, Business, Data, and Enterprise Architects to embed reliability and resilience as core architecture principles.

Scope of Accountability

Resilience Engineering & Cloud Reliability

• Architect and validate fault-tolerant, regionally resilient architectures across AWS, Azure, and GCP.

• Own resilience automation, chaos testing, and IaC-based recovery validation.

• Lead cross-cloud reliability design reviews and failure-mode analyses for critical systems.

Quality Engineering & Continuous Testing

• Define enterprise-wide quality engineering strategy integrated into CI/CD pipelines.

• Drive automation-first testing (functional, non-functional, performance, resilience).

• Embed observability-driven quality validation and contract testing across services.

Performance, Capacity & Efficiency Engineering

• Oversee predictive capacity planning, scaling automation, and cost/efficiency optimization (FinOps/GreenOps).

• Partner with Platform & Infrastructure teams to tune performance across application and platform layers.

• Measure and report on performance SLIs/SLAs aligned to REO's Reliability Metrics framework.

Cross-Domain Architecture Collaboration

• Partner with Enterprise Architects to codify resilience and reliability standards in technology blueprints.

• Collaborate with Technology & Solution Architects to design service reliability into delivery architectures.

• Engage Data Architects for data resilience, replication, and pipeline reliability.

• Work with Business Architects to align technical reliability goals with critical business outcomes.

Leadership & Talent Development

• Lead a team of Sr. Managers and Managers, fostering a high-performance, hands-on engineering culture.

• Build and mentor top-tier technical talent in cloud reliability, resilience, and quality automation.

• Partner with HR and REO Enablement to develop succession plans and technical competency frameworks.

Core Technical Competencies

• AWS (primary) - Multi-account design, HA architecture, region failover, resilience automation, Terraform/CDK/CloudFormation.

• Azure & GCP (secondary) - Compute, networking, and reliability constructs; hybrid cloud design and failover integration.

• Infrastructure as Code (IaC) - Deep proficiency in Terraform, policy-as-code (OPA/Conftest), drift detection, pipeline integration.

• Reliability & Chaos Engineering - AWS Fault Injection Simulator, Gremlin, steady-state hypothesis design.

• Observability & Quality Automation - OpenTelemetry, Prometheus, CloudWatch, K6, Gatling; CI/CD quality gates and dashboards.

• Performance Engineering - Load, stress, and soak testing automation; performance profiling and SLO alignment.

• Disaster Recovery Automation - Cross-region orchestration, IaC-driven DR runs, replication validation.

• FinOps/GreenOps - Cloud cost and efficiency automation, carbon-aware scaling policies.

Leadership Competencies

• Strategic Technical Leadership: Operates at the intersection of deep engineering and executive strategy.

• Multi-Domain Collaborator: Integrates reliability and resilience across architecture, operations, and business domains.

• Talent Multiplier: Develops and empowers senior managers, fostering engineering mastery and innovation.

• Credible Technical Authority: Trusted peer to Infrastructure & Reliability Engineering; capable of leading architecture reviews and executive briefings.

• Change Champion: Drives transformation of reliability practices across platforms, pipelines, and teams.

Qualifications & Experience

• 12+ years in cloud engineering, reliability, or platform leadership roles.

• 5+ years leading Sr. Managers/Managers in technical domains.

• Proven expertise across AWS, with working knowledge of Azure and GCP.

• Experience with multi-cloud governance, DR design, IaC at scale, and reliability automation.

• Strong understanding of observability, SRE principles, and REO/ITIL-aligned reliability frameworks.

• Certifications:

  • Required: AWS Certified Solutions Architect - Professional

  • Preferred: AWS DevOps Engineer, Azure Solutions Architect Expert, Google Professional Cloud Architect

Success Metrics

• 99.9% availability maintained for Tier-1 workloads.

• 100% coverage of DR automation for Tier-1 services.

• 25% annual increase in automated quality/test coverage.

• 15% annual improvement in resource efficiency and cost performance.

• Documented resilience participation across all enterprise architecture blueprints.

• Positive "technical peer readiness" and succession rating from Head of REO.

Summary Value Proposition

This Director role blends deep AWS reliability engineering expertise, multi-cloud technical breadth, and leadership scale.

It ensures REO maintains both technical depth and leadership redundancy, and it strengthens the bridge between engineering execution and enterprise architecture alignment.

#LI-hybrid **This position will be in a hybrid working arrangement.**

Securian Financial believes in hybrid work as an integral part of our culture. Associates get the benefit of working both virtually and in our offices. If you're in a commutable distance (90 minutes), you'll join us 3 days each week in our offices to collaborate and build relationships. Our policy allows flexibility for the reality of business and personal schedules.

The estimated base pay range for this job is:

Pay may vary depending on job-related factors and individual experience, skills, knowledge, etc. More information on base pay and incentive pay (if applicable) can be discussed with a member of the Securian Financial Talent Acquisition team.

Be you. With us. At Securian Financial, we understand that attracting top talent means offering more than just a job - it means providing a rewarding and fulfilling career. As a valued member of our high-performing team, we want you to connect with your work, your relationships and your community. Enjoy our comprehensive range of benefits designed to enhance your professional growth, well-being and work-life balance, including the advantages listed here:

Paid time off:

• We want you to take time off for what matters most to you. Our PTO program provides flexibility for associates to take meaningful time away from work to relax, recharge and spend time doing what's important to them. And Securian Financial rewards associates for their service by providing additional PTO the longer you stay at Securian.

• Leave programs: Securian's flexible leave programs allow time off from work for parental leave, caregiver leave for family members, bereavement and military leave.

• Holidays: Securian provides nine company paid holidays.

Company-funded pension plan and a 401(k) retirement plan: Share in the success of our company. Securian's 401(k) company contribution is tied to our performance up to 10 percent of eligible earnings, with a target of 5 percent. The amount is based on company results compared to goals related to earnings, sales and service.

Health insurance: From the first day of employment, associates and their eligible family members - including spouses, domestic partners and children - are eligible for medical, dental and vision coverage.

Volunteer time: We know the importance of community. Through company-sponsored events, volunteer paid time off, a dollar-for-dollar matching gift program and more, we encourage you to support organizations important to you.

Associate Resource Groups: Build connections, be yourself and develop meaningful relationships at work through associate-led ARGs. Dedicated groups focus on a variety of interests and affinities, including:

• Mental Wellness and Disability

• Pride at Securian Financial

• Securian Young Professionals Network

• Securian Multicultural Network

• Securian Women and Allies Network

• Servicemember Associate Resource Group

For more information regarding Securian's benefits, please review our Benefits page.

This information is not intended to explain all the provisions of coverage available under these plans. In all cases, the plan document dictates coverage and provisions.

Securian Financial Group, Inc. does not discriminate based on race, color, religion, national origin, sex, gender, gender identity, sexual orientation, age, marital or familial status, pregnancy, disability, genetic information, political affiliation, veteran status, status in regard to public assistance or any other protected status. If you are a job seeker with a disability and require an accommodation to apply for one of our jobs, please contact us by email at , by telephone (voice), or 711 (Relay/TTY).

To view our privacy statement click here

To view our legal statement click here

Must be local to TX

Azure Cloud Architect

Role Overview

The Cloud Architect will be responsible for designing, governing, and guiding the implementation of enterprise-scale Azure cloud environments. This role provides technical leadership across architecture, security, governance, networking, and Infrastructure-as-Code (IaC), ensuring scalable, secure, and well-governed cloud platforms.

Key Responsibilities

• Lead cloud architecture design and define target-state Azure environments
• Establish and enforce standards for governance, security, networking, and resource organization
• Guide implementation teams to ensure alignment with architectural principles and best practices
• Define and implement Azure landing zone architectures and management group structures
• Design and review identity, access control, and security models
• Define Infrastructure-as-Code (IaC) standards and deployment patterns
• Conduct architecture reviews and resolve complex technical challenges
• Collaborate with stakeholders to translate business requirements into technical solutions
• Ensure compliance with enterprise security and regulatory requirements
• Support migration, modernization, and optimization initiatives

Required Skills & Experience

• Strong experience in Azure cloud architecture and enterprise cloud design
• Expertise in Azure services including networking, identity, compute, and storage
• Deep understanding of Azure governance (Policy, RBAC, management groups)
• Experience with hub-and-spoke networking and secure cloud architectures
• Hands-on experience with Infrastructure-as-Code (Terraform)
• Experience with CI/CD and DevOps practices in cloud environments
• Strong knowledge of cloud security principles and best practices
• Ability to lead technical teams and drive architectural decisions

Preferred Qualifications

• Azure certifications (e.g., Azure Solutions Architect Expert)
• Experience in regulated or enterprise environments
• Familiarity with cost governance and operational best practices

Key Competencies

• Strong problem-solving and decision-making skills
• Effective stakeholder communication and collaboration
• Ability to balance technical depth with business outcomes
• Leadership and mentoring capability

Role Summary

This role serves as the technical authority for cloud architecture, ensuring that cloud environments are secure, scalable, governed, and aligned to enterprise standards while enabling efficient delivery and innovation.

Channel Manager

Please Note:

We are not accepting outreach from external recruiters or agencies for this role.

Location: Brooklyn, NY (Hybrid)

Experience: 5+ years in Channel Sales, Partnerships, or Cloud Ecosystem Management (AWS/GCP/Azure preferred)

About North

The public cloud is rapidly evolving, with businesses investing over $200B annually in cloud infrastructure. As AI accelerates demand for scalable compute, cloud costs are rising fast, yet most teams still manage them in spreadsheets.

At North, we’re building the next-generation cloud spend management platform. We give companies real-time visibility, control, and automation over their cloud finances, so they can grow efficiently without waste.

We work across AWS, GCP, and soon Azure, helping technical and finance teams optimize commitments, allocate costs, forecast spend, and automate savings. Backed by top-tier investors and trusted by customers like Brave, The New York Public Library, and SumUp, we’re assembling a world-class team to redefine how businesses manage cloud infrastructure.

About the Role

We’re hiring our first Channel Manager to build and scale North’s reseller and distribution strategy.

This role will own entry, onboarding, and relationship management for cloud resellers, distributors, and strategic ecosystem partners. You’ll design how North works with channel partners from the ground up, defining incentives, enablement, deal flow processes, and ongoing relationship strategy.

This is a high-ownership, builder role. You won’t inherit a mature channel machine, you’ll create it.

You’ll work closely with the CEO, GTM leadership, Sales, and Product to ensure our partner ecosystem becomes a scalable revenue engine.

What You’ll Do

Build the Channel Motion (0→1)

• Design and implement North’s reseller and distribution strategy.
• Identify and prioritize ideal partner profiles (AWS/GCP/Azure resellers, MSPs, FinOps consultants, distributors).
• Define partner tiers, incentives, and compensation structures.
• Establish onboarding, enablement, and certification frameworks.

Partner Entry & Activation

• Recruit and onboard new channel partners.
• Build training materials and sales enablement resources.
• Ensure partners understand North’s product, positioning, and differentiation.
• Drive first deals through new partners to validate and refine the model.

Relationship Management

• Serve as the primary point of contact for reseller and distribution partners.
• Conduct quarterly business reviews (QBRs) and pipeline check-ins.
• Track partner-sourced revenue and performance metrics.
• Maintain high-touch strategic relationships while building scalable systems.

Revenue & Deal Support

• Collaborate with Sales on partner-sourced and partner-assisted deals.
• Develop clear rules of engagement and processes for deal and relationship ownership and work cross-functionally with GTM to ensure smooth lead routing and attribution.

Strategic Ecosystem Development

• Deepen relationships within AWS, GCP, and Azure partner ecosystems.
• Identify co-marketing and co-selling opportunities.
• Represent North at ecosystem events, partner summits, and industry conferences.

What We’re Looking For

• 5+ years in channel sales, partnerships, or ecosystem management.
• Experience working within AWS, GCP, or Azure partner ecosystems.
• Experience building or scaling a reseller/channel program. Strong understanding of cloud infrastructure and SaaS revenue models.
• Comfortable owning revenue targets and partner-sourced pipeline.
• Builder mindset — comfortable operating without rigid structure.
• Excellent relationship management and negotiation skills.
• Strong operational discipline with the ability to design repeatable systems.
• Strong network within the cloud reseller ecosystem.
• Based in NYC and excited to collaborate in-office (Hybrid, Dumbo Brooklyn).

Nice to Have

• Experience at AWS, GCP, Azure, or a major cloud reseller/distributor.
• Background in FinOps, DevOps tooling, or cloud cost optimization.
• Experience working in Series A–C SaaS environments.
• Familiarity with marketplace motions (AWS Marketplace, etc.).
• Experience building partner compensation models from scratch.

Why This Role Matters

Channel will be a core revenue lever for North.

As cloud spend grows and companies seek cost optimization partners, resellers and ecosystem relationships will play a critical role in how customers discover and adopt North.

You’ll help define how we scale beyond direct sales, turning strategic partnerships into a predictable growth engine.

Work Setup

Hybrid role based in New York City, with an office in Dumbo, Brooklyn.

Benefits

• Unlimited PTO
• 16-week fully paid parental leave (20 weeks at 50% for mothers)
• Company-wide breaks: last week of August & Dec 23–Jan 3
• The opportunity to participate in company benefits, including a Medical PPO Plan with majority of the premium covered by North.
• 30-day sabbatical every 4 years

Compensation

$130,000 – $175,000 base salary + performance-based variable

Equity included

(Comp structure flexible depending on seniority and channel experience.)

We are looking for a Firewall Administrator to join our team in support of a program with our DoD customer.

Responsibilities Include:

• 
  
• Plan and deploy Enclave Boundary Defense systems and programs including firewall, proxy server, cloud services and other devices and applications.
  
• Plan and deploy De-Militarized Zones (DMZs) for each managed firewall as required.
  
• Provide onsite and remote support to boundary security and programs, which include Checkpoint Firewalls, Aviatrix Product Suite, various types of cloud security, security controls and any other platforms.
  
• Participate in the development, testing, and implementation of firewalls and proxy servers
  
• Verify devices are configured in accordance with DISA Security Technical Implementation Guides (STIGs).
  
• Product lifecycle management and upgrades to include installation of hotfixes, patches, and any other features to improve product performance.
  
• Evaluate and recommend firewall solutions for technology refreshes.
  
• Deploy and sustain new firewall solutions as prescribed by the government.
  
• Coordinate with Tier III support teams and government customers throughout design, planning, implementation, and sustainment phases.
  
• Research and provide quotes and documents necessary to renew licenses and equipment maintenance for firewall, proxy and cloud services.
  
• Maintain all current applicable firewall, proxy appliance and cloud services policies to include DoD. Participate in the development, implementation, and maintenance of a secure and effective means of remote access for employees who are working offsite.
  
• Develop and deliver briefings to the upper-level management as required on a variety of subjects relating to Enclave Boundary Defense.
  
• Provide firewall troubleshooting (24x7x365 on-call support).
  
• Review and resolve automated firewall log issues as to threats or possible compromises.
  
• Provide daily maintenance and support for all Enterprise Boundary Defense systems including monitoring system and log files.
  
• Review and resolve automated firewall log issues as to threats or possible compromises.
  
• Notify appropriate personnel of possible threats or systems vulnerabilities.
  
• Respond appropriately to reported or identified incidents in accordance with the Incident response plan.
  
• CSP Security Posture Assessment: Conduct comprehensive security assessments of existing and planned CSP deployments, identifying vulnerabilities and recommending remediation actions aligned with industry best practices and relevant security frameworks (e.g., NIST CSF, CIS and Benchmarks).
  
• Security Architecture Documentation, Design and Implementation: Document, design, implement, and maintain secure network architectures for CSP environments, including secure connectivity, network segmentation, intrusion detection/prevention systems (IDS/IPS), and data loss prevention (DLP) solutions. Maintaining comprehensive documentation of security controls, configurations, and processes within the CSP environment.
  
• Cloud Security Operations and Monitoring: Provide continuous security monitoring and incident response capabilities for CSP environments, including log analysis, threat intelligence integration, vulnerability management, and incident response planning and execution.
  
• Audit, Compliance and Governance: Ensure compliance with relevant security regulations and standards (e.g., FedRAMP, FISMA, NIST) for CSP environments, including documentation, reporting, and audit support. Cooperating fully with authorized Government audits and assessments of the CSP environment, providing timely access to documentation, systems, and personnel. Follow DoD Cloud Computing Security Requirements Guide (SRG) and other applicable DoD issuances and instructions.
  
• Training and Knowledge Transfer: Provide training and knowledge transfer to Government personnel on best practices for securing CSP environments, covering topics such as cloud security fundamentals, secure configuration, threat detection and response, and incident management.
  

Required Skills, Qualifications and Experience:

Minimum Experience:

• 
  
• Five (5) years of relevant experience to include the following:
  
  • 
    
  • Working knowledge of Firewalls.
    
  • Working knowledge and understanding of industry standard network environments to include firewall and security hardware/software.
    
  • Working knowledge of Information Assurance Best Practices.
    
  • In depth knowledge of LAN and WAN operations.
    
  • Knowledge of industry standard Incident Ticket Tracking systems for inputting incident tickets and creating work orders.
    
  • Comprehensive knowledge of DOD and DLA security regulations, guidelines, and policies, to include, but not limited to, IA standards.
    
  • Working knowledge of the installation, configuration and day-to- day sustainment of network equipment, to include but not limited to firewalls and other network appliances.
    
  
  
  

Security Clearance:

• 
  
• Sensitivity Level: Must possess IT-I Critical Sensitive security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC) at time of proposal submission.
  
• Clearance: DoD Secret
  

Certifications:

• 
  
• IAT Level II certification or higher (one of the following): CCNA Security, CySA+, GICSP, GSEC, Security+CE, CND, SSCP, CASP+ CE CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP.
  
• Computing Environment (one of the following): CCSA, CCSE or CCSM
  

Location:

• 
  
• Candidates must reside within a commutable distance of one of the following locations in order to work onsite full time: Columbus, OH; Fort Belvoir, VA; or New Cumberland, PA.
  

Preferred Qualifications:

• 
  
• One of the following: AWS Cloud Practitioner, Microsoft Certified: Azure Fundamentals, or Comp TIA Cloud+
  

Work Environment and Physical Demand:

• 
  
• Must be able to lift up 50 lbs.
  

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.

• 
  
• 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  
• Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  
• 401(k) with Match: We match 3% of your contributions with immediate vesting.
  
• Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  
• Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  
• Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  
• Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  
• Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  
• Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.
  

At AGE, you'll do work that matters, supported by a company that delivers for its people.

We are looking for a Team Lead Firewall Administrator to join our team in support of a program with a DoD customer.

Responsibilities Include:

• 
  
• Provide overall supervision for vendor employees to include, but not limited to, planning, and managing the project professionally, ensuring that work is scheduled properly to obtain maximum use of resources; ensuring that accurate and timely reports are provided.
  
• Resolve problems, allocate resources, manage personnel, and monitor operation performance taking direction from the government to ensure complete satisfaction.
  
• Under general supervision, develop the requirements of a product from inception to conclusion.
  
• Develop required specifications for simple to moderately complex problems.
  
• Coordinate with the Vendor PM, TPOCs, and government user representatives to ensure accurate solutions and user satisfaction on technical matters.
  
• Provide input to the PM on the schedule, weekly and monthly reports, transition plan, 8570/8140 reports, IPR briefings, and kick-off meeting.
  
• Plan and deploy Enclave Boundary Defense systems and programs including firewall, proxy server, cloud services and other devices and applications.
  
• Plan and deploy De-Militarized Zones (DMZs) for each managed firewall as required.
  
• Provide onsite and remote support to boundary security and programs, which include Checkpoint Firewalls, Aviatrix Product Suite, various types of cloud security, security controls and any other platforms.
  
• Participate in the development, testing, and implementation of firewalls and proxy servers
  
• Verify devices are configured in accordance with DISA Security Technical Implementation Guides (STIGs).
  
• Product lifecycle management and upgrades to include installation of hotfixes, patches, and any other features to improve product performance.
  
• Evaluate and recommend firewall solutions for technology refreshes.
  
• Deploy and sustain new firewall solutions as prescribed by the government.
  
• Coordinate with Tier III support teams and government customers throughout design, planning, implementation, and sustainment phases.
  
• Research and provide quotes and documents necessary to renew licenses and equipment maintenance for firewall, proxy and cloud services.
  
• Maintain all current applicable firewall, proxy appliance and cloud services policies to include DoD. Participate in the development, implementation, and maintenance of a secure and effective means of remote access for employees who are working offsite.
  
• Develop and deliver briefings to the upper-level management as required on a variety of subjects relating to Enclave Boundary Defense.
  
• Provide firewall troubleshooting (24x7x365 on-call support).
  
• Review and resolve automated firewall log issues as to threats or possible compromises.
  
• Provide daily maintenance and support for all Enterprise Boundary Defense systems including monitoring system and log files.
  
• Review and resolve automated firewall log issues as to threats or possible compromises.
  
• Notify appropriate personnel of possible threats or systems vulnerabilities.
  
• Respond appropriately to reported or identified incidents in accordance with the Incident response plan.
  
• CSP Security Posture Assessment:Conduct comprehensive security assessments of existing and planned CSP deployments, identifying vulnerabilities and recommending remediation actions aligned with industry best practices and relevant security frameworks (e.g., NIST CSF, CIS and Benchmarks).
  
• Security Architecture Documentation, Design and Implementation:Document, design, implement, and maintain secure network architectures for CSP environments, including secure connectivity, network segmentation, intrusion detection/prevention systems (IDS/IPS), and data loss prevention (DLP) solutions. Maintaining comprehensive documentation of security controls, configurations, and processes within the CSP environment.
  
• Cloud Security Operations and Monitoring:Provide continuous security monitoring and incident response capabilities for CSP environments, including log analysis, threat intelligence integration, vulnerability management, and incident response planning and execution.
  
• Audit, Compliance and Governance:Ensure compliance with relevant security regulations and standards (e.g., FedRAMP, FISMA, NIST) for CSP environments, including documentation, reporting, and audit support. Cooperating fully with authorized Government audits and assessments of the CSP environment, providing timely access to documentation, systems, and personnel. Follow DoD Cloud Computing Security Requirements Guide (SRG) and other applicable DoD issuances and instructions.
  
• Training and Knowledge Transfer:Provide training and knowledge transfer to Government personnel on best practices for securing CSP environments, covering topics such as cloud security fundamentals, secure configuration, threat detection and response, and incident management.
  

Required Skills, Qualifications, and Experience:

• 
  
• Experience:
  
  • 
    
  • Five (5) years relevant experience to include:
    
    • 
      
    • Working knowledge and understanding of CheckPoint firewalls to include versions R80.40 and R81.10 and industry standard network environments to include firewall and security hardware/software. Must have knowledge and understanding of Information Assurance Best Practices.
      
    • In depth knowledge of LAN and WAN operations, understanding of how to use Incident Ticket Tracking systems for inputting incident tickets and creating work orders along with a comprehensive knowledge of DOD and DLA security regulations, guidelines, and policies to include, but not limited to, IA standards.
      
    • Hands-on experience with the installation, configuration, and day-to-day sustainment of network equipment, to include but not limited to firewalls, proxy servers, cloud services and other network appliances.
      
    
    
    
  • Security Clearance:
    
    • 
      
    • Must possess IT-I Critical Sensitive security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC).
      
    • Clearance Required: DoD Secret
      
    
    
    
  • Certifications:
    
    • 
      
    • IAT Level II certification or higher (must have one of the following): CCNA Security, CySA+, GICSP, GSEC, Security+CE, CND, SSCP, CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP.
      
    • Computing Environment (must have one of the following): CCSA, CCSE or CCSM
      
    
    
    
  • Location:
    
    • 
      
    • Candidates must reside within a commutable distance of one of the following locations in order to work onsite full time: Columbus, OH; Fort Belvoir, VA; or New Cumberland, PA.
      
    
    
    
  
  
  

Preferred Qualifications:

• 
  
• One of the following: AWS Cloud Practitioner, Microsoft Certified: Azure Fundamentals, or Comp TIA Cloud+
  

Work Environment and Physical Demand:

• 
  
• Must be able to lift up 50 lbs.
  

Compensation: $90,000+

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.

• 
  
• 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  
• Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  
• 401(k) with Match: We match 3% of your contributions with immediate vesting.
  
• Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  
• Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  
• Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  
• Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  
• Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  
• Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.
  

At AGE, you'll do work that matters, supported by a company that delivers for its people.

We are looking for a Subject Matter Expert - Intermediate to join our team in support of a DoD customer in Alexandria, VA. The SME will serve as a technical expert on executive-level project teams providing technical direction, interpretation, and alternatives. The individual in this role will provide support, analysis and research into exceptionally complex problems, and processes relating to the subject matter, with expertise in a particular area of Information Technology (e.g., Information Systems Architecture, Telecommunications Systems Design, Architecture, Implementation, Information Systems Integration, Software Development Methodologies, Security Engineering, Communications and Network Systems Management).

Responsibilities Include:

• 
  
• Evaluate new and emerging technologies through market research and prototyping to support customers business objectives.
  
• Assess performance of existing network/ systems and proposed changes, including post-deployment analysis to ensure systems meet design specifications and operational expectations.
  
• Develop Performance Management Plans (PMPs) and produce Performance Analysis Reports (PARs) documenting benchmarking methodologies, test conditions, procedures, and results.
  
• Provide actionable recommendations to resolve performance issues, enhance system capabilities, and proactively identify risks within production network equipment.
  
• Lead requirements development efforts by gathering, documenting, reviewing, consolidating, and refining functional and technical requirements in coordination with stakeholders.
  
• Facilitate and lead requirements review sessions and meetings to define networking requirements for assigned projects, including analysis of collected data.
  
• Develop and maintain Requirement Traceability Matrices (RTMs) to ensure alignment of requirements throughout the design, build, and test phases of the delivery lifecycle.
  
• Identify, evaluate, and recommend new and emerging technologies for systems and equipment in compliance with standards, policies, and guidelines.
  
• Plan, conduct, and document laboratory assessments of hardware and software supporting classified and unclassified services to ensure interoperability and connectivity among stakeholders.
  
• Provide input to the development of Technology Assessment Plans (TAPs)-including scope, objectives, configurations, technical approach, schedules, roles, and independent cost estimates-and produce After Action Reports (AARs) documenting methodologies, results, and recommendations.
  
• Support technology refresh and upgrade initiatives by identifying emerging network capabilities, establishing product evaluation and selection criteria, and developing system evaluation methods and procedures.
  
• Produce formal recommendations and executive briefings outlining findings, strategy, and capability roadmaps, while coordinating overall technology planning and tracking implementation activities.
  
• Analyze industry and Government data on technology changes impacting the DISN and commercial telecommunications sector and provide preliminary design and implementation guidance to support strategic planning and decision-making. Areas include wireless technologies, IPv6 transition (NIPRNet/SIPRNet), NetOps and cyber defense (JTF-GNO), VoIP/DSN, VTC and streaming video, core system refreshes, and emerging standards aligned with DoD mandates.
  
• Provide SME engineering services to design, configure, test, implement, and sustain STIG-compliant network and security architectures, including NAC (802.1x), reverse proxy and load balancing, web filtering, DNS/DHCP/IPAM, VPN, wireless/IDS, VDI support, VoIP/VTC/streaming, Check Point firewalls and MDM, NMS tool suites, MPLS architecture, SATCOM support, and DR/COOP planning; perform Tier IV troubleshooting and produce required technical documentation (ECRs, ITRs, NSOs, AARs, test plans/reports, and as-built diagrams).
  
• Provide Cloud-certified SME engineering support for on-premises to Cloud migrations, coordinating with CSPs (e.g., Azure, AWS, Oracle, Google Cloud, MilCloud2) and facilitating integration with Secure Cloud Computing Architecture (SCCA) BCAP in multi-cloud environments.
  
• Develop and maintain Cloud migration documentation to ensure accurate knowledge management and configuration records.
  
• Engineer, implement, and sustain the Enterprise F5 Application Delivery Controllers (ADCs) supporting DoD DMZ, data center, and Cloud-hosted applications, including Tier 3 support and configuration of GTM (DNS), LTM, and APM modules in compliance with DISA STIGs and industry best practices.
  
• Implement F5 break-and-inspect capabilities to meet DISA Cloud security requirements and coordinate with CSPs and developers to establish Layer 7 health monitoring.
  
• Thinks independently and demonstrates exceptional written and oral communications skills.
  
• Applies extensive technical expertise and has full knowledge of other related disciplines.
  
• Guides the successful completion of major programs and may function in a project leadership role.
  
• Develops technical solutions to complex problems that require the regular use of ingenuity and creativity. Work is performed without appreciable direction.
  
• Exercises considerable latitude in determining technical objectives of assignment.
  

Required Skills, Qualifications and Experience:

• 
  
• Minimum Requirement:
  
  • 
    
  • 10 years of experience in a relevant field, (e.g., Computer Science, Engineering, or Information Systems/Technology).
    
  
  
  
• Certification Requirements:
  
  • 
    
  • DoD Approved 8570 Baseline Certification:
    
    • 
      
    • Category IAT Level III (CCNP Security, CASP+ CE, CISSP, CISA, GCED, GCIH).
      
    
    
    
  • Computing Environment Certifications:
    
    • 
      
    • Cisco Certified Network Professional-Enterprise (CCNP-E) is required.
      
    • Check Point Certified Security Administrator (CCSA) is required in addition to the Cisco certification.
      
    
    
    
  
  
  
• Clearance Requirement:
  
  • 
    
  • This position requires a SECRET with a Tier 5 investigation.
    
  
  
  

Preferred Qualifications:

• 
  
• Check Point Certified Security Expert (CCSE)
  
• AWS Cloud Practitioner
  
• Microsoft Certified: Azure Fundamentals
  
• Comp TIA Cloud+
  
• Cisco Certified Internetworking Expert -Enterprise Infrastructure (CCIE-EI).
  

Compensation: $120,000+

At AGE Solutions, we reward performance, invest in growth, and share success. Our benefits support the whole person, professionally, financially, and personally.

• 
  
• 26 Days Paid Leave: Includes vacation, sick, personal time, and holidays. You choose how to use it.
  
• Performance Bonuses: Performance bonuses are awarded based on individual contributions and company-wide results, aligning recognition with impact.
  
• 401(k) with Match: We match 3% of your contributions with immediate vesting.
  
• Financial Protection: Company-paid life insurance up to $300K and options for additional coverage for you and your dependents.
  
• Health Benefits: Multiple medical plans, dental, vision, FSA and HSA options to fit your needs.
  
• Parental Leave: 15 days of fully paid leave for new parents, because family matters.
  
• Military Differential Pay: We bridge the gap for employees on active duty, so they don't take a financial hit while serving.
  
• Professional Growth: Paid training and certifications, tuition reimbursement, and the tools and tech to get the job done right.
  
• Shared Success: In the event of a company sale, our CEO has committed to returning 80% of net proceeds to employees. This ensures our team shares in the long term value they help create.
  

At AGE, you'll do work that matters, supported by a company that delivers for its people.

About Pinterest:

Millions of people around the world come to our platform to find creative ideas, dream about new possibilities and plan for memories that will last a lifetime. At Pinterest, we're on a mission to bring everyone the inspiration to create a life they love, and that starts with the people behind the product.

Discover a career where you ignite innovation for millions, transform passion into growth opportunities, celebrate each other's unique experiences and embrace theflexibility to do your best work. Creating a career you love? It's Possible.

At Pinterest, AI isn't just a feature, it's a powerful partner that augments our creativity and amplifies our impact, and we're looking for candidates who are excited to be a part of that. To get a complete picture of your experience and abilities, we'll explore your foundational skills and how you collaborate with AI.

Through our interview process, what matters most is that you can always explain your approach, showing us not just what you know, but how you think. You can read more about our AI interview philosophy and how we use AI in our recruiting process here.

The Team:

Pinterest's Infrastructure Governance (InfraGov) team is a small, high-impact group driving the strategy and execution of key infrastructure programs that keep Pinterest scalable, cost-effective, and secure. Our charter covers everything from cloud spend control and capacity management to automation and vendor relationships. We work closely with engineering, finance, procurement, and major cloud partners to tackle Pinterest's most complex and important infrastructure challenges.

What you'll do:

• 
  
• Lead or support strategic infrastructure programs, focusing on areas such as cloud cost optimization, capacity planning, automation, and cloud vendor management, with the flexibility to shift across the team's full portfolio as priorities evolve.
  
• Collaborate directly with engineering leads, technical program managers, finance stakeholders, and cloud vendors to ensure alignment, clear ownership, and drive measurable outcomes.
  
• Manage program dashboards, create informative reports, and communicate technical and operational recommendations to both technical and non-technical audiences.
  
• Drive capacity planning initiatives and help steer cloud vendor engagements, including contract renewals and spend accountability, partnering closely with technical and business leaders.
  
• Contribute to roadmap planning, process improvements, and the continual evolution of team best practices to improve efficiency, scalability, and value delivery across Pinterest's infrastructure landscape.
  

What we're looking for:

• 
  
• 5+ years of TPM experience managing complex, cross-functional technical programs within cloud, infrastructure, or platform environments.
  
• Solid understanding of cloud infrastructure principles (AWS or similar), especially related to capacity management, automation, and cloud spend.
  
• Excellent analytical and problem-solving skills, with experience creating dashboards, interpreting data, and using insights to drive decisions.
  
• Strong collaboration and communication skills with a track record of partnering with engineering, business, and vendor stakeholders in high-visibility settings.
  
• Adaptability and initiative-comfortable navigating ambiguity, shifting team priorities, and providing coverage across a varied set of programs.
  
• Experience with cloud vendor management and operational finance is a plus; willingness to learn and grow across domains is essential.
  
• Bachelor's degree in a relevant field, or equivalent experience.
  

Join us and help shape the future of Pinterest's infrastructure!

Relocation Statement:

This position is not eligible for relocation assistance. Visit ourPinFlex page to learn more about our working model.

In-Office Requirement Statement:

• 
  
• We recognize that the ideal environment for work is situational and may differ across departments. What this looks like day-to-day can vary based on the needs of each organization or role.
  
• This role will need to be in the office for in-person collaboration 1-2 times every 6-months and therefore can be situated anywhere in the country.
  

#LI-REMOTE

#LI-JD3

At Pinterest we believe the workplace should be equitable, inclusive, and inspiring for every employee. In an effort to provide greater transparency, we are sharing the base salary range for this position. The position is also eligible for equity. Final salary is based on a number of factors including location, travel, relevant prior experience, or particular skills and expertise.

Information regarding the culture at Pinterest and benefits available for this position can be found here.

Our Commitment to Inclusion:

Join a collaborative and forward-thinking IT team where you will play a key role in advancing modern DevOps practices and accelerating software delivery. As a DevOps Engineer, you will lead the design, implementation, and optimization of Azure DevOps pipelines, CI/CD automation, and cloud infrastructure that power reliable and scalable application delivery.

In this role, you will partner closely with development, infrastructure, and security teams to build robust continuous integration and continuous delivery pipelines, automate infrastructure and deployment workflows, and improve system reliability. You will also lead technical initiatives, mentor junior engineers, and drive continuous improvement in DevOps maturity, automation, and release management processes.

Key Responsibilities

Azure DevOps & CI/CD Pipeline Engineering

• Design, implement, and maintain enterprise-scale CI/CD pipelines using Azure DevOps to support automated build, test, and deployment workflows.
• Manage and optimize Azure DevOps services including Repos, Pipelines, Artifacts, Boards, and Test Plans.
• Develop and maintain YAML-based pipeline templates and reusable pipeline components to standardize deployment processes across teams.
• Implement automated build validation, security scanning, testing, and release gates within CI/CD pipelines.
• Define and maintain branching strategies, pull request policies, and code quality controls within Azure DevOps repositories.
• Integrate CI/CD pipelines with cloud infrastructure, container platforms, and deployment environments.

Infrastructure Automation & Cloud Engineering

• Implement and manage Azure cloud services supporting application hosting, monitoring, automation services, data integration, serverless workloads, secret management, container orchestration, database services, and traffic management.
• Automate provisioning and lifecycle management of cloud infrastructure using Infrastructure-as-Code (IaC) tools and scripting.
• Develop automation scripts and tooling to improve build, release, deployment, and operational processes.
• Monitor, analyze, and optimize cloud resource utilization, performance, and cost efficiency.

Operations & Platform Reliability

• Monitor and maintain CI/CD pipelines, build agents, and deployment tooling to ensure reliable release processes.
• Provide advanced troubleshooting and support for infrastructure, deployment, and application-related issues.
• Diagnose and resolve pipeline failures, deployment issues, and production incidents efficiently.
• Support auditing, traceability, and reporting processes related to software releases and infrastructure changes.
• Participate in on-call rotations as required.

DevOps Strategy & Continuous Improvement

• Contribute to the organization’s DevOps strategy, CI/CD maturity roadmap, and platform engineering initiatives.
• Research and recommend emerging DevOps tools, automation practices, and cloud technologies.
• Create and maintain technical documentation for pipelines, automation frameworks, and cloud infrastructure.
• Ensure CI/CD pipelines and deployment practices align with security standards, compliance requirements, and DevOps best practices.
• Stay current with evolving DevOps technologies through professional development and industry research.

Requirements

• 5+ years of experience in DevOps, Platform Engineering, or Infrastructure Automation roles
• Strong experience designing and managing CI/CD pipelines using Azure DevOps
• Hands-on experience with Azure DevOps services (Repos, Pipelines, Artifacts, Boards)
• Experience building YAML-based pipelines and automated deployment workflows
• Strong scripting and automation skills (PowerShell, Bash, Python, or similar)
• Experience implementing Infrastructure-as-Code and automated cloud provisioning
• 3+ years working with cloud platforms, preferably Microsoft Azure
• Experience supporting server environments, database systems, web services, and automated operational tasks
• Strong understanding of Git workflows, branching strategies, and code review practices
• Bachelor’s degree in Computer Science, Information Technology, Software Engineering, or related field (or equivalent experience)
• Microsoft Azure or DevOps certifications preferred
• Minimal travel may be required

Job Description

Must Have Technical/Functional Skills

Must have Windchill Admin Experience covering below aspects

- Windchill installation and configuration

- Hands on experience of managing Windchill environments on Linux , Windows & AWS.

- Installation / Configuration of integrations

- Windchill Upgrade experience.

- Deployment of Windchill on IaaS cloud model.

- Hands-on 5-8 years of Windchill customization experience including (but not limited to) Windchill data utilities, form validators, Windchill soft typing (Type and Attribute Manager), Windchill loader mechanism, ACLs, Workflow &

LifeCycle configuration with necessary customization, JDBC connections and writing respecting query specs, following PTC lead best practices of API development and usage.

- Experience with scripting languages like Shell/Perl/python/TCL for WC admin activities.

Roles & Responsibilities

- Install and configure Windchill and its integrations in the cloud environment according to the migration plan.

- Install and configure Windchill components in the cloud environment according to the Upgrade Plan.

- Execute the Windchill upgrade process, including applying patches, hotfixes, and performing major version upgrades.

- Support the bulk migration of data from the on-premises system to the cloud, ensuring data integrity throughout the process.

- Thoroughly test all deployed solutions, including workflows, configurations, and integrations, to ensure they function as expected.

- Proposing solutions and fixing issues raised in Windchill cloud migration and Windchill upgrade.

- Diagnose and resolve system errors, performance issues, and data integrity anomalies in the cloud, using application logs and other tools.

- Continuously monitor application and database performance in the cloud and optimize configurations for efficiency.

- Maintain up-to-date documentation for the new cloud environment, including processes, procedures, and configurations.

- Act as a key liaison, coordinating with PTC support, other IT teams (network, database), and product owners to resolve issues and meet project objectives.

- Leading and grooming the Windchill team in cloud migration and upgrade activities.-

Generic Managerial Skills, If any

- Collaborate with business analysts, solution architects and project managers to understand requirements and translate them into technical solutions.

- Work closely with cross-functional teams such as IT, PLM specialists, business users and other required teams to ensure proper execution of Teamcenter migration and upgrade project.

- As sist in training and mentoring juniors WC Admins and team members.