Cloud Platform Engineer – Azure Zone ,Terraform ,AI Infrastructure & Finops
TAT IT Technolgies
Description
Urgent requirement for Cloud Platform Engineer – Azure Landing Zone , Terraform , AI Infrastructure & Finops is required for our banking clients in Abu Dhabi ,UAE Building and scaling enterprise-grade Azure cloud environments from the ground up, with a strong focus on enabling AI-driven applications in a secure, cost-efficient way.-- Must designing landing zone architectures, implementing infrastructure-as-code using Terraform, and integrating Azure AI services such as OpenAI and AI Search.-- Must Candidate manages APIs and connectivity (APIM/Kong), optimizes cloud spend through FinOps practices, and ensures robust networking, monitoring, and automated CI/CD pipelines to support application teams at scale.--- Must Build Azure landing zones Terraform-driven infrastructure +AI services + FinOps Job Summary We are seeking a Cloud Platform Engineer to build and scale enterprise-grade Azure cloud environments from the ground up for a leading UAE bank. You will design secure, cost-efficient landing zones to enable AI-driven applications, with strong focus on automation, governance, and FinOps. This role is critical to the bank’s cloud transformation and AI adoption roadmap.
Key Responsibilities Azure Landing Zones & Architecture Design and implement Azure landing zones aligned to CAF and WAF for banking workloads. Define network, identity, security, and governance baselines for multi-subscription environments. Ensure compliance with UAE Central Bank regulations, ISO 27001, and PCI-DSS.
Infrastructure-as-Code Build Terraform/Bicep-driven infrastructure with modular, reusable code. Maintain full GitOps lifecycle and ensure all Azure resources are automated, versioned, and reproducible. Enforce Azure Policy, tagging, and RBAC at scale.
AI Services & Data Integration Integrate Azure services such as OpenAI, Azure AI Search, Cognitive Services, and Azure ML into the platform. Enable secure connectivity to data sources and vector databases for AI-driven banking use cases. Implement guardrails for data privacy and model governance.
API & Connectivity Management Manage API gateways using Azure APIM or Kong. Configure secure connectivity via VNet, Private Endpoints, ExpressRoute, and Azure Firewall. Implement service mesh and ingress patterns for microservices.
FinOps & Cost Optimization Optimize cloud spend through FinOps practices: budgets, anomaly detection, rightsizing, and reserved instances. Provide cost transparency to app teams and enforce chargeback/showback models.
Networking, Monitoring & CI/CD Ensure robust hub-spoke networking, DNS, and hybrid connectivity. Set up centralized monitoring using Azure Monitor, Log Analytics, and Grafana. Build automated CI/CD pipelines in Azure DevOps for infra and platform components. Enable self-service for application teams at scale.
Security & Reliability Implement Key Vault, Defender for Cloud, Sentinel, and zero-trust principles. Design for HA/DR with defined RTO/RPO. Conduct DR drills and maintain platform SLAs.
Required Qualifications & Skills Experience: 7+ years in cloud engineering with 4+ years on Azure. 2+ years in banking/FSI or other regulated industries. Proven experience building landing zones for enterprise clients. Technical Skills: Expert in Terraform, Bicep, Azure Networking, Azure Policy, AKS, APIM, Azure OpenAI, and Azure AI Search. Strong Python/PowerShell for automation. Experience with FinOps tools like Azure Cost Management, CloudHealth, or similar.
Skills: infrastructure,cloud,azure