This website uses cookies to ensure you get the best experience.

Upstart 13 and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics and marketing purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, that is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor

These cookies are used to make advertising messages more relevant to you. In some cases, they also deliver additional functions on the site.

Vendors Youtube
Skip to main content
Cloud · Fully Remote

Senior Azure Platform Engineer

Calling All Upstarters!

SENIOR AZURE PLATFORM WANTED!

We are Upstart 13. We are humble, hungry, and competent people who are radically changing the expectations and experience of outsourcing for all participants by challenging barriers that create inequality and by bringing down borders in technology for people everywhere. We’re all about delivering value and doing big things. We have become a game changer for teams around the world who look to Upstart’s services as a differentiator.

Job Description:

We are seeking a Senior DevOps/Cloud Engineer (Latam) to own and operate our Azure production platform, enabling secure, reliable application delivery across Production and Non-Production environments. You will build and run enterprise Azure foundations (Landing Zone, networking, identity/governance), operate production AKS, and deliver secure API ingress and CI/CD release controls with strong observability and incident ownership.

Responsibilities

  • Azure Infrastructure as Code (Bicep): Build and maintain reusable, production-grade IaC modules covering networking, security, AKS, APIM, Key Vault, monitoring, storage, and application services.

  • Landing Zone & Governance: Support hub-spoke patterns, environment segmentation, RBAC, Azure Policy, tagging standards, and governance controls across Prod/Non-Prod.

  • Azure Networking: Design and troubleshoot VNets, subnets, NSGs, UDRs/route tables, Load Balancers, NAT Gateway, Private Endpoints, Private DNS, and secure inbound/outbound traffic patterns.

  • AKS Operations: Operate and troubleshoot AKS clusters (including private clusters), node pools, autoscaling, ingress, Helm releases, upgrades, and workload diagnostics.

  • Secure API & App Delivery: Implement secure ingress and API delivery using APIM, Application Gateway, Front Door, and WAF, including TLS, OAuth2/OIDC/JWT validation, rate limiting/throttling, IP filtering, and private backend connectivity.

  • Event Streaming: Support Azure Event Hubs (Kafka-compatible) for event-driven services, including throughput planning, monitoring, partitions/consumer groups, and secure access patterns.

  • CI/CD & Release Governance: Build multi-stage Azure DevOps YAML pipelines for Dev/QA/Staging/Prod with approvals, validation gates, deployment controls, and rollback strategies for both infrastructure and applications.

  • Security, Identity & Secrets: Enforce least-privilege with Entra ID RBAC, managed identities/workload identity, Key Vault integration, secret rotation, and certificate lifecycle management.

  • Observability & Production Ops: Maintain reliability using Azure Monitor, Log Analytics, Application Insights, and Container Insights; lead incident response and RCA with documented remediation and preventive controls.

  • Developer Enablement: Partner with engineering teams on deployment patterns, pipeline integration, and operational best practices.

Qualifications

Technical skills: 

  • 6+ years in DevOps/Cloud/Platform/Infrastructure Engineering within the Azure ecosystem, with hands-on production experience.

  • Strong experience with Azure Landing Zone concepts: hub-spoke, segmentation, governance, RBAC, Azure Policy, tagging, and private connectivity.

  • Proven expertise with Bicep and PR-based IaC workflows (validation/linting/scanning, controlled change, drift awareness).

  • Deep knowledge of Azure networking: VNets, NSGs, UDRs/route tables, Private Endpoints/DNS, Load Balancers, NAT Gateway, and secure outbound patterns.

  • Production experience operating AKS, including private clusters, upgrades, ingress, Helm, autoscaling, and troubleshooting using kubectl (logs/events/probes/DNS/network).

  • Experience with APIM / App Gateway / Front Door / WAF and API security patterns (TLS, OAuth2/OIDC, JWT validation, throttling/rate limiting, IP filtering).

  • Experience with Azure DevOps YAML pipelines across environments, including approvals/gates and rollback strategy.

  • Strong security fundamentals: Entra ID RBAC, managed identities/workload identity, Key Vault, secret rotation, and certificate lifecycle management.

  • Proficiency with Azure CLI, PowerShell, and/or Python for automation and operational tooling.

Soft skills: 

  • Strong ownership mindset; comfortable operating in production-critical environments.

  • Excellent troubleshooting, communication, and documentation skills (runbooks, postmortems, procedures).

  • Collaborative approach with developers, security, and platform stakeholders.

Bonus skills:

  • Terraform experience.

  • Hybrid connectivity troubleshooting (VPN/ExpressRoute), Azure Firewall, DNS/routing, private service access.

  • GitOps (Flux/ArgoCD), service mesh (Istio), Prometheus/Grafana.

  • Azure certifications (e.g., AZ-400, AZ-305, AZ-104, AZ-500) and FinOps/cost optimization experience.

Why Upstart13?

  • We put people first at Upstart 13! We believe the world is filled with amazing people and we are willing to go to great lengths to seek out others who share our values to join our cause of bringing down borders in technology for people everywhere.

  • We develop leaders at Upstart 13, we focus on what matters to do meaningful work, we own our shit, we stay curious, and we understand responsibility leads to giving. We do big things together!

Perks:

  • Job type: long-term, full-time job.

  • Fully remote.

  • USD competitive salary.

  • 20+ Paid time off days.

Are you ready to join our cause? Be sure to ask, “why 13?

Department
Cloud
Role
Devops
Remote status
Fully Remote
Employment type
Full-time

About Upstart 13

We strategize, solve, and build solutions to business problems with AI, data, and software—grounded in strategic clarity.

From boardroom to build, we connect strategy to execution using all available intelligence—human and otherwise—to help companies achieve efficiency, growth, and competitive advantage.

Founded in 2020
Coworkers 180
Cloud · Fully Remote

Senior Azure Platform Engineer

Loading application form

Already working at Upstart 13?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor