jobs Logo
CBL Solutions logo

Infrastructure as Code (IaC) Engineer

CBL Solutionsabout 18 hours ago
Hybrid
Senior Level
CONTRACTOR

About the role

JOB Description: Location: Calgary, AB/ Edmonton, AB/ Toronto, ON (Hybrid) Azure Bicep Development (Primary) Serve as a subject matter expert on Azure Bicep, driving adoption as the primary IaC language for all new Azure deployments Design and build enterprise Bicep module libraries with well-defined parameters, outputs, user-defined types, and comprehensive documentation Implement Bicep template specs and module registries (Azure Container Registry) for centralized module versioning and distribution across teams Author Bicep parameter files (.bicepparam) for environment-specific configurations with type safety and validation Develop subscription-scope and management-group-scope deployments for Azure Policy, RBAC, and resource group provisioning Build deployment stacks to manage lifecycle of resources, prevent accidental deletion, and enforce deny settings Perform ARM template decompilation (az bicep decompile) to migrate legacy JSON templates to Bicep Implement what-if deployments (az deployment group what-if) and preflight validation before production rollouts Leverage Bicep extensibility features including user-defined types, functions, and import statements for modular design Create reusable patterns for common Azure topologies: hub-spoke networking, landing zones, and spoke deployments Integrate Bicep linter rules and custom linter configurations to enforce coding standards across teams Build CI/CD pipelines for Bicep using GitHub Actions / Azure DevOps with automated validate, what-if, and deploy stages Develop Bicep-based Azure Verified Modules (AVM) patterns for organizational standards Apply conditional deployments, loops, and batch sizing for complex multi-resource provisioning Terraform Development & Operations (Secondary) Maintain and enhance existing Terraform modules following DRY principles and enterprise standards Implement multi-environment deployments (dev, test, UAT, prod) using workspaces, backend configs, and .tfvars files Manage Terraform state securely using Azure Storage backends with state locking and encryption Develop and enforce naming conventions, tagging strategies, and variable management patterns Build CI/CD pipelines (GitHub Actions / Azure DevOps) for automated plan, validate, and apply workflows Conduct code reviews for Terraform pull requests ensuring quality, security, and compliance Support migration efforts from Terraform to Bicep where strategically appropriate Leverage Terraform for multi-cloud or hybrid scenarios where Azure-native Bicep is not applicable Cloud Infrastructure & Architecture Required Skills IaC Tools Azure Bicep (primary), Terraform (v1.5+), ARM Templates Cloud Platform Microsoft Azure (multi-subscription, hub-spoke topologies) CI/CD GitHub Actions, Azure DevOps Pipelines, YAML-based workflows Version Control Git, GitHub (branching strategies, PR workflows, code reviews) Scripting PowerShell, Bash, Python Security Azure Policy, RBAC, Key Vault, Managed Identity, Private Endpoints Networking VNets, Subnets, NSGs, DNS, Load Balancers, Application Gateways Monitoring Azure Monitor, Application Insights, Log Analytics, KQL Containers Docker, AKS (Kubernetes fundamentals) Testing Bicep linter, Bicep what-if, PSRule for Azure, Terraform validate, tflint, tfsec, checkov

About CBL Solutions

Staffing and Recruiting

Similar Jobs