Princeton University is hiring a
Cloud Engineer

New Jersey, United States 🇺🇸

Full-time, Onsite

Are you looking for a job with a mission you can believe in? Does learning, applying, and sharing new techni cal skills excite you? Does a work cult ure b ased on collaboration and collegiality sound appealing? Princeton University is looking for you!

The Cloud Engineer will develop, deploy, and operate cloud identity security services in support of the mission of Princeton University. Under the direction of the Associate Director for Identity and Access Management, the Engineer will help evaluate , implement , and configure cloud-based solutions for identity security services including account lifecycle management, authentication and authorization, conditional access, zero-trust enforcement, identity governance, and access management. The Engineer will collaborate with campus partners to develop and implement solutions intended to secure the data and intellectual property of the University and to protect the security and privacy of faculty, staff, students, and affiliates. The Engineer will work with IAM team members, application developers, system administrators, and cloud engineers to implement secure and cost-effective designs. The Engineer will help produce standard, repeatable, and auditable processes. The Engineer will investigate new technologies and standards and will make recommendations on their adoption . The Engineer will document processes, policies, and technical designs so that coworkers clearly understand how to operate and support cloud identity services. The Engineer will conduct troubleshooting, incident response, and customer service activities as required .


Cloud  Engineering 

  • Interpret requirements, recommend solutions, configure software, and write code to manage and ma i ntain secure cloud identity services. 
  • Develop, configure, maintain , and administrate enterprise cloud identity and security systems including Azure AD, single sign-on, multi-factor authentication, role- and attribute-based access controls, conditional access policies, secrets management, and others. 
  • Develop and maintain continuous integration/deployment pipelines, container orchestration, script-based automation, and infrastructure-as-code to support cloud services and applications as required . 
  • Provide advice, consultation, training, and tooling to campus partners wishing to take advantage of the cloud identity services enumerated above . 

 Operations Engineering 
Serve as a primary subject matter expert for Microsoft Azure AD/Entra ID and one or more of the following technologies:

  •  Single Sign-On /Identity Federation services including saml2, Open ID Connect, OAuth, social login, and others. 
  •  Conditional Access Policy configuration and management . 
  •  Attribute-Base Access Control using groups . 
  •  DevOps pipelines, Infras tructure-as-Code , secrets management, configuration management tools, container orchestration, and related technologies 
  •  Scripting and automation 
  •  Monitoring and alerting 
  •  M igrate identity and access management use cases from legacy, on-premises applications / services into cloud services. 
  •  Utilize continuous integration/deployment pipelines to manage software configurations, deploy and update applications, and deliver security patches to IAM applications in cloud services . 

 Dev Sec Ops Strategy and Adoption 

  • Lead and sustain cultural change for agile Dev Sec Ops practices including automated security testing, auditing, monitoring , attribute- and role-based access control, secrets management , and security by design . 

 Mentoring and Knowledge Shar ing 

  •  M entor and coach team members to develop their knowledge and technical skills in cloud identity security, process automation , infrastructure as code , access management, and identity governance. 
  •  Maintain and share knowledge of new and developing technologies and industry standards related to cloud migrations and operations, identity security, security operations, security engineering, software development security and others as required . 

 Operational Support 

  •  Document code and configurations . 
  •  Respond to requests and incidents raised in the IT Service Management system. 
  •  Participate in after-hours on-call rotation . 
  •  Ensure services and systems are reliably monitored for security and performance . 
  •  Ensure compliance with asset, change, incident, and problem management policies. 

 Professional Development 

  •  Acquire and m aintain relevant certifications . 
  •  Maintain knowledge of modern application development best practices . 
  •  Keep pace with industry trends, new developments, and changing standards and requirements. 


 Essential Qualifications 

  •  5 years of application , systems, or service development and operations experience, with at least 3 years of cloud experience developing and deploying infrastructure as code , container orchestration, and/or CI/CD pipelines . Preference given to MS Azure AD / Entra ID experience. 
  •  Solid understanding of security best practices and related concepts such as the CIA triad, defense-in-depth, least privilege, etc. 
  •  A bility to successfully lead implementation efforts and projects on time and under budget . 
  •  Commitment to collaboration and teamwork in the pursuit of operational excellence. 
  •  Interest in learning new and developing technologies and industry standards and sharing that knowledge with peers and stakeholders . 
  •  Ability to interpret technical requirements and research, evaluat e , and recommend technical solutions . 
  •  Education: Bachelor’s degree, or equivalent related work experience. 

Preferred Qualifications

  •  Experience designing and configuring infrastructure to meet application requirements. 
  •  Security and vendor certifications such as Security+, C C SP, Microsoft AZ-500 or similar . 
  •  Skill in leading training sessions , teaching new skills , and transferring knowle d ge to others . 
  •  Familiarity with IT service managem ent (ITIL certification preferred) 
  •  In-depth scripting knowledge, preferably using PowerShell, Azure CLI, and/or Bicep . 
  •  Excellent written and oral communication skills, including experience writing and maintaining documentation. 
  •  Initiative and the ability to work with minimal supervision. 
  •  Ability to share responsibility for off-hours service outage support. 
  •  Experience with ITSM systems such as ServiceNow. 

Princeton University is an Equal Opportunity/Affirmative Action Employer and all qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability status, protected veteran status, or any other characteristic protected by law. KNOW YOUR RIGHTS

 Standard Weekly Hours


 Eligible for Overtime


Benefits Eligible


 Probationary Period

180 days

Essential Services Personnel (see Policy For Detail)


Physical Capacity Exam Required


Valid Driver’s License Required


Experience Level

Mid-Senior Level

Please mention you found this job on JobDevOps. Thanks and good luck!