5+ years of hands-on experience in Python, Terraform, Azure, and DevOps/Pipelines (Azure DevOps or GitHub Actions).
Proven experience deploying Azure infrastructure with Terraform (modules, workspaces, state management, policy as code) and running AKS workloads in regulated or enterprise environments.
Strong understanding of Entra ID (app registrations, SPNs/managed identities, RBAC, workload identity for AKS) and secrets management (Key Vault, CSI driver).
Solid grasp of networking and security in Azure (Private Endpoints, Firewall, NSGs, routing, TLS/certs, image governance).
Requirements:
Terraform-driven IaC to build and manage modular Azure AI services, networking, AKS clusters, and enterprise controls (Policies, RBAC).
Pipelines GitOps: Create Azure DevOps YAML pipelines (and/or GitHub Actions) for plan/apply, linting, security scans, policy checks, environment promotions, and declarative AKS configs (Helm/Manifests/Flux/Argo).
Kubernetes Platform Enablement: Engineer AKS add-ons,(namespace isolation, network policies, HPA, and autoscaling) for AI workloads.
Security and Observability: Implement Entra ID integration, workload identities, key rotation, Azure Policy, Defender for Cloud, and monitoring/alerts for AI workloads.
Job description
Company Overview:
Req ID: 365134
NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.
NTT DATA's Client is currently seeking a Deployment Engineer & Coordinator to join their team in Plano, Texas, United States (US).
Job Description:
Key Responsibilities:
1) Engineering – Build & Run (70%)
IaC with Terraform:
Author, modularize, and version Terraform modules for Azure AI services (e.g., Azure OpenAI, Azure AI Search, Azure ML, Key Vault, Storage, Event Hub, Container Registry), networking (VNets, Subnets, NSGs, Private Endpoints), AKS clusters/namespaces, and enterprise controls (Policies, RBAC).
Pipelines & GitOps: Create Azure DevOps YAML pipelines (and/or GitHub Actions if used) for plan/apply, linting, security scans, policy checks, environment promotions, and change approvals; enable declarative app configs for AKS (Helm/Manifests/Flux/Argo). (Aligned to our Azure DevOps + GitOps reference patterns.)
Kubernetes Platform Enablement: Engineer shared AKS add‐ons (Ingress, Cert‐Manager, External‐DNS, CSI Secrets, Dapr/Sidecars as applicable); implement namespace isolation, network policies, HPA, and autoscaling for AI services/agents. (Supports our AI asset deployment model via dockerization + automated Terraform provisioning.)
Security & Entra ID Integration: Implement Entra ID app registrations, service principals/managed identities, workload identities for AKS, role assignments, and key rotation; apply Azure Policy, Defender for Cloud, and private‐only data paths.
Observability & Reliability: Wire up Application Insights/Log Analytics, platform‐level SLOs, and alerts; integrate with model/endpoint monitoring for AI workloads (drift, schema/feature checks) where applicable.
Platform Templates & Golden Paths: Maintain reusable "golden” Terraform stacks, pipeline templates, and AKS baselines so onboarding teams can self‐serve via standardized deployment patterns.
2) Coordination – Kanban, Intake & Risk (30%) Kanban Flow: Own the Kanban board for platform onboarding (backlog hygiene, WIP limits, service classes), run standups/flow reviews, and make work visible for stakeholders in Engineering, Security, and App Teams.
Onboarding Coordination: Facilitate intake for new apps, clarify prerequisites (networking, identity, data boundaries), and align sequencing of Terraform updates, pipeline changes, and security reviews across teams.
Risk/Issue Tracking: Proactively identify blockers (policy violations, quota limits, identity gaps, secrets management) and drive mitigations; escalate where needed with crisp, written updates.
Standards & Enablement: Publish short enablement guides, walkthroughs, and checklists so product teams can adopt platform controls quickly and consistently.
Minimum Qualifications
5+ years of hands‐on experience in Python, Terraform, Azure, and DevOps/Pipelines (Azure DevOps or GitHub Actions).
Proven experience deploying Azure infrastructure with Terraform (modules, workspaces, state management, policy as code) and running AKS workloads in regulated or enterprise environments. Strong understanding of Entra ID (app registrations, SPNs/managed identities, RBAC, workload identity for AKS) and secrets management (Key Vault, CSI driver).
Solid grasp of networking & security in Azure (Private Endpoints, Firewall, NSGs, routing, TLS/certs, image governance).
Demonstrated ability to coordinate Kanban flow, manage intake, and drive cross‐team alignment with clear communication.
Where required by law, NTT DATA provides a reasonable range of compensation for specific roles. The starting pay range for this remote role is $65-$70/hour. This range reflects the minimum and maximum target compensation for the position across all US locations. Actual compensation will depend on a number of factors, including the candidate's actual work location, relevant experience, technical skills, and other qualifications. This position may also be eligible for incentive compensation based on individual and/or company performance.
About NTT DATA:
NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com
NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.
