Job Description
About NDi: Network Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi's firmly defined core values have driven all aspects of the business, which have been paramount to our company's success and the establishment of an enjoyable workplace atmosphere. At NDi, we believe that our people are the cornerstone of our success, and we value collaboration, career growth, and winning ideas. Military Veterans Encouraged to Apply. Job Description: We are seeking a Cloud/Platform Engineer to support enterprise cloud and platform initiatives for the VA under T4NG2. This role focuses on building and operating secure, scalable platform services in AWS GovCloud to support cloud-native application delivery within the VA Benefits Integration Platform (BIP) / Platform One ecosystem. This position is essential to enabling the VA's transition to modern, cloud-based architectures and improving system reliability, performance, and scalability. Requirements U.S. Citizenship is required Must be able to obtain a Public Trust clearance. This position is primarily remote; however, must be able to come on-site in Washington, DC, as required. Qualifications and Experience: Bachelor degree in Computer Science or related Minimum of five (5) years of relevant experience Certifications, such as AWS Solutions Architect, Azure Architect, CKA) are preferred Experience designing and operating AWS cloud environments (GovCloud preferred) Strong hands-on experience with Kubernetes (EKS or OpenShift) and container platforms Proficiency in Infrastructure as Code (Terraform strongly preferred) Experience with GitOps workflows (ArgoCD) and CI/CD tools (GitHub Actions) Experience building or supporting platform services for multiple development teams Knowledge of cloud networking, IAM, storage, and compute services Experience with observability and monitoring tools (Datadog, Splunk, Prometheus, CloudWatch) Familiarity with secrets management solutions (Vault, AWS Secrets Manager) Understanding of high-availability, scalability, and distributed systems design Preferred Qualifications: Experience supporting VA Platform One / BIP or similar federal DevSecOps platforms Experience implementing GitOps and declarative infrastructure patterns Knowledge of Zero Trust Architecture (ZTA) in federal environments Experience with service mesh technologies (Istio, Linkerd) (nice-to-have) Familiarity with container hardening standards (DoD STIGs, CIS benchmarks) Experience with federal cloud environments (GovCloud, Azure Government) Knowledge of Platform One or enterprise platform services Experience with hybrid cloud and multi-cloud strategies Responsibilities Cloud ArchitecturePlatform Engineering: Design and implement secure, scalable cloud architectures in AWS GovCloud (preferred) and hybrid environments Build and maintain Kubernetes-based platform services (EKS/OpenShift) to support multi-team workloads Develop and manage shared platform services (networking, ingress, service mesh, CI/CD integration points) Establish golden paths and reusable platform patterns to accelerate developer onboarding and delivery Infrastructure as CodeAutomation: Automate infrastructure provisioning using Terraform (preferred) and other IaC tools Implement immutable infrastructure and environment standardization practices Integrate infrastructure workflows with GitHub Actions and GitOps (ArgoCD) ContainerApplication Platform: Deploy and manage containerized workloads using Docker, Kubernetes, and Helm Develop and maintain Helm charts and Kubernetes manifests for standardized deployments Support multi-environment (dev/test/prod) Kubernetes strategies and cluster lifecycle management Observability, ReliabilityPerformance: Implement and maintain enterprise observability solutions (Datadog, Splunk, Prometheus, CloudWatch) Define and monitor SLIs/SLOs to ensure system reliability and performance Support high availability, scalability, and disaster recovery strategies SecurityCompliance Alignment: Ensure platform services align with VA security policies, Zero Trust principles, and ATO requirements Integrate identity, access, and secrets management (e.g., IAM, Vault, AWS Secrets Manager)