PLATFORM ENGINEER
1400 West Washington Street
Phoenix, AZ 85007
Salary: $80,000 - $121,000
Grade: 27
Closing Date: Open until business needs are met
The Platform Engineer serves as a "full-stack" technical generalist responsible for the security, stability, and scalability of the agency’s hybrid IT infrastructure . Acting as a Security Compliance Liaison and Digital Transformation Lead , this role ensures all technical deployments meet NIST security standards . The Engineer provides critical technical support for the Arizona Rural Health Transformation grant, maintaining the operational sovereignty of the infrastructure and integrations required to achieve grant-funded health data objectives. Reports to the Chief Information Officer. The position is grant-funded and employment is contingent upon the availability of funding.
Arizona’s Rural Health Transformation Program is supported by the Centers for Medicare & Medicaid Services (CMS) of the U.S. Department of Health and Human Services (HHS) as a part of a financial assistance award totaling $166,988,955.92 with 100 percent funded by CMS/HHS. The contents are those of the author(s) and do not necessarily represent the official views of, nor endorsement, by CMS/HHS, or the U.S. Government.
This position may offer the ability to work remotely, within Arizona, based upon the department's business needs and continual meeting of expected performance measures. The State of Arizona strives for a work culture that affords employees flexibility, autonomy, and trust. Across our many agencies, boards, and commissions, many State employees participate in the State’s Remote Work Program and are able to work remotely in their homes, in offices, and in hoteling spaces. All work, including remote work, should be performed within Arizona unless an exception is properly authorized in advance.
Hybrid Systems Administration & Infrastructure Management:
Serve as the primary technical generalist managing multi-cloud environments (GCP, AWS, Azure) with a primary emphasis on Google Cloud Platform (GCP). Administer physical and virtualized technologies, including Virtual Machines (VMs), Networking (VPCs, Firewalls), and Identity Access Management (IAM). Act as the internal technical lead for the management and integration of services received from ADOA-ASET, ensuring seamless platform integrity and rapid incident response. Manage the technical infrastructure and data integrations specifically supporting the Arizona Rural Health Transformation grant to ensure secure and reliable performance.
Security Risk Remediation & Compliance Liaison:
Coordinate with 3rd-party DevSecOps experts and the State CISO to understand and implement security controls. Physically remediate findings from risk and control assessments across all cloud and physical platforms. Track and mitigate CVEs and vulnerabilities to ensure perpetual adherence to NIST frameworks and state security policies securing the IT space housing the Arizona Rural Housing Health Transformation technology space.
Integration Management & SOP Development:
Manage the deployment and ongoing maintenance of agency integrations with ADOA-ASET enterprise services. Continuously translate system configurations, integration workflows, and remediation steps into formal Standard Operating Procedures (SOPs). Maintain cross-functional knowledge to support the Intelligent Data System (IDS) and eliminate "single-point-of-failure" risks. Support continued innovation through utilization of technology efficiencies.
General IT Operations & Technology Planning:
Provide end-user support and troubleshooting for agency staff. Manage IT asset inventory and hardware lifecycle. Assist leadership with technology planning including AI technologies and the evaluation of new hardware or software to ensure alignment with agency needs and state standards.
Process & Policy Development:
Translate state mandates and expert recommendations into formal Agency IT Policies. Create and maintain detailed Standard Operating Procedures (SOPs) for all technical workflows, system integrations, and security remediations to ensure operational sovereignty.
Innovation and Automation:
Research and implement innovative approaches to automate manual workflows and streamline technical interactions with agency partners.
Perform related duties as assigned.
| Knowledge, Skills & Abilities (KSAs): |
Knowledge of:
• Comprehensive understanding of multi-cloud architectures (GCP, AWS, Azure) and physical server environments.
• Working knowledge of NIST 800-series security controls and the remediation lifecycle for audit findings.
• Understanding of IT policy development and standardized documentation frameworks.
• General computer database standards and principles.
• Working knowledge of AI and machine learning tools and their practical application within a cloud environment.
Skill in:
• Policy Writing: Drafting clear, enforceable technical policies and SOPs based on complex state or 3rd-party requirements.
• Service Integration: Proficiency in managing enterprise service integrations provided by ADOA-ASET.
• Working knowledge of corporate IT security standards.-Ability to evaluate emerging technologies and AI software for compatibility with state security standards.
Ability to:
• Translate technical security risks and infrastructure needs into official agency governance documents.
• Act as a technical bridge between experts, state agencies, and internal staff to resolve security and operational gaps.
• Ability to implement security fixes and configuration changes as identified by risk assessments.
• Able to automate repetitive system administration tasks and streamline partner data exchanges.
• Demonstrated experience in NIST 800-series control implementation and risk assessment remediation.
• At least 5 years of actively supporting and managing cloud environments. At least 5 years IT systems administration in a mix of Windows and Linux system.
• A foundational understanding of database queries and design.
• Technical Writing: Proven experience in technical process mapping and the creation of Standard Operating Procedures (SOPs) or agency-wide IT policies.
| Pre-Employment Requirements: |
• Security Certifications: Candidates must possess, or be actively working toward, one of the following: CISSP, CCSP, or CompTIA Security+.
• Cloud Infrastructure Certifications: Candidates must possess, or be actively working toward, one of the following: Google Associate Cloud Engineer, AWS Cloud Practitioner, or Azure Fundamentals.
If this position requires driving or the use of a vehicle as an essential function of the job to conduct State business, then the following requirements apply: Driver’s License Requirements.
All newly hired State employees are subject to and must successfully complete the Electronic Employment Eligibility Verification Program (E-Verify).
The State of Arizona offers a comprehensive benefits package to include:
• Sick leave
• Retirement plan
• Health and dental insurance
• Vacation with 10 paid holidays per year
• Life insurance and long-term disability insurance
• Optional employee benefits include short-term disability insurance, deferred compensation
plans, and supplemental life insurance
• For a complete list of benefits provided by The State of Arizona, please visit our benefits page
By providing the option of a full-time or part-time remote work schedule, employees enjoy improved work/life balance, report higher job satisfaction, and are more productive. Remote work is a management option and not an employee entitlement or right. An agency may terminate a remote work agreement at its discretion.
Learn more about the Paid Parental Leave program here. For a complete list of benefits provided by The State of Arizona, please visit our benefits page
Positions in this classification participate in the Arizona State Retirement System (ASRS).
*NOTE - Enrollment eligibility in ASRS will become effective after 27 weeks of employment.
• If you have any questions, please feel free to contact Mariem Ly at mariem.ly@oeo.az.gov