Cloud Engineer
Design, build, and maintain the cloud infrastructure that runs modern applications — managing servers, databases, networking, and services on AWS, Azure, or Google Cloud so that software runs reliably, securely, and at scale.
A Cloud Engineer designs, builds, and maintains the cloud computing infrastructure that powers modern software systems. Rather than managing physical servers in a data centre, cloud engineers provision and configure virtualised resources — compute instances, managed databases, object storage, networking, content delivery networks, and managed services — on platforms like Amazon Web Services (AWS), Microsoft Azure, or Google Cloud Platform (GCP). Cloud engineering sits at the intersection of software development, systems administration, and networking: cloud engineers must understand how software is deployed and run (application layer), how networks route traffic and enforce security (network layer), and how infrastructure is provisioned and managed (platform layer). The discipline has evolved significantly from manual server provisioning to Infrastructure as Code (IaC) — writing code (Terraform, AWS CloudFormation, Bicep) that defines and provisions infrastructure declaratively, enabling version-controlled, reproducible, automated environments. Sri Lanka has a substantial and growing cloud engineering workforce. Almost all major enterprises — Dialog Axiata, John Keells Holdings, MAS Holdings, the large commercial banks, and government technology agencies — have cloud migration projects underway or completed. Sri Lankan IT outsourcing companies (99x, Zone24x7, Sysco LABS, Fortude, Acentura) maintain cloud teams serving international clients on AWS and Azure. The demand is real and sustained: cloud engineers who hold professional-level AWS or Azure certifications are among the most employable IT professionals in Sri Lanka today, with salaries significantly above the software engineering average.
What a Cloud Engineer does daily
- Provision and configure cloud resources — EC2 instances, S3 buckets, RDS databases, VPCs, load balancers, CloudFront CDN on AWS; equivalent services on Azure or GCP
- Write Infrastructure as Code — Terraform, AWS CloudFormation, or Azure Bicep; defining infrastructure declaratively so it can be version-controlled and reproduced
- Design cloud architectures — selecting the right services, sizing resources correctly, designing for high availability, fault tolerance, and disaster recovery
- Implement cloud security — IAM roles and policies, VPC security groups, encryption at rest and in transit, secrets management (AWS Secrets Manager, Azure Key Vault)
- Set up monitoring and observability — CloudWatch (AWS), Azure Monitor, Prometheus + Grafana; dashboards, alarms, and incident response
- Manage cloud costs — tagging resources, implementing budgets, right-sizing instances, using reserved instances or savings plans; cloud bills can be enormous without active management
- Implement CI/CD pipelines — automating application builds, tests, and deployments to cloud environments using GitHub Actions, AWS CodePipeline, or Azure DevOps
- Containerise and orchestrate workloads — Docker, Kubernetes (EKS on AWS, AKS on Azure, GKE on GCP); managing containerised applications at scale
- Configure cloud networking — subnets, route tables, VPN connections, Transit Gateways, DNS (Route 53), load balancers; ensuring traffic flows correctly and securely
- Perform cloud migrations — lifting existing on-premise workloads to cloud; replatforming databases, refactoring applications for cloud-native services
Step-by-Step Career Roadmap
- Learn how the internet works — "How DNS Works" (comics by Julia Evans), "How does the internet work?" (MDN, free); understanding DNS, HTTP, servers, and IP addresses is the foundation of cloud thinking
- Learn basic programming — Python; cloud automation is written in Python; understanding programming logic is essential before cloud infrastructure makes sense
- Set up a free AWS account (AWS Free Tier) or Azure account (Azure free tier) — both offer 12 months of free services; explore the console; provision a free EC2 instance or Azure VM
- Learn Linux basics — Linux Command Line for Beginners (Ubuntu tutorial, free); all cloud compute runs Linux
- Complete CS50 (Harvard, free) Weeks 0–6 — programming + web fundamentals; the best free introduction to computing concepts
- Julia Evans "How DNS Works" (free zine)
- CS50 Weeks 0–3 (Harvard, free)
- AWS Free Tier account setup and console exploration
- Linux command line tutorial (ubuntu.com, free)
- Cloud engineering is not a beginner-friendly specialisation — it requires understanding of networking, Linux, programming, and security before the cloud-specific parts make sense; building these foundations now makes everything much faster later