CDN & Edge Infrastructure Engineer (On-Site)

CDN & Edge Infrastructure Engineer (or) Cloud migration

Duration: long-term

Location: Dallas, TX

Job Description:

CDN & Edge Migration

• Lead the refactoring of AWS CloudFront-based IaC (Terraform, CloudFormation) into Cloudflare IaC modules using Terraform or Wrangler.
• Migrate and optimize AWS CloudFront distributions to Cloudflare CDN with equivalent or improved caching, compression, and SSL/TLS configurations.
• Recreate and enhance AWS WAF rules in Cloudflare WAF, ensuring parity for rate limits, geo-blocking, and custom rule groups via Terraform.
• Translate and deploy AWS Lambda Edge functions into Cloudflare Workers / Edge Functions, ensuring functional equivalence and latency improvements.
• Validate edge routing, caching, and security behavior post-migration using synthetic and load testing tools.

r (IaC) & Automation

• Maintain all configurations in Git-based IaC repositories with full CI/CD automation for deployments.
• Develop reusable Terraform modules for Cloudflare CDN, WAF & DNS zones.
• Implement environment-based configuration (Dev, Stage, Prod) with variable management, tagging, and policy enforcement.
• Integrate IaC validation, linting, and compliance checks (e.g., Sentinel or OPA) into pipelines.

DNS & Traffic Management

• Establish and manage DNS Hosted Zones in Cloudflare, including domain delegation, CNAME/ALIAS flattening, and traffic routing policies.
• Implement Geo-DNS and failover routing for critical Smart TV and mobile backend endpoints.
• Automate DNS record management and zone imports using Cloudflare Terraform Provider.
• Migrate existing Route53 records and health checks into Cloudflare equivalents with rollback safety.

Performance, Security & Observability

• Tune CDN caching policies (cache keys, TTLs, origin shielding) to optimize global performance.
• Integrate Cloudflare WAF, Bot Management, and Page Rules to ensure secure delivery of APIs and content endpoints.
• Configure Real User Monitoring (RUM) and Cloudflare Analytics dashboards for performance visibility.
• Implement Zero Trust principles (Access, Gateway, and DLP) for edge security enforcement.

Collaboration & Delivery

• Collaborate with DevOps, backend, and application teams to align CDN behavior with app logic and API routing.
• Document migration processes, edge routing flows, and IaC module usage.
• Conduct knowledge transfer sessions for operational and support teams’ post-migration.

Required Qualifications:

• 5 years of experience in CDN engineering, edge networking, or cloud migration roles.
• Proven hands-on experience with:

· AWS CloudFront, WAF, Lambda Edge
· Cloudflare CDN, WAF, Workers, Zero Trust Access
· Terraform / Terragrunt for IaC (Cloudflare and AWS providers)
· CI/CD systems (GitHub Actions, Jenkins, or GitLab CI)

• Solid understanding of DNS architecture, SSL/TLS, caching strategies, and edge routing.
• Experience in IaC-driven automation, testing, and deployment at scale.

Preferred Skills:

• Experience with Wrangler CLI, Cloudflare Pages/Workers KV, or Durable Objects.
• Familiarity with Smart TV and OTT content delivery, media streaming (HLS/DASH), and low-latency edge delivery.
• Understanding multi-CDN architectures and global failover routing.

Certifications:
· Terraform Associate (Hashi Corp Certified)
· Cloudflare Certified Performance & Security Specialist
· AWS Solutions Architect or DevOps Engineer

Soft Skills:

• Strong analytical mindset with an eye for latency and cost optimization.
• Excellent collaboration and communication across cross-functional cloud and product teams.
• Hands-on problem solver who thrives in migration and modernization programs.
• Detail-oriented documentation and disciplined infrastructure governance

Education:

• Bachelor’s or Master’s degree in Computer Science, Computer or Electrical Engineering, Mathematics, or a related field.