Skill-Profil

Ansible

Playbooks, roles, inventory, modules, Galaxy, AWX/Tower, idempotency

Cloud & Infrastructure Infrastructure as Code

Rollen

wo dieser Skill vorkommt

Stufen

strukturierter Entwicklungspfad

Pflichtanforderungen

die anderen 11 optional

Domäne

Cloud & Infrastructure

skills.group

Infrastructure as Code

Zuletzt aktualisiert

17.3.2026

Verwendung

Wählen Sie Ihr aktuelles Level und vergleichen Sie die Erwartungen.

Was wird auf jedem Level erwartet

Die Tabelle zeigt, wie die Tiefe von Junior bis Principal wächst.

Rolle	Pflicht	Beschreibung
Cloud Engineer	Pflicht	Understands basic Ansible concepts including playbooks, inventory files, and module usage for cloud infrastructure provisioning. Follows team-provided playbooks for deploying and configuring cloud resources across AWS, GCP, or Azure environments. Uses ansible-playbook command to run existing automation tasks and reviews output for errors during cloud resource management.
DevOps Engineer		Understands basic Ansible concepts including playbooks, modules, inventory, and the push-based configuration model. Follows team playbooks for server configuration, application deployment, and routine maintenance tasks. Uses ansible-playbook and ansible commands to execute existing automation and reviews task output to verify successful execution across managed hosts.
DevSecOps Engineer		Understands basic Ansible concepts with a security focus — using playbooks for security baseline configuration, patch management, and compliance checks. Follows team-provided playbooks for hardening server configurations, managing SSH keys, and deploying security tools. Uses Ansible Vault for basic secret encryption and follows team guidelines for secure playbook development.
Infrastructure Engineer		Understands basic Ansible concepts for infrastructure configuration management — playbooks, inventory, modules, and the agentless architecture. Follows team playbooks for server provisioning, OS configuration, package management, and basic monitoring agent deployment. Uses ansible and ansible-playbook commands to execute existing automation and checks output for task failures on managed infrastructure hosts.
Network Engineer		Understands basic Ansible concepts for network automation — network modules, connection plugins (network_cli, httpapi), and inventory for network devices. Follows team playbooks for retrieving device configurations, performing backup operations, and pushing standardized configurations to switches, routers, and firewalls. Uses ansible-playbook to execute network automation tasks and reviews output for connection errors and configuration conflicts.
Platform Engineer	Pflicht	Understands basic Ansible concepts for platform component configuration and deployment automation. Follows team playbooks for provisioning platform services — container runtimes, service mesh components, monitoring agents, and load balancer configurations. Uses ansible-playbook to execute existing platform automation and reviews output for deployment issues across platform infrastructure hosts.

Rolle	Pflicht	Beschreibung
Cloud Engineer	Pflicht	Independently writes Ansible playbooks and roles for cloud infrastructure automation including VM provisioning, network configuration, and security group management. Implements dynamic inventory scripts for cloud providers and uses Ansible collections (amazon.aws, google.cloud, azure.azcollection) for idempotent resource management. Structures playbooks with roles, handlers, and templates for reusable cloud configuration patterns across environments.
DevOps Engineer		Independently writes Ansible playbooks and roles for deployment automation, configuration management, and infrastructure provisioning in CI/CD pipelines. Implements dynamic inventories, Jinja2 templates for environment-specific configurations, and handlers for service management. Structures automation code with reusable roles, variable hierarchies, and tags for selective task execution across development, staging, and production environments.
DevSecOps Engineer		Independently writes Ansible playbooks for security automation including CIS benchmark enforcement, vulnerability scanning orchestration, and automated incident response procedures. Implements security-hardened Ansible configurations with vault-encrypted variables, least-privilege execution, and audit logging. Structures security automation roles for compliance frameworks (SOC2, PCI-DSS, HIPAA) with idempotent remediation tasks and compliance reporting.
Infrastructure Engineer		Independently writes Ansible playbooks and roles for infrastructure lifecycle management including bare-metal provisioning, storage configuration, network setup, and monitoring stack deployment. Implements inventory management with group variables, host-specific overrides, and dynamic inventory sources for CMDB and cloud API integration. Structures infrastructure automation with modular roles, Jinja2 templates for config generation, and handlers for service orchestration across server fleets.
Network Engineer		Independently writes Ansible playbooks for network device configuration using platform-specific collections (cisco.ios, arista.eos, juniper.junos) and resource modules for declarative network state management. Implements network automation patterns including config backup and diff workflows, compliance validation against golden configs, and VLAN/ACL/routing protocol provisioning. Structures network automation with roles for device types, Jinja2 templates for configuration rendering, and inventory groups for network segments.
Platform Engineer	Pflicht	Independently writes Ansible playbooks and roles for platform infrastructure provisioning including Kubernetes cluster bootstrapping, certificate management, and observability stack deployment. Implements reusable platform automation modules with dynamic inventories, vault-encrypted secrets, and environment-specific variable hierarchies. Structures platform automation as self-service roles enabling development teams to provision standardized infrastructure components.

Rolle	Pflicht	Beschreibung
Cloud Engineer	Pflicht	Designs Ansible automation architecture for enterprise cloud infrastructure with multi-cloud support, encrypted secrets management via Ansible Vault, and CI/CD integration for infrastructure-as-code pipelines. Implements advanced patterns including custom modules for cloud-specific operations, Ansible Tower/AWX workflows for complex provisioning sequences, and idempotent drift detection playbooks. Optimizes Ansible execution performance for large cloud estates through parallelism tuning, fact caching, and connection pooling strategies.
DevOps Engineer	Pflicht	Designs Ansible automation architecture for organization-wide DevOps workflows including rolling deployments, zero-downtime upgrades, and disaster recovery procedures. Implements advanced patterns with custom modules, callback plugins, and Ansible Tower/AWX for scheduled automation and self-service operations. Optimizes execution at scale through strategy plugins, mitogen acceleration, and efficient fact gathering patterns for large inventories.
DevSecOps Engineer	Pflicht	Designs Ansible security automation architecture for enterprise-wide compliance enforcement and threat response. Implements advanced patterns including SCAP content automation with Ansible, integration with vulnerability management platforms, and automated security policy enforcement across hybrid infrastructure. Optimizes security automation for speed during incident response while maintaining audit trails and change management compliance.
Infrastructure Engineer	Pflicht	Designs Ansible automation architecture for enterprise infrastructure management across data centers and cloud environments. Implements advanced patterns including custom connection plugins for network devices, callback plugins for ITSM integration, and Tower/AWX workflows for multi-stage infrastructure provisioning. Optimizes Ansible for large-scale infrastructure operations through performance tuning, custom inventory plugins, and integration with configuration management databases for compliance tracking.
Network Engineer		Designs Ansible network automation architecture for enterprise network infrastructure spanning multi-vendor environments, data center fabrics, and WAN networks. Implements advanced patterns including network resource module development, custom HTTPAPI plugins for proprietary platforms, and Tower/AWX workflows for change management with pre/post validation. Optimizes network automation for scale through connection persistence, batch configuration deployment, and integration with network source-of-truth platforms like NetBox.
Platform Engineer	Pflicht	Designs Ansible automation architecture for the internal developer platform covering cluster lifecycle management, platform service deployment, and tenant onboarding workflows. Implements advanced patterns including custom Ansible collections for platform-specific resources, Tower/AWX integration for self-service platform operations, and idempotent platform upgrade playbooks with rollback capabilities. Optimizes platform automation for reliability through comprehensive testing with Molecule, infrastructure validation, and integration with platform observability systems.

Rolle	Pflicht	Beschreibung
Cloud Engineer	Pflicht	Defines Ansible automation standards and best practices for cloud infrastructure teams across the organization. Establishes role and collection development guidelines, testing frameworks with Molecule, and Ansible Tower/AWX governance for self-service cloud provisioning. Conducts architecture reviews of automation codebases and drives adoption of standardized cloud provisioning patterns through reusable Ansible collections.
DevOps Engineer	Pflicht	Defines Ansible automation standards and DevOps workflow patterns across the engineering organization. Establishes playbook development guidelines, testing practices with Molecule and ansible-lint, and Tower/AWX governance for team self-service automation. Conducts architecture reviews of automation codebases and mentors teams on idempotent design, secret management, and scalable role development.
DevSecOps Engineer	Pflicht	Defines Ansible security automation standards and compliance-as-code practices across the organization. Establishes security playbook development guidelines, automated compliance verification workflows, and Tower/AWX governance for security team operations. Conducts architecture reviews of security automation and drives adoption of infrastructure hardening patterns through reusable security Ansible collections.
Infrastructure Engineer	Pflicht	Defines Ansible automation standards for infrastructure engineering teams across the organization. Establishes infrastructure-as-code practices with Ansible including role development guidelines, testing frameworks with Molecule, and Tower/AWX governance for change management and self-service provisioning. Conducts architecture reviews of infrastructure automation and drives standardization of server provisioning, configuration management, and lifecycle automation patterns.
Network Engineer		Defines Ansible network automation standards and practices across the organization's network engineering teams. Establishes network-as-code workflows including configuration management pipelines, compliance automation frameworks, and Tower/AWX governance for network change management. Conducts architecture reviews of network automation codebases and drives adoption of declarative network management through standardized Ansible collections and testing with network simulation tools.
Platform Engineer	Pflicht	Defines Ansible automation standards for platform engineering teams, establishing infrastructure-as-code practices for the internal developer platform. Creates governance frameworks for platform Ansible collections, testing requirements, and Tower/AWX workflow standards for platform operations. Conducts architecture reviews of platform automation and drives adoption of self-service infrastructure provisioning patterns across the organization.

Rolle	Pflicht	Beschreibung
Cloud Engineer	Pflicht	Shapes the organization's infrastructure automation strategy with Ansible as a core tool for multi-cloud configuration management. Drives innovation in Ansible-based cloud automation including event-driven automation with ansible-rulebook, GitOps integration patterns, and self-healing infrastructure playbooks. Influences Ansible community practices through contributions to cloud provider collections and conference presentations on enterprise-scale cloud automation.
DevOps Engineer	Pflicht	Shapes the organization's configuration management and automation strategy with Ansible at its core. Drives innovation in Ansible automation patterns including event-driven automation, GitOps-integrated playbook delivery, and infrastructure testing frameworks. Influences the Ansible community through collection development, upstream contributions, and thought leadership on enterprise-scale configuration management practices.
DevSecOps Engineer	Pflicht	Shapes the organization's security automation strategy with Ansible for compliance, threat response, and infrastructure hardening at enterprise scale. Drives innovation in security automation patterns including event-driven security response with ansible-rulebook, zero-trust infrastructure enforcement, and continuous compliance monitoring through Ansible-based drift detection. Influences security automation community practices and contributes to Ansible security collections and CIS benchmark automation standards.
Infrastructure Engineer	Pflicht	Shapes the organization's infrastructure automation strategy with Ansible for hybrid and multi-cloud configuration management at enterprise scale. Drives innovation in infrastructure automation including event-driven infrastructure response, self-healing patterns with ansible-rulebook, and integration with modern platform engineering approaches. Influences infrastructure automation community through Ansible collection development, upstream contributions, and thought leadership on datacenter-scale configuration management.
Network Engineer		Shapes the organization's network automation strategy with Ansible for multi-vendor, multi-domain network infrastructure management. Drives innovation in network automation including intent-based networking with Ansible, event-driven network response with ansible-rulebook, and closed-loop automation integrating monitoring data with remediation playbooks. Influences the Ansible network automation community through collection contributions, specification work, and thought leadership on enterprise network-as-code practices.
Platform Engineer	Pflicht	Shapes the organization's platform automation strategy with Ansible for scalable, self-service infrastructure delivery. Drives innovation in platform automation patterns including declarative platform state management, event-driven platform healing with ansible-rulebook, and integration with Kubernetes operators for hybrid platform management. Influences platform engineering community practices through Ansible collection development and thought leadership on platform-as-a-product automation design.

Junior 6 Anforderungen

Cloud Engineer
Pflicht

Understands basic Ansible concepts including playbooks, inventory files, and module usage for cloud infrastructure provisioning. Follows team-provided playbooks for deploying and configuring cloud resources across AWS, GCP, or Azure environments. Uses ansible-playbook command to run existing automation tasks and reviews output for errors during cloud resource management.
DevOps Engineer

Understands basic Ansible concepts including playbooks, modules, inventory, and the push-based configuration model. Follows team playbooks for server configuration, application deployment, and routine maintenance tasks. Uses ansible-playbook and ansible commands to execute existing automation and reviews task output to verify successful execution across managed hosts.
DevSecOps Engineer

Understands basic Ansible concepts with a security focus — using playbooks for security baseline configuration, patch management, and compliance checks. Follows team-provided playbooks for hardening server configurations, managing SSH keys, and deploying security tools. Uses Ansible Vault for basic secret encryption and follows team guidelines for secure playbook development.

Infrastructure Engineer

Understands basic Ansible concepts for infrastructure configuration management — playbooks, inventory, modules, and the agentless architecture. Follows team playbooks for server provisioning, OS configuration, package management, and basic monitoring agent deployment. Uses ansible and ansible-playbook commands to execute existing automation and checks output for task failures on managed infrastructure hosts.
Network Engineer

Understands basic Ansible concepts for network automation — network modules, connection plugins (network_cli, httpapi), and inventory for network devices. Follows team playbooks for retrieving device configurations, performing backup operations, and pushing standardized configurations to switches, routers, and firewalls. Uses ansible-playbook to execute network automation tasks and reviews output for connection errors and configuration conflicts.
Platform Engineer
Pflicht

Understands basic Ansible concepts for platform component configuration and deployment automation. Follows team playbooks for provisioning platform services — container runtimes, service mesh components, monitoring agents, and load balancer configurations. Uses ansible-playbook to execute existing platform automation and reviews output for deployment issues across platform infrastructure hosts.

Middle 6 Anforderungen

Cloud Engineer
Pflicht

Independently writes Ansible playbooks and roles for cloud infrastructure automation including VM provisioning, network configuration, and security group management. Implements dynamic inventory scripts for cloud providers and uses Ansible collections (amazon.aws, google.cloud, azure.azcollection) for idempotent resource management. Structures playbooks with roles, handlers, and templates for reusable cloud configuration patterns across environments.
DevOps Engineer

Independently writes Ansible playbooks and roles for deployment automation, configuration management, and infrastructure provisioning in CI/CD pipelines. Implements dynamic inventories, Jinja2 templates for environment-specific configurations, and handlers for service management. Structures automation code with reusable roles, variable hierarchies, and tags for selective task execution across development, staging, and production environments.
DevSecOps Engineer

Independently writes Ansible playbooks for security automation including CIS benchmark enforcement, vulnerability scanning orchestration, and automated incident response procedures. Implements security-hardened Ansible configurations with vault-encrypted variables, least-privilege execution, and audit logging. Structures security automation roles for compliance frameworks (SOC2, PCI-DSS, HIPAA) with idempotent remediation tasks and compliance reporting.

Infrastructure Engineer

Independently writes Ansible playbooks and roles for infrastructure lifecycle management including bare-metal provisioning, storage configuration, network setup, and monitoring stack deployment. Implements inventory management with group variables, host-specific overrides, and dynamic inventory sources for CMDB and cloud API integration. Structures infrastructure automation with modular roles, Jinja2 templates for config generation, and handlers for service orchestration across server fleets.
Network Engineer

Independently writes Ansible playbooks for network device configuration using platform-specific collections (cisco.ios, arista.eos, juniper.junos) and resource modules for declarative network state management. Implements network automation patterns including config backup and diff workflows, compliance validation against golden configs, and VLAN/ACL/routing protocol provisioning. Structures network automation with roles for device types, Jinja2 templates for configuration rendering, and inventory groups for network segments.
Platform Engineer
Pflicht

Independently writes Ansible playbooks and roles for platform infrastructure provisioning including Kubernetes cluster bootstrapping, certificate management, and observability stack deployment. Implements reusable platform automation modules with dynamic inventories, vault-encrypted secrets, and environment-specific variable hierarchies. Structures platform automation as self-service roles enabling development teams to provision standardized infrastructure components.

Senior 6 Anforderungen

Cloud Engineer
Pflicht

Designs Ansible automation architecture for enterprise cloud infrastructure with multi-cloud support, encrypted secrets management via Ansible Vault, and CI/CD integration for infrastructure-as-code pipelines. Implements advanced patterns including custom modules for cloud-specific operations, Ansible Tower/AWX workflows for complex provisioning sequences, and idempotent drift detection playbooks. Optimizes Ansible execution performance for large cloud estates through parallelism tuning, fact caching, and connection pooling strategies.
DevOps Engineer
Pflicht

Designs Ansible automation architecture for organization-wide DevOps workflows including rolling deployments, zero-downtime upgrades, and disaster recovery procedures. Implements advanced patterns with custom modules, callback plugins, and Ansible Tower/AWX for scheduled automation and self-service operations. Optimizes execution at scale through strategy plugins, mitogen acceleration, and efficient fact gathering patterns for large inventories.
DevSecOps Engineer
Pflicht

Designs Ansible security automation architecture for enterprise-wide compliance enforcement and threat response. Implements advanced patterns including SCAP content automation with Ansible, integration with vulnerability management platforms, and automated security policy enforcement across hybrid infrastructure. Optimizes security automation for speed during incident response while maintaining audit trails and change management compliance.

Infrastructure Engineer
Pflicht

Designs Ansible automation architecture for enterprise infrastructure management across data centers and cloud environments. Implements advanced patterns including custom connection plugins for network devices, callback plugins for ITSM integration, and Tower/AWX workflows for multi-stage infrastructure provisioning. Optimizes Ansible for large-scale infrastructure operations through performance tuning, custom inventory plugins, and integration with configuration management databases for compliance tracking.
Network Engineer

Designs Ansible network automation architecture for enterprise network infrastructure spanning multi-vendor environments, data center fabrics, and WAN networks. Implements advanced patterns including network resource module development, custom HTTPAPI plugins for proprietary platforms, and Tower/AWX workflows for change management with pre/post validation. Optimizes network automation for scale through connection persistence, batch configuration deployment, and integration with network source-of-truth platforms like NetBox.
Platform Engineer
Pflicht

Designs Ansible automation architecture for the internal developer platform covering cluster lifecycle management, platform service deployment, and tenant onboarding workflows. Implements advanced patterns including custom Ansible collections for platform-specific resources, Tower/AWX integration for self-service platform operations, and idempotent platform upgrade playbooks with rollback capabilities. Optimizes platform automation for reliability through comprehensive testing with Molecule, infrastructure validation, and integration with platform observability systems.

Lead / Staff 6 Anforderungen

Cloud Engineer
Pflicht

Defines Ansible automation standards and best practices for cloud infrastructure teams across the organization. Establishes role and collection development guidelines, testing frameworks with Molecule, and Ansible Tower/AWX governance for self-service cloud provisioning. Conducts architecture reviews of automation codebases and drives adoption of standardized cloud provisioning patterns through reusable Ansible collections.
DevOps Engineer
Pflicht

Defines Ansible automation standards and DevOps workflow patterns across the engineering organization. Establishes playbook development guidelines, testing practices with Molecule and ansible-lint, and Tower/AWX governance for team self-service automation. Conducts architecture reviews of automation codebases and mentors teams on idempotent design, secret management, and scalable role development.
DevSecOps Engineer
Pflicht

Defines Ansible security automation standards and compliance-as-code practices across the organization. Establishes security playbook development guidelines, automated compliance verification workflows, and Tower/AWX governance for security team operations. Conducts architecture reviews of security automation and drives adoption of infrastructure hardening patterns through reusable security Ansible collections.

Infrastructure Engineer
Pflicht

Defines Ansible automation standards for infrastructure engineering teams across the organization. Establishes infrastructure-as-code practices with Ansible including role development guidelines, testing frameworks with Molecule, and Tower/AWX governance for change management and self-service provisioning. Conducts architecture reviews of infrastructure automation and drives standardization of server provisioning, configuration management, and lifecycle automation patterns.
Network Engineer

Defines Ansible network automation standards and practices across the organization's network engineering teams. Establishes network-as-code workflows including configuration management pipelines, compliance automation frameworks, and Tower/AWX governance for network change management. Conducts architecture reviews of network automation codebases and drives adoption of declarative network management through standardized Ansible collections and testing with network simulation tools.
Platform Engineer
Pflicht

Defines Ansible automation standards for platform engineering teams, establishing infrastructure-as-code practices for the internal developer platform. Creates governance frameworks for platform Ansible collections, testing requirements, and Tower/AWX workflow standards for platform operations. Conducts architecture reviews of platform automation and drives adoption of self-service infrastructure provisioning patterns across the organization.

Principal 6 Anforderungen

Cloud Engineer
Pflicht

Shapes the organization's infrastructure automation strategy with Ansible as a core tool for multi-cloud configuration management. Drives innovation in Ansible-based cloud automation including event-driven automation with ansible-rulebook, GitOps integration patterns, and self-healing infrastructure playbooks. Influences Ansible community practices through contributions to cloud provider collections and conference presentations on enterprise-scale cloud automation.
DevOps Engineer
Pflicht

Shapes the organization's configuration management and automation strategy with Ansible at its core. Drives innovation in Ansible automation patterns including event-driven automation, GitOps-integrated playbook delivery, and infrastructure testing frameworks. Influences the Ansible community through collection development, upstream contributions, and thought leadership on enterprise-scale configuration management practices.
DevSecOps Engineer
Pflicht

Shapes the organization's security automation strategy with Ansible for compliance, threat response, and infrastructure hardening at enterprise scale. Drives innovation in security automation patterns including event-driven security response with ansible-rulebook, zero-trust infrastructure enforcement, and continuous compliance monitoring through Ansible-based drift detection. Influences security automation community practices and contributes to Ansible security collections and CIS benchmark automation standards.

Infrastructure Engineer
Pflicht

Shapes the organization's infrastructure automation strategy with Ansible for hybrid and multi-cloud configuration management at enterprise scale. Drives innovation in infrastructure automation including event-driven infrastructure response, self-healing patterns with ansible-rulebook, and integration with modern platform engineering approaches. Influences infrastructure automation community through Ansible collection development, upstream contributions, and thought leadership on datacenter-scale configuration management.
Network Engineer

Shapes the organization's network automation strategy with Ansible for multi-vendor, multi-domain network infrastructure management. Drives innovation in network automation including intent-based networking with Ansible, event-driven network response with ansible-rulebook, and closed-loop automation integrating monitoring data with remediation playbooks. Influences the Ansible network automation community through collection contributions, specification work, and thought leadership on enterprise network-as-code practices.
Platform Engineer
Pflicht

Shapes the organization's platform automation strategy with Ansible for scalable, self-service infrastructure delivery. Drives innovation in platform automation patterns including declarative platform state management, event-driven platform healing with ansible-rulebook, and integration with Kubernetes operators for hybrid platform management. Influences platform engineering community practices through Ansible collection development and thought leadership on platform-as-a-product automation design.

Community

👁 Beobachten ✏️ Aenderung vorschlagen

Kommentare werden geladen...