Cloud Solutions Architect

About The Position

Requirements

• 7+ years of experience in cloud, infrastructure, security engineering, or network architecture with significant hands-on delivery responsibilities.
• Strong hands-on expertise with Terraform (modularization, state strategies, environment promotion practices).
• Strong knowledge of cloud networking and security fundamentals (segmentation, routing, private connectivity, identity, logging/monitoring).
• Working knowledge of NIST SP 800-53 and the ability to translate controls into implemented technical safeguards and evidence.
• Proven ability to learn new cloud services quickly and apply them safely in production.
• Strong communication skills, including the ability to produce clear technical documentation and operational guidance.

Nice To Haves

• Hands-on AWS experience (networking, IAM, edge/API security patterns).
• Experience with Azure API Management (APIM) and/or Azure Front Door (WAF/ingress/API protection patterns).
• Experience implementing compliance automation and evidence collection using standardized IaC artifacts and cloud-native tooling.

Responsibilities

• Secure Cloud & Network Architecture (Core Focus)
• Design and implement secure cloud network topologies and connectivity patterns (segmentation, routing, private connectivity, DNS, ingress/egress).
• Build reusable reference patterns and implement them—supporting teams through delivery, production readiness, and operational handoff.
• Standardize secure architecture approaches that scale across teams and environments.
• Infrastructure as Code (Terraform-First)
• Deliver repeatable cloud environments using Terraform (modules, state strategy, environment separation, promotion workflows, and deployment automation).
• Establish secure-by-default IaC patterns and guardrails that teams can adopt broadly.
• Drive code quality through reviews, reusable modules, documentation, and automation practices.
• Cloud Security Controls & Governance
• Implement and operationalize cloud security controls (identity & access, network protection, monitoring, baseline hardening).
• Identify security gaps and implement remediation through configuration changes and Terraform updates.
• Improve detection/response readiness through logging, alerting, and operational runbooks.
• NIST SP 800-53 Alignment & Evidence Readiness
• Map technical designs and deployed configurations to NIST SP 800-53 control families (e.g., AC, AU, CM, IA, SC, SI).
• Produce and maintain audit-ready evidence such as:
• Architecture diagrams and data flow documentation
• Configuration baselines and standards
• Logging/monitoring proof and access control evidence
• Control mappings and implementation notes
• Runbooks for operations and incident response
• Edge, API, and Firewall Patterns
• Implement secure ingress and API exposure patterns and evolve them into repeatable standards.
• Build, deploy, tune, and operate firewall/traffic inspection and egress control patterns.
• Apply secure patterns for:
• AWS foundational networking/IAM/edge/API security
• Azure APIM and Azure Front Door patterns for secure API publishing and global ingress/WAF
• Operational Excellence (“Own What You Build”)
• Troubleshoot routing/DNS issues, WAF/policy behavior, firewall denies, API performance issues, and production incidents.
• Improve reliability and security posture through monitoring, automation, and continuous runbook refinement.
• Contribute to platform stability through incident learning, root cause analysis, and preventative improvements.

Benefits

• Robust benefit package that includes medical, dental, and vision that start on date of hire.
• Paid Time Off, to include vacation, sick, holidays, and floating holidays.
• 401(k) plan with employer match.
• Company-funded “lifestyle account” upon date of hire for you to apply toward your physical and mental well-being (i.e., ski passes, retreats, gym memberships).
• Tuition Reimbursement Program.
• Voluntary benefits, to include but not limited to Legal and Pet Discounts.
• Employee Assistance Program (available at no cost to you).
• Company-sponsored and funded “Culture Team” that focuses on the Physical, Mental, and Professional well-being of employees.
• Community Give-Back initiatives.
• Culture that focuses on employee development initiatives.