IT Cloud and Security Architect

About The Position

Requirements

• Bachelor’s degree in Computer Science, Engineering, or related field; or equivalent work experience
• 10+ years of progressive IT experience, with:
• 5+ years in cloud infrastructure architecture, primarily in Azure
• Demonstrated success in designing hybrid and multi-cloud architectures
• Experience developing infrastructure governance and automation strategies
• Proven track record operating in compliance-heavy sectors (e.g., healthcare, finance)
• Deep expertise in Azure infrastructure: VNets, subnets, Application Gateway, Azure Firewall, Load Balancers, NSGs, Route Tables, Azure DNS
• Advanced knowledge of hybrid networking: VPN Gateway, ExpressRoute, SD-WAN
• Strong background in identity and access architecture: Azure AD / Microsoft Entra ID, RBAC, conditional access, federation
• Proficient in infrastructure-as-code and automation tools: Terraform, Bicep, ARM templates, GitHub Actions, Azure DevOps
• Familiarity with cloud-native security tools: Microsoft Defender for Cloud, Azure Key Vault, Policies, Sentinel
• Solid understanding of Zero Trust architecture, segmentation, and governance enforcement
• Working knowledge of compliance frameworks (HIPAA, NIST, PCI-DSS, CIS Benchmarks)

Nice To Haves

• Master’s degree or advanced certifications in cloud architecture, infrastructure, or cybersecurity
• Microsoft Certified: Azure Solutions Architect Expert
• Microsoft Certified: Cybersecurity Architect Expert
• Microsoft Certified: Azure Network Engineer Associate
• Microsoft Certified: Identity and Access Administrator Associate
• AWS Certified Solutions Architect
• AWS Certified Security
• Google Professional Cloud Architect

Responsibilities

• Define and maintain enterprise reference architectures for Azure and hybrid environments
• Lead cloud architecture design reviews to ensure security, scalability, and compliance
• Architect secure, highly available cloud and hybrid networks using ExpressRoute, VPN, and private endpoints
• Govern the use of cloud services through tagging, policies, resource locks, and security baselines
• Drive the adoption of Zero Trust principles in identity, networking, and infrastructure design
• Collaborate with DevOps teams to define reusable infrastructure-as-code modules and patterns
• Guide the selection and integration of security tools for logging, threat detection, and monitoring
• Provide architectural oversight for cloud compliance and regulatory initiatives
• Mentor engineering and operations teams in cloud best practices
• Influence and contribute to the cloud roadmap, platform strategy, and capability maturity
• Support internal/external audit processes and risk assessments
• Stay abreast of evolving cloud services, architectural patterns, and security trends
• Lead technical evaluations of new tools and emerging technologies
• Azure and hybrid cloud infrastructure strategy
• Enterprise network, compute, identity, and storage architecture
• Cloud-native security, Zero Trust, and compliance enforcement
• Infrastructure-as-code governance and automation enablement
• Cloud platform performance, availability, and cost optimization

Benefits

• Medical Plan
• Prescription drug coverage & In-House Employee Pharmacy
• Dental Plan
• Vision Plan
• Flexible Spending Account (FSA) - Healthcare FSA - Dependent Care FSA
• Retirement Savings and Investment Plan
• Basic Group Term Life and Accidental Death & Dismemberment (AD&D) Insurance
• Supplemental Group Term Life & Accidental Death & Dismemberment Insurance
• Disability Benefits – Long Term Disability (LTD)
• Disability Benefits – Short Term Disability (STD)
• Employee Assistance Program
• Commuter Transit
• Commuter Parking
• Supplemental Life Insurance - Voluntary Life Spouse - Voluntary Life Employee - Voluntary Life Child
• Voluntary Legal Services
• Voluntary Accident, Critical Illness and Hospital Indemnity Insurance
• Voluntary Identity Theft Insurance
• Voluntary Pet Insurance
• Paid Time-Off Program