Senior Azure Cloud Engineer Architect

About The Position

Requirements

• Active Microsoft Certified: Azure Solutions Architect Expert certification (AZ-305 or equivalent).
• Active DoD Top Secret clearance with SCI Eligibility.
• DoD 8570 IAT Level II certification (Security+ ce, CISSP, or higher).
• BS degree and 12+ years of prior relevant experience or a Masters degree with 10+ years of prior relevant experience, additional years of experience may be considered in lieu of a degree.
• Minimum 5 years of experience designing and implementing secure Azure-based solutions in enterprise or government environments.
• Proven expertise in Microsoft Entra ID / Azure AD, Azure RBAC, and Conditional Access.
• Experience with multi-cloud identity integration (Azure + AWS).
• Strong understanding of federated identity, modern authentication protocols (SAML, OIDC, OAuth 2.0), and cross-cloud authentication mechanisms.
• Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.
• Hands-on experience with Terraform, Bicep, Azure CLI, and CI/CD automation.
• Excellent written and verbal communication skills with the ability to brief technical concepts to leadership and stakeholders.
• Must be able to work as part of a team to troubleshoot and resolve complex issues.
• Excellent written and verbal communication skills. This includes drafting SOPs and technical documentation as well as communication with senior program and customer leadership.
• Must be able to present designs, plans, courses of action, and analyses of alternatives to technical leadership personnel and boards for approvals.

Nice To Haves

• Experience implementing Zero Trust Architecture (ZTA) within DoD or federal environments.

Responsibilities

• Design, implement, and secure Azure-based cloud architectures in alignment with DoD mission objectives and cybersecurity standards.
• Lead configuration, deployment, and management of Microsoft Entra ID / Azure AD for centralized identity, single sign-on (SSO), and role-based access control (RBAC) across Azure tenants and subscriptions.
• Integrate federated identity solutions with AWS Identity Center, Okta, or on-premises Active Directory.
• Develop and enforce Azure governance frameworks, including Azure Policy, Management Groups, and Blueprints, ensuring alignment with DoD Zero Trust and least-privilege principles.
• Architect and deploy Azure Arc for consolidated resource management, security and compliance across multi-cloud and on-premises environments.
• Architect and secure hybrid connectivity across Azure, AWS, and DoD on-premises networks, ensuring consistent identity and access management across clouds.
• Collaborate with cybersecurity teams to ensure solutions comply with DISA STIGs, DoD Cloud Computing SRG, FedRAMP High, and NIST 800-53 controls.
• Implement and manage Infrastructure as Code (IaC) solutions using Bicep, Terraform, or Azure Resource Manager (ARM) templates.
• Provide architectural guidance on Zero Trust, hybrid cloud, and cross-domain architectures in mission environments.
• Develop and maintain architectural documentation, identity diagrams, and compliance traceability.
• Stay current on Azure and multi-cloud capabilities relevant to DoD, federal, and intelligence mission systems.

Benefits

• Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers.
• Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement.
• More details are available here.