Azure Solutions Architect

Job Title: Azure Solutions Architect

Job Location: Dallas, TX | Onsite 5 days a week

Description:

AgreeYa is a global Systems Integrator and is seeking an Azure Solutions Architect to join our growing team. The successful candidate will lead our Azure infrastructure engagements across multiple client accounts, beginning with a structured cloud readiness assessment and transitioning into ongoing architecture and delivery responsibilities as the practice grows. This role requires equal comfort operating as a trusted advisor, assessment lead, and delivery architect adapting to the engagement phase and client context.

Required Qualifications

• 8+ years of hands-on experience designing and implementing solutions on Microsoft Azure, with at least 5 years in an architect or technical lead capacity.
• Deep expertise across core Azure services including:
• Compute: Azure Web Apps, App Service, Azure Kubernetes Service (AKS), Azure Functions
• Networking: VNets, NSGs, Private Endpoints, Azure Front Door, WAF, VPN/ExpressRoute
• Integration & API: Azure API Management, Service Bus, Event Grid
• Data & Storage: Azure SQL, Cosmos DB, Storage Accounts (Blob, Queue, Table)
• Security: Key Vault, Microsoft Defender for Cloud, Sentinel, Azure Policy
• Identity: Entra ID (Azure AD), PIM, Conditional Access
• Observability: Azure Monitor, Log Analytics, Application Insights, KQL
• Proven experience architecting and governing Terraform-based infrastructure in Azure, including module design, remote state backends, environment isolation, and promotion workflows.
• Strong background with Azure DevOps (Repos, Pipelines, Artifact Feeds) and CI/CD patterns for both application and infrastructure, including multi-stage YAML and environment approvals.
• Demonstrated experience conducting structured cloud assessments, gap analyses, and producing risk-rated findings and remediation roadmaps aligned to frameworks such as Microsoft CAF, CIS, or NIST.
• Solid understanding of identity and access management including Entra ID, OAuth/OIDC flows, MFA enforcement, RBAC, and CIAM solutions (Auth0 / Okta CIC).
• Working knowledge of regulatory and compliance frameworks applicable to cloud environments, particularly NYDFS Part 500 and SOC2 Trust Services Criteria.
• Strong knowledge of cloud security best practices: Zero Trust, network segmentation, WAF and DDoS, encryption, key management, and vulnerability management.
• Experience defining monitoring, alerting, and observability strategies using Azure Monitor, Log Analytics, Application Insights, and SIEM tools such as Sentinel.
• Excellent communication and documentation skills, with proven ability to produce executive-level presentations, architecture decision records, and go/no-go assessment reports.

Preferred Qualifications

• Familiarity with FinOps practices including cost governance, resource tagging strategy, reserved instance analysis, and Azure cost management tooling.
• Experience with ITSM integration and tooling including ServiceNow workflows (incident, change, problem management) in cloud-managed services contexts.
• Knowledge of additional monitoring platforms such as ScienceLogic or similar enterprise observability tools.
• Experience with database migration strategies and tools (Flyway, Liquibase) integrated into CI/CD for Azure SQL or Cosmos DB.
• Background working in regulated or audit-focused industries (financial services, healthcare, insurance) with knowledge of evidence requirements for MFA enforcement, penetration testing, and environment parity.
• Experience designing and reviewing Target Operating Models (TOM) for Managed Services onboarding and MSP readiness assessments.
• Relevant certifications: Azure Solutions Architect Expert, Azure Administrator Associate, Azure DevOps Engineer Expert, or Security Engineer Associate.
• Familiarity with Microsoft Cloud Adoption Framework (CAF) landing zone patterns and Well-Architected Framework review methodology.

Education

• Bachelor s degree in Computer Science, Information Technology, or a related technical field.

AgreeYa is a global systems integrator delivering competitive advantage for its customers through software, solutions, and services. Established in 1999, AgreeYa is headquartered in Folsom, California, with a global footprint and a team of more than 2,200 staff across offices. AgreeYa works with 500+ organizations ranging from Fortune 100 firms to small and large businesses across industries such as Telecom, Banking, Financial Services & Insurance, Healthcare, Utility & Energy, Technology, Public sector, Pharma & Biotech, and others.

AgreeYa is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, gender identity, sexual orientation, national origin, disability, veteran status or other protected characteristics.