Sr Network/Infrastructure Cloud Architect

Role: Sr Network/Infrastructure Cloud Architect

Location: Remote

Duration: 12 Months

Job description:

* Design and implement the target-state Azure architecture aligned with Mosaic cloud standards and enterprise governance.

* Define Azure landing zones, subscription strategy, management groups, identity integration, and network topology.

* Architect hybrid connectivity between on-prem (Kyndryl) and Azure using ExpressRoute, VPN, and secure routing models.

* Develop network segmentation, micro-segmentation, and Zero Trust architecture patterns.

* Ensure high availability, resiliency, disaster recovery, and business continuity designs.

Migration Strategy & Execution:

* Lead infrastructure discovery and dependency mapping for on-prem workloads.

* Develop phased migration strategies (rehost, replatform, refactor).

* Define cutover planning, rollback strategies, and coexistence models.

* Collaborate with application teams for migration readiness and performance optimization.

* Drive data center exit planning and decommissioning strategies.

Networking & Security

* Design Azure Vet architecture, hub-and-spoke topology, firewall strategy, and traffic inspection models.

* Architect integration with:

* Azure Firewall / NVA

* Load balancers / Application Gateway

* Azure Front Door (if applicable)

* DNS (hybrid resolution strategy)

* Implement network security controls, NSGs, ASGs, UDRs, and conditional access models.

* Align architecture with enterprise security policies and compliance requirements (HIPAA, SOC2, etc., if applicable).

Infrastructure & Platform Modernization

* Design Infrastructure-as-Code (Terraform, ARM, Bicep) frameworks.

* Enable automation for provisioning and configuration management.

* Architect monitoring and observability solutions using Azure Monitor, Log

Analytics, Sentinel, etc.

* Define backup, patching, and lifecycle management strategies in Azure.

* Support container, Kubernetes (AKS), and platform services integration if applicable.

Governance & Operational Model

* Define cloud governance, cost management, tagging strategy, and FinOps alignment.

* Collaborate with operations teams to transition to cloud operating model.

* Document architecture standards, runbooks, and reference patterns.

* Act as technical advisor to leadership and stakeholders.

Required Qualifications

* 10+ years of experience in enterprise infrastructure and network architecture.

* 5+ years of hands-on Azure architecture experience.

* Proven experience leading large-scale data center to Azure cloud migrations.

* Strong experience with:

* Hybrid networking (ExpressRoute, VPN, BGP routing)

* Enterprise firewall architectures

* Azure landing zones

* Identity integration (Azure AD / Entra ID, AD hybrid)

* DNS, IPAM, routing, load balancing

* Deep understanding of infrastructure security and Zero Trust principles.

* Experience working in environments managed by third-party providers (e.g., Kyndryl/IBM or similar).