L3 Azure Cloud Architect, FinOps & DevSecOps Lead
Listed on 2026-07-01
-
IT/Tech
Cloud Computing: Infrastructure & Operations, Systems Engineer
About the Role
We are seeking a visionary, high-caliber L3 Azure Cloud Architect / Fin Ops & Dev Sec Ops Lead to take end-to-end strategic ownership of our enterprise cloud ecosystem. Positioned at the critical intersection of Scalable Architecture, Financial Engineering (Fin Ops), and Automated Security Guardrails (Dev Sec Ops ), you will spearhead long-term cloud transformation programs, corporate infrastructure governance frameworks, and core platform modernization.
A definitive component of this executive-level engineering mandate is leadership over our global Fin Ops framework
. You will be directly responsible for designing and executing cloud optimization roadmaps to actively streamline, govern, and maintain our massive multi-cloud infrastructure footprint below the strategic organizational target of 50 Lakhs/month
, all while expanding platform reliability, zero-trust security compliance, and operational excellence.
- Design and lead enterprise-wide Azure cloud architectures, secure Landing Zones, management groups, subscription hierarchies, and cross-organization platform standardization frameworks.
- Define cloud governance metrics, strict tagging strategies, policy management (Azure Policies), environment isolation, and lifecycle operational guardrails.
- Architect highly available (HA), resilient, and elastic cloud frameworks containing comprehensive Disaster Recovery (DR) structures, automated backup governance, and business continuity strategies.
- Formulate, roll out, and sustain aggressive cloud cost-optimization roadmaps explicitly targeting a continuous operational run‑rate below 50L/month.
- Govern strategic spending mechanisms across Azure and GCP by leveraging Reserved Instances (RIs), Azure Savings Plans, advanced Spot instance provisioning, and automated compute rightsizing.
- Conduct granular infrastructure utilization assessments, modernization audits, and resource rationalization across Azure VMs, AKS clusters, storage tiers, databases, and CDN egress channels to remove waste.
- Develop cost allocation models, showback/chargeback frameworks, and present executive optimization dashboards directly to stakeholder leadership teams.
- Establish scalable Azure Kubernetes Service (AKS) architectures, including cluster segmentation, namespace isolation, ingress controls, and zero-trust container networking.
- Govern Horizontal Pod Autoscaling (HPA) and Vertical Pod Autoscaling (VPA) standards alongside resource requests/limits optimization to achieve strict technical and financial efficiencies.
- Integrate distributed tracing, service mesh models, and centralized telemetry planes directly into the containerized platform blueprint.
- Direct enterprise network topology planning covering VNET segmentation, Express Route setups, firewalls, secure hybrid networks, WAF governance, and DNS/CDN routes.
- Embed Zero-Trust Network Architecture (ZTNA), strict traffic inspection policies, and automated infrastructure hardening parameters across all infrastructure layers.
- Drive IAM roadmaps, advanced Azure RBAC structures, and Privileged Access Management (PIM/PAM) across multi-cloud deployments (Azure, GCP, Firebase).
- Define structural performance engineering and optimization blueprints for large‑scale distributed databases including ScyllaDB, MongoDB, Redis, Azure SQL, HDInsight, and Azure Data Explorer.
- Architect cache governance, edge routing, and egress cost optimization across JioCDN and Fastly CDN platforms.
- Sustain structural governance over cross‑functional pipelines traversing GCP, Big Query, Cloud Run, and Apache Airflow environments.
- Enforce declarative Infrastructure as Code (IaC) architectures via modularized Terraform and Bicep scripts guarded by strict deployment approval gates.
- Integrate automated security scanning (SAST/DAST), dependency checking, secret protection, and automated VA/PT remediation pipelines directly into CI/CD release architectures.
- Formulate cross-platform alerting parameters, enterprise SLO/SLA matrix frameworks, Root Cause Analysis (RCA) loops, and automated self‑healing/remediation infrastructure workflows to drastically scale down alert fatigue.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).