Senior Azure Cloud & Network Architect

The Senior Azure Cloud & Network Architect is responsible for leading the design, implementation, and governance of secure, scalable, and highly available cloud infrastructure on Microsoft Azure. This role focuses on Azure networking architecture, hybrid connectivity with on‑premise infrastructure, and modern cloud platform design to support both enterprise and public‑facing applications.

The architect drives adoption of Infrastructure as Code (IaC), automation, and modern deployment practices to enable reliable and repeatable delivery of cloud infrastructure and software platforms. Working closely with security, infrastructure, and application teams, this role establishes cloud architecture standards, networking patterns, and governance models that support long‑term scalability, resilience, and regulatory compliance.

While the primary focus is Azure cloud architecture, the role also requires strong expertise in enterprise networking and hybrid connectivity, integrating on‑premise environments with Azure cloud platforms.

• Lead the design and governance of enterprise Azure cloud infrastructure and networking architectures.
• Design and manage Azure networking services including Virtual Networks (VNets), routing, private connectivity, load balancing, and network security services.
• Architect hub‑and‑spoke network topologies and segmentation models that support scalable enterprise cloud environments.
• Design and implement Azure Landing Zones to support enterprise governance, identity integration, networking architecture, and resource organization.
• Develop secure hybrid networking architectures integrating on‑premise infrastructure with Azure using VPN and Express Route connectivity.
• Design multi‑region and highly available cloud network architectures to support disaster recovery and business continuity.
• Implement Infrastructure as Code (IaC) practices using vendor‑agnostic frameworks and automation tools to standardize infrastructure deployments.
• Enable development teams through platform engineering practices, reusable infrastructure patterns, and standardized deployment environments.
• Support adoption of cloud‑native and serverless technologies, including event‑driven architectures and managed platform services.
• Implement Zero Trust networking principles, including network segmentation, identity‑based access controls, and secure service connectivity.
• Monitor and troubleshoot complex networking and connectivity issues across hybrid cloud environments.
• Maintain architecture documentation, network diagrams, and technical standards.
• Support regulatory and security compliance requirements including SOC, PCI, DOI, and NYDFS.

• 7+ years of enterprise network engineering experience.
• Bachelor’s degree in information technology, computer science or equivalent work experience.
• Strong expertise in TCP/IP, BGP, OSPF, VLANs, DNS, DHCP.
• Hands‑on experience with hybrid on‑prem and cloud networking.
• Experience with major cloud providers.
• Proven ability to operate in regulated or compliance‑driven environments.
• Strong troubleshooting and documentation skills.
• Adaptability in a large enterprise environment to adjust and respond effectively to changes, including new technologies, processes, and evolving business needs.

• CompTIA Network+
• Fortinet NSE 4‑5‑6‑7‑8
• Expertise designing secure and scalable Azure environments, including landing zones, network segmentation, and multi‑region architectures.
• Experience designing and supporting hybrid networking architectures integrating on‑premise infrastructure with Azure using secure private connectivity.
• Strong expertise in TCP/IP networking, routing protocols (BGP, OSPF), DNS, DHCP, firewalls, VPNs, LAN, WAN, SD‑WAN, SASE and network segmentation.

• Experience implementing automated infrastructure provisioning using Infrastructure as Code frameworks and CI/CD pipelines.
• Ability to build reusable infrastructure patterns and standardized deployment environments that enable development teams to deploy applications quickly and securely.

• Knowledge of Zero Trust networking…