×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer Cybersecurity

Infrastructure Architect

Remote / Online - Candidates ideally in
Phoenix, Maricopa County, Arizona, 85003, USA
Listing for: Arizona State Government
Full Time, Remote/Work from Home position
Listed on 2026-06-14
Job specializations:
  • IT/Tech
    Systems Engineer, Cybersecurity
Salary/Wage Range or Industry Benchmark: 104500 USD Yearly USD 104500.00 YEAR
Job Description & How to Apply Below

DEPARTMENT OF REVENUE Funding Arizona’s future through excellence in innovation, exceptional customer service and public servant-led continuous improvement. INFRASTRUCTURE ARCHITECT

Job Location:

Division of Information Technology

1600 W Monroe St.

Phoenix, AZ 85007

Posting Details:

Salary: $

Grade: 28

Closing Date: 6/15/2026

Job Summary:

Deeply technical, hands‑on Senior Cloud Infrastructure Architect with a specialized expertise in Cloud Networking. In this role, the employee will lead the architectural design and heavy‑lifting execution of ADOR's network infrastructure. Employee will actively write the code, configure the routing tables, and build the secure pipelines that connect ADOR's cloud environments, on‑premises data centers, and edge locations. Employee will own the performance, security, and scalability of ADOR's network mesh, ensuring low‑latency communication across multi‑region or hybrid cloud deployments.

This position may be available for remote work within Arizona (# days per week in the office/hoteling).

Job Duties:
  • Hybrid & Multi‑Cloud Connectivity:
    Design, implement, and maintain complex connectivity solutions linking on‑premises data centers to the cloud using AWS Direct Connect, Azure Express Route, Mega Port, and high-performance site‑to‑site VPNs.
  • Global Routing & Traffic Management:
    Architect routing topologies utilizing BGP, transit gateways (e.g., AWS Transit Gateway, Azure Virtual WAN), Anycast routing, and intelligent Global Server Load Balancing (GSLB).
  • Enterprise Service Meshes:
    Build and manage highly scalable service meshes (e.g., Istio,ul) and advanced ingress controllers to handle microservices communication, traffic splitting, and mutual TLS (mTLS).
  • IPAM & DNS Architecture:
    Own the global IP Address Management (IPAM) strategy and design highly available, split‑horizon DNS architectures across hybrid environments.
  • Net Dev Ops  / Infrastructure as Code:
    Provision all software‑defined networking (SDN) components—including VPCs/VNet peers, subnets, route tables, firewalls, and load balancers—strictly via declarative code (Terraform, Open Tofu, or Pulumi).
  • Network Automation Scripting:
    Develop custom automation scripts (Python, Go, Bash) to automate routine network configuration changes, testing, and compliance audits.
  • Zero‑Trust Network Architecture:
    Implement strict micro‑segmentation, network security groups, and zero‑trust policies to isolate workloads and reduce the blast radius of security incidents.
  • Edge Security & CDN:
    Design and manage edge infrastructure, including Content Delivery Networks (CDNs like Cloudflare or Cloud Front), Web Application Firewalls (WAF), and DDoS mitigation layers.
  • Egress/Ingress Inspection:
    Deploy and operate centralized network inspection architectures, routing traffic through Next‑Generation Firewalls (NGFW) or cloud‑native firewall appliances for deep packet inspection.
  • Other duties as assigned as related to the position
  • Participates in the establishment of guidelines and policies
Knowledge, Skills & Abilities (KSAs):

Knowledge

  • Cloud SDN & Routing Architectures:
    Deep understanding of BGP routing, Anycast, AWS Transit Gateway, Azure Virtual WAN, and hybrid connectivity (Direct Connect, Express Route).
  • Core Networking Protocols:
    Mastery of TCP/IP, UDP, OSPF, DNS, HTTP/S, TLS, and IPSec VPN frameworks.
  • Container Networking (CNI):
    Understanding of Kubernetes networking models and CNIs like Cilium (eBPF), Calico, or cloud‑native variants.
  • Zero‑Trust & Perimeter Security:
    Knowledge of micro‑segmentation, Next‑Generation Firewalls (NGFW), WAFs, DDoS mitigation, and mTLS.
  • Fin Ops & Cost Frameworks:
    Familiarity with cloud pricing models, data transfer charges (NAT gateway costs, inter‑AZ fees), and budget optimization.

Skill

  • Advanced IaC Development:
    Writing modular, reusable Terraform, Open Tofu, or Pulumi code to provision complex, multi‑region networks.
  • Packet‑Level Diagnosis:
    Capturing and analyzing VPC Flow Logs or utilizing tools like Wireshark to debug Layer 3 through Layer 7 anomalies.
  • Network Automation & Scripting:
    Writing production‑grade scripts in Python, Go, or Bash to automate routine network tasks and compliance audits.
  • Telemetry Setup &…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search