Network & Cloud Architecture Manager

Job

Network & Cloud Architecture Manager

Locations: San Francisco, California;
Austin, Texas;
Boston, Massachusetts;
Denver, Colorado;
Los Angeles, California;
Coral Gables, Florida;
New York, New York;
Palo Alto, California;
San Diego, California;
Washington, District Of Columbia;
Seattle, Washington

Req : 5945

Position Type: Information Technology

At MoFo, we couldnt write our own success story without yours. Ready to write your story? Join MoFo as a NETWORK & CLOUD ARCHITECTURE MANAGER in our Information Technology Department. This role can be based in Seattle, San Francisco, Palo Alto, Los Angeles, San Diego, Denver, Austin, Boston, New York or Washington, D.C.

The Network & Cloud Architecture Manager is responsible for leading the architecture, design, and implementation of the Firm's enterprise network and Azure cloud infrastructure across all global offices. Manages a networking team of direct reports while partnering closely with the Azure cloud team to deliver secure, scalable, and standards-compliant solutions. Serves as the primary architect for new application landing zones in Azure, intake requests from business and technology stakeholders and produce reference architectures aligned with Firm policy and design standards.

Partners closely with the Information Security group throughout the design and implementation lifecycle to ensure all solutions meet security requirements. Ensures client service and satisfaction are attained in all areas of responsibility.

• Lead the architecture, design, and implementation of the Firm's enterprise network and Azure cloud infrastructure, including reference architectures, topology diagrams, and technical documentation.
• Design and support secure networking solutions using Palo Alto firewalls, Cisco ISE, Azure Firewall, NSGs, VNets, hub-and-spoke topologies, Express Route, VPN gateways, and related Azure networking services.
• Architect Azure landing zones and application environments in collaboration with business, application, cloud, and Information Security teams to ensure compliance with Firm standards and security requirements.
• Plan and implement infrastructure enhancements to improve performance, scalability, resiliency, security, and global connectivity.
• Oversee network monitoring, logging, and observability using Azure Log Analytics, NSG/VNet flow logs, and firewall telemetry to support operational stability and troubleshooting.
• Design and maintain remote access solutions, including Global Protect VPN, conditional access integration, and regional connectivity strategies.
• Maintain architecture standards, operational documentation, testing procedures, migration plans, and change management compliance.
• Collaborate with cloud teams, application owners, local office technology staff, and Information Security to support production operations and project initiatives.
• Provide technical leadership across network and cloud infrastructure projects, managing timelines, deliverables, budgets, resources, and modernization roadmaps.
• Evaluate emerging networking and cloud technologies through research, testing, training, and industry engagement.
• Lead, mentor, and develop the networking team through coaching, performance management, workload balancing, and professional development.
• Promote collaboration, accountability, effective communication, and compliance with Firm policies and operational standards.
• Participate in after-hours support and escalation response as required.

• Bachelors degree in Computer Science, Information Technology, or a related field, or equivalent professional experience.
• 8+ years of enterprise network engineering and architecture experience, including 3+ years designing and implementing Microsoft Azure solutions.
• Experience supporting large enterprise environments with 2,000+ users across multiple locations; prior technical leadership or management experience required. Large law firm experience preferred.
• Preferred certifications: PCNSE, CCNP/CCIE, Azure Solutions Architect Expert, and/or Azure Network Engineer Associate.
• Deep expertise with Palo Alto Networks technologies, including PAN-OS, Panorama, and Global Protect, as well as Cisco ISE for policy design, certificate-based authentication, and 802.1X.
• Advanced Azure networking expertise, including VNets, hub-and-spoke architecture, VNet peering, route tables, UDRs, VPN gateways, Express Route, Azure Firewall, NSGs, ASGs, Private Link, and Private DNS Zones.
• Strong knowledge of enterprise networking technologies and protocols, including BGP, OSPF, VLANs, link aggregation, TCP/IP, DNS, DHCP, and multi-site WAN/Wi-Fi environments.
• Experience with Active Directory, Microsoft Entra , enterprise security frameworks, Azure Log Analytics, KQL, NSG/VNet flow logs, and SIEM integrations such as Microsoft Sentinel.
• Proficiency with infrastructure-as-code and automation tools, including ARM, Bicep, Terraform, and Power Shell (Az modules);
  Python experience preferred.
• Strong analytical,…