Sr. Azure Architect - Platform Engineering

We are building an enterprise-scale internal developer platform designed to eliminate infrastructure

friction. Our goal is to provide application teams with a seamless experience that balances speed and

flexibility with strict security, compliance, and cost governance.

As a Senior Azure Architect, you will be a key contributor to the standards and patterns that power

this platform. You will design the standardized architectures that allow our engineering teams to

deploy complex, production-ready workloads securely and reliably. You will bridge the gap between

infrastructure operations and developer experience, ensuring our cloud architecture scales effectively

with the business.

Key Responsibilities

Enterprise Architecture Design: Develop and refine reference architectures for our compute

runtime, analyzing workload requirements to determine the best fit across Azure Kubernetes

Service (AKS), Azure Container Apps, and Azure App Service.

Resilience & Disaster Recovery: Architect robust Tier 1 systems capable of Active-Active multiregion deployment (RTO <4hr). You will design failover patterns for data layers (PostgreSQL

Flexible Server, Cosmos DB, Redis Enterprise) and traffic management.

Network & Security Architecture: Design secure networking fabrics, including Hub-and-Spoke

models, Private Link/Endpoints, and DNS strategies. Implement "Security by Design" using Entra

ID (Managed Identities, Federated Credentials) and rigorous policy enforcement.

Standardization & Governance: Translate complex infrastructure requirements into reusable,

policy-compliant patterns. You will ensure that every deployment meets our strict standards for

observability (Azure Managed Grafana), logging, and cost controls.

Subject Matter Expertise: Act as a primary resource for Azure expertise, consulting with

application teams on modernization strategies, database optimization, and cloud-native best

Expert Azure Knowledge: Deep understanding of the Azure control plane and service portfolio.

You know the limits, quotas, and architectural trade-offs of AKS, App Service, Networking, and

Storage.

Infrastructure as Code (Terraform): Strong proficiency in Terraform. You understand how to

architect modular, reusable, and testable infrastructure code for enterprise environments.

Advanced Data Patterns: Experience designing high-availability data solutions using Azure

SQL/PostgreSQL, Cosmos DB (Multi-region write/read), and caching strategies.

Network Engineering: Strong grasp of Azure networking fundamentals, including Virtual

Networks, Application Gateways, Azure Front Door/Traffic Manager, and private connectivity.

Production Operations: Experience with observability stacks (Application Insights, Azure

Monitor, Prometheus) and designing for day-2 operations.

Security & Identity: Proficiency with Entra ID OIDC/OAuth flows, RBAC models, and cloud

security posture management (CSPM) Experience with Wiz or similar cloud security tools.

Background in FinOps, including cost anomaly detection and budget enforcement.

Familiarity with GitOps principles (ArgoCD/Flux) and CI/CD workflows.

Experience interacting with Azure management APIs