Cloud Infrastructure Architect

We are looking for an experienced Cloud Infrastructure Architect to join our Infrastructure organization as a senior technical leader. Our primary cloud environment is AWS, where we run the majority of our production workloads, including LINK, our internally developed line-of-business application. Through a series of recent acquisitions, we also operate a significant and growing Azure footprint, and a substantial part of this role will be devoted to securing, documenting, and rationalizing those inherited environments in preparation for migrating their data into LINK.

You will serve as the technical authority for cloud infrastructure across the organization, creating work and providing direction for our helpdesk, systems administration, and DevOps teams, while partnering closely with the VP of Infrastructure to develop and maintain enterprise-wide policies, procedures, and architectural standards. You will also serve as a key infrastructure liaison to the Product team, ensuring they have the architectural context and documentation needed to plan and execute LINK migration workstreams.

This is a hands-on, high-impact individual contributor role suited for someone who thrives at the intersection of deep AWS expertise, cross-platform pragmatism, and organizational influence., * Own cloud infrastructure architecture with AWS as the primary platform, ensuring alignment with business goals, security requirements, and SOC 2 and PCI-DSS compliance obligations

• Lead the architectural assessment of all acquired Azure environments - evaluating security posture, network topology, identity configuration, and workload dependencies
• Develop and maintain reference architectures, design patterns, and technology roadmaps that account for our hybrid AWS/Azure environment
• Evaluate emerging cloud technologies and make recommendations on adoption, retirement, or consolidation of platforms and services
• Lead architecture reviews and provide technical governance for infrastructure projects across the organization
• Conduct deep-dive assessments of acquired Azure environments, producing comprehensive documentation covering network architecture, security controls, identity and access configurations, workload inventories, and data flows
• Identify and drive remediation of security gaps and compliance deficiencies across acquired Azure environments in partnership with the Cloud Infrastructure Engineer and InfoSec team
• Develop detailed migration plans for transitioning data and workloads from acquired Azure environments into LINK, our AWS-hosted core line-of-business application
• Produce and maintain infrastructure documentation packages for the Product team, providing the architectural context needed to plan and execute LINK data migration workstreams
• Define and track progress against Azure rationalization milestones, keeping stakeholders informed on scope, risk, and timeline
• Partner with the VP of Infrastructure to author, maintain, and continuously improve infrastructure procedures, runbooks, and operational standards
• Establish and enforce cloud governance frameworks including tagging standards, cost management practices, IAM policies, and network design principles
• Define and document disaster recovery, business continuity, and incident response procedures for cloud infrastructure
• Create structured work and project pipelines for T1 Helpdesk, T2 Systems Administration, and T3 DevOps teams by translating architectural decisions into actionable implementation tasks
• Provide technical guidance and direction to the Cloud Infrastructure Engineer responsible for Azure day-to-day operations and security remediation
• Collaborate with DevOps to drive infrastructure-as-code (IaC) adoption and CI/CD pipeline improvements on AWS
• Partner with the InfoSec team on conditional access, identity governance, and security posture across cloud environments
• Work with the Product team as the infrastructure subject matter expert for LINK migration planning, ensuring data and workload dependencies are clearly understood before migration execution begins
• Lead cost optimization initiatives across AWS and Azure environments, including reserved instance planning, right-sizing, and architectural efficiency improvements
• Oversee cloud networking design, including VPCs, VNets, transit gateways, peering, DNS, and hybrid connectivity (Direct Connect / ExpressRoute)

Do you have experience in Virtual Private Clouds?, * 10+ years of experience in IT infrastructure, with at least 5 years focused on cloud architecture

• Deep hands-on expertise with AWS as a primary platform (compute, networking, storage, identity, security) and strong working proficiency with Microsoft Azure, including networking, security, identity, and infrastructure assessment
• Demonstrated experience designing and documenting infrastructure for regulated financial services environments (banking, insurance, fintech, or similar)
• Strong experience with SOC 2 and PCI-DSS compliance in a cloud environment
• Proficiency with infrastructure-as-code tools such as Terraform and/or CloudFormation
• Strong understanding of networking fundamentals across both platforms: VPCs/VNets, BGP, DNS, load balancing, firewall design, ExpressRoute, Direct Connect, and hybrid cloud connectivity
• Proven ability to produce high-quality architectural documentation suitable for both technical teams and non-technical stakeholders such as Product and business leadership
• Experience developing migration plans for complex, multi-workload cloud environments
• Excellent communication and cross-functional collaboration skills, * Active certifications: AWS Solutions Architect - Professional, Microsoft Certified: Azure Solutions Architect Expert, or equivalent
• Experience evaluating and integrating cloud infrastructure from mergers or acquisitions, including workload assessment, security remediation, and migration planning
• Familiarity with DevSecOps practices and security tooling (e.g., Prisma Cloud, Wiz, AWS Security Hub, Microsoft Defender for Cloud)
• Experience with observability and monitoring platforms (Datadog, Grafana, CloudWatch, Azure Monitor)
• Prior experience serving as an infrastructure liaison to Product or Engineering teams during application migration or consolidation initiatives
• Prior experience in a senior IC or principal-level role at a company of 500+ employees

Pulled from the full job description

• AD&D insurance
• 401(k)
• Health insurance
• Paid time off
• Vision insurance
• Dental insurance
• Family leave, * Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Paid Time Off (Vacation, Sick & Public Holidays)
• Family Leave (Maternity, Paternity)
• Short-Term & Long-Term Disability
• Wellness Resources

  If you require alternative methods of application or screening, you must approach the employer directly to request this as Indeed is not responsible for the employer's application process.