Infrastructure Architect

Tata Consultancy Services Limited
5 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
$ 160K

Job location

Tech stack

Link Aggregation (Ethernet)
Microsoft Active Directory
Amazon Web Services (AWS)
Azure
Border Gateway Protocol
Cisco PIX
Configuration Management Databases
Computer Security
Data Centers
Data Center Infrastructure Management (CIM)
Disaster Recovery
HAProxy
Hyper-V
Identity and Access Management
Multi-protocol Systems
Kernel-Based Virtual Machine
Network Security
Lightweight Directory Access Protocols (LDAP)
NetApp Applications
NetFlow
Network Architecture
Network Segmentation
Citrix Systems
Open Shortest Path First
Paessler Router Traffic Grapher
PCI Data Security Standards
Zero Trust Network Access
Simple Network Management Protocols
Storage Virtualization
Terminal Access Controller Access-Control System (TACACS)
Virtual Local Area Networks
Virtualization Technology
vSphere
Wide Area Networks
Backup and Restore
Zabbix
Datadog
Computer Networking Systems
Load Balancing
Cyberark
Juniper
Togaf
Pure Storage
Storage Technologies
SolarWinds (Software)
Patch Management
Fortinet
Veeam
Commvault
Cisco networks
ServiceNow
Vulnerability Analysis
Citrix Netscaler
VMware

Job description

  • Own and evolve the Enterprise Infrastructure Architecture (EIA) framework across on-premises, co-location,
  • and hybrid environments.
  • Serve as Design Authority for all major infrastructure initiatives - chairing Architecture Review Boards (ARB)
  • and Technical Design Authority (TDA) forums.
  • Produce and maintain authoritative architecture artefacts: reference architecture, HLDs, LLDs, standards
  • documents, and technology roadmaps.
  • Engage directly with C-suite and senior business stakeholders to translate business requirements into
  • infrastructure strategy.
  • Define technology lifecycle management strategies: refresh cycles, decommission plans, and vendor roadmap
  • alignment.

Data Centre Architecture & Operations

  • Lead the design and governance of enterprise-grade on-premises data centres, including Tier III/IV facilities, Co-location, and private data halls.
  • Architect compute platforms: bare-metal servers, rack design, blade systems, and high-density configurations.
  • Define storage architecture: SAN (Fibre Channel, iSCSI), NAS, object storage (e.g. NetApp, Pure Storage, Dell EMC, HPE Nimble).
  • Integrate infrastructure pipelines with enterprise CMDB (ServiceNow) for automated asset registration and compliance reporting.
  • Oversee power and cooling architecture: UPS systems, PDUs, hot/cold aisle containment, DCIM tooling, and PUE optimization.
  • Design and govern hypervisor and virtualization platforms: VMware vSphere/vSAN/NSX, Microsoft Hyper-V, and KVM environments.
  • Lead data centre migration, consolidation, and modernization programs - from planning through cutover and Hypercare.
  • Define backup, replication, and disaster recovery architectures: RTO/RPO targets, DR site design, and regular DR testing governance

Enterprise Networking Architecture

  • Architect and own the enterprise WAN, LAN, and data centre fabric - spanning campus, branch, and multi-site environments.
  • Design and govern core/distribution/access layer switching architectures using vendors such as Cisco, Juniper, Arista, or HPE Aruba.
  • Lead SD-WAN design and deployment programs, including overlay/underlay architecture, traffic engineering, And policy frameworks.
  • Architect MPLS, BGP, OSPF, IS-IS, and VRF-based routing for complex multi-site enterprise networks.
  • Design secure network segmentation: VLANs, VXLANs, micro-segmentation, and macro-segmentation strategies.
  • Define and govern enterprise firewall and perimeter security architecture (Palo Alto, Fortinet, Check Point, Cisco ASA/FTD).
  • Oversee load balancing architecture (F5, Citrix ADC / NetScaler, HAProxy) across data centre and Application tiers.
  • Lead network performance management: QoS frameworks, traffic shaping, capacity modelling, and link aggregation.
  • Define Out-of-Band (OOB) management network architecture and remote hands procedures.

Security Architecture & Compliance

  • Embed Zero Trust Network Architecture (ZTNA) principles across on-premises and hybrid environments.
  • Define IAM and PAM architecture: Active Directory, LDAP, RADIUS, TACACS+, CyberArk, or equivalent.
  • Govern infrastructure security posture: patch management, vulnerability scanning, hardening baselines (CIS, DISA STIG).
  • Ensure compliance with regulatory frameworks relevant to the customer's industry (ISO 27001, SOC 2, NIST CSF,
  • PCI-DSS, GDPR, HIPAA).
  • Develop and maintain Business Continuity and Disaster Recovery (BC/DR) architecture and test programs.

Observability, ITSM & Operational Excellence

  • Define observability and monitoring architecture: SNMP, NetFlow/sFlow, IPFIX, and tooling such as SolarWinds, Zabbix, PRTG, or Datadog.
  • Establish ITSM and CMDB governance: ITIL-aligned change, incident, and problem management aligned to ServiceNow or equivalent platforms.
  • Own infrastructure capacity planning: modelling future demand across compute, storage, and network resources.
  • Define SLAs, SLOs, and operational KPIs; drive continuous service improvement programs.

Generic Managerial Skills: Stakeholder Management & Delivery

  • Engage enterprise customer stakeholders at CIO, CTO, and IT Director level as a trusted technical advisor.
  • Lead and mentor a team of senior infrastructure engineers, network specialists, and data Centre
  • operations staff.
  • Provide technical leadership and assurance across infrastructure programs delivered by internal teams
  • and third-party partners.
  • Develop commercial and technical responses to RFPs, RFIs, and customer solution requests.

Requirements

Must Have Technical/Functional Skills

  • 12+ years in enterprise infrastructure, 4+ years as Architect or Principal Proven delivery of large on-premises data centre programmes

  • Multi-site enterprise WAN/LAN design and ownership

  • Design authority / ARB leadership experience

  • Enterprise customer-facing or managed services background preferred

  • Track record in regulated industries (FS, healthcare, public sector)

  • Data Centre: VMware vSphere/NSX/vSAN, NetApp, Pure Storage, Dell EMC

  • Networking: Cisco (CCIE-level knowledge), Juniper, Arista; BGP, OSPF, MPLS, SD-WAN

  • Security: Palo Alto / Fortinet firewalls, CyberArk PAM, Zero Trust principles

  • Storage & Backup: SAN/NAS, Veeam, Zerto, Commvault

  • Monitoring: SolarWinds, PRTG, Zabbix, Datadog

  • ITSM: ServiceNow, ITIL v4 governance

Required/Preferred Certifications:

  • TOGAF 9 or 10 (Enterprise Architecture - Essential)
  • Cisco CCIE / CCNP Enterprise or Data Centre
  • VMware VCP-DCV or VCIX
  • ITIL v4 Managing Professional or Strategic Leader

Additional Desirable:

  • CISSP or CISM (Security Architecture)
  • Juniper JNCIE or Arista ACE (desirable)
  • AWS / Azure Solutions Architect (hybrid environments)

Benefits & conditions

  • Discretionary Annual Incentive.
  • Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans.
  • Family Support: Maternal & Parental Leaves.
  • Insurance Options: Auto & Home Insurance, Identity Theft Protection.
  • Convenience & Professional Growth: Commuter Benefits & Certification & Training Reimbursement.
  • Time Off: Vacation, Time Off, Sick Leave & Holidays.
  • Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing.

Salary Range-$130000-$160,000 a year

Apply for this position