Cloud Architect (IGEN)
U.S. Venture, Inc.
Appleton, United States of America
19 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
SeniorJob location
Appleton, United States of America
Tech stack
Amazon Web Services (AWS)
Azure
Cloud Computing
Cloud Engineering
Code Review
Continuous Integration
DevOps
DNS
Github
Identity and Access Management
Virtual Private Networks (VPN)
Python
Key Management
Powershell
Role-Based Access Control
Azure
Site Reliability Engineering Practices
Ansible
Zero Trust Network Access
Policy as Code
Data Logging
Network Switches
Load Balancing
Performance Testing
Cloud Monitoring
Istio
System Availability
Mttr
Multi-Cloud
Firewalls (Computer Science)
Amazon Web Services (AWS)
GIT
Git Flow
Kubernetes
Infrastructure Automation Frameworks
Information Technology
Bicep
Bitbucket
Terraform
Docker
Key Vault
Vulnerability Analysis
VMware
Job description
The Cloud Architect provides technical leadership for our hybrid, multi-cloud estate-spanning on-premises private cloud and public cloud platforms in Microsoft Azure and Amazon Web Services. This role owns the reference architecture for infrastructure, drives platform automation and reliability, and partners with product, security, and operations teams to deliver secure, cost-effective, and resilient infrastructure foundations., Architecture, Design & Delivery
- Translate reference architectures into detailed designs and implementation plans for landing zones, networking, and IAM.
- Engineer scalable platforms with high availability and performance aligned to business SLOs and DR requirements.
- Create golden images/templates and secure baselines for repeatable deployments.
Automation, CI/CD & GitOps
- Build robust Terraform modules; integrate validation, testing, and security scanning into pipelines.
- Implement GitOps (Bitbucket pipelines) workflows where appropriate; improve release reliability and rollback safety.
- Guide teams on branching strategies and code review standards.
Reliability & Operations
- Lead complex incident response, perform post-incident reviews, and drive preventive engineering.
- Establish capacity planning and performance testing practices for critical services.
- Evolve runbooks to reduce MTTR and increase operational readiness.
Security, Compliance & FinOps
- Implement Zero Trust principles; design RBAC models and service identities; integrate secrets management.
- Codify and enforce guardrails via policy-as-code; ensure auditability and remediation workflows.
- Collaborate on cost governance (tagging, budgets, alerts) and drive optimization initiatives.
Collaboration & Leadership
- Mentor Engineer I and II teammates; conduct design and code reviews and provide constructive feedback.
- Partner with Security, Networking, App, and Data teams; influence roadmaps and standards.
- Contribute to vendor/tool evaluations and present recommendations with tradeoffs.
Primary Tools & Technologies
- Cloud: Azure, GCP; on-prem virtualization/storage (VMware, SAN/NAS).
- IaC/Config: Terraform, Ansible/Chef; Git; Bitbucket; CI/CD (Azure DevOps/GitHub Actions).
- Containers: Docker, Kubernetes (AKS/GKE); registries; ingress; basic service mesh.
- Observability: Azure Monitor, GCP Cloud Monitoring/Logging, Elastic.
- Security: Entra ID/Azure AD, GCP IAM; Key Vault/Secret Manager; KMS; policy-as-code.
Additional Job Responsibilities:
- Live our values of High Performance, Caring Relationships, Strategic Foresight, and Entrepreneurial Spirit
- Find A Better Way by championing continuous improvement and quality control efforts to identify opportunities to innovate and improve efficiency, accuracy, and standardization
- Continuously learn and develop self professionally
- Support corporate efforts for safety, government compliance, and all other company policies & procedures
- Perform other related duties as required and assigned
Requirements
Required:
- Bachelor's degree in Computer Science, Engineering, or related field-or equivalent experience.
- Progressive IT experience with 7+ years focused on cloud architecture/engineering.
- Expertise in Terraform and/or Bicep; strong scripting (PowerShell or Python) and automation mindset.
- Solid networking (VNet/VPC design, DNS, VPN/ExpressRoute/Interconnect, load balancers, firewalls) and IAM.
- Production experience with containers and Kubernetes (AKS/GKE).
- Observability design and SRE practices; proven incident leadership and post-mortem facilitation.
- CI/CD pipeline design (Azure DevOps/GitHub Actions) with testing, security scanning, and policy gates.
- Excellent communication, stakeholder management, problem-solving, and mentoring skills.
- Ability to participate in an on-call rotation and support planned maintenance during off-hours.
Preferred:
- Certifications: Azure Solutions Architect Expert or Azure Administrator + Azure Security Engineer; Google Professional Cloud Architect or Professional DevOps; Terraform Associate; CKA/CKAD.
- Experience with Packer, service mesh/Ingress, and secrets management at scale.
- Background applying policy-as-code (Azure Policy, Org Policy, OPA) and compliance frameworks; FinOps experience.