Role Summary
The Senior Azure Infrastructure Architect is the technical authority for the organization’s cloud foundation. Your primary mission is to build and maintain a "Production-Ready" ecosystem that is rock-solid, automated, and hyper-secure. You won't just design apps; you will build the Global Landing Zones, Software-Defined Networks, and Core Governance that all other teams rely on.
Core Infrastructure Responsibilities --->
Global Landing Zone Ownership: Design and manage the Enterprise-Scale Landing Zone (ESLZ). Implement Management Groups, Subscriptions, and Resource Group hierarchies that align with corporate structure.
Software-Defined Networking (SDN): Architect complex network topologies including Hub-and-Spoke, Azure Virtual WAN, and Private Link/Private Endpoints to ensure zero-exposure of internal traffic to the public internet.
Infrastructure-as-Code (IaC) Strictness: Ensure 100% of the environment is defined in code. You will build and audit the Terraform or Bicep modules used by the entire organization.
Identity & Perimeter Security: Hardening the "Front Door." This includes Entra ID Privileged Identity Management (PIM), Conditional Access Policies, and advanced Azure Firewall / WAF configurations.
Hybrid Connectivity: Manage the "On-prem to Cloud" bridge. Expertise in ExpressRoute circuits, Site-to-Site VPNs, and Azure Arc for managing non-Azure servers.Lead the transition from IaaS (Virtual Machines) to PaaS (App Services, Azure SQL) and Serverless architectures.
Storage & Backup Architecture: Design tiered storage strategies (Hot/Cool/Archive) and enterprise-wide recovery vaults using Azure Backup and Site Recovery (ASR).
Cloud Blueprints: Design end-to-end infrastructure solutions including compute, storage, network, and security services.
Additional Must Have's
Candidate should have experience in setting up Azure Kubernetes service .
Candidate should have experience in setting up data related service on Azure cloud . He should have done set-up of services - Azure SQL Database , Azure Cosmos DB , Azure Data Factory , Azure Event Hubs , Microsoft Fabric , Azure Synapse Analytics , Azure Databricks , Azure Stream Analytics .
Candidate should have experience in Azure AI Services and show know how to plug AI into an enterprise environment securely, cost-effectively, and at scale.
Candidate should be knowing which "tier" of AI to use for a specific business problem.
Candidate should have exposure to on how finOps in AI as well as data services will be implemented
Must-Have Expertise --- >
Cloud Platforms Expert-level knowledge of the Azure Ecosystem (Global Regions, AZs).
Networking VNet Peering, Hub-and-Spoke models, Azure Firewall, Application Gateway, and Front Door.
Automation Proficiency in Terraform or Bicep and CI/CD tools (Azure DevOps/GitHub Actions).
Containerization Experience designing environments for Azure Kubernetes Service (AKS).
Data & Storage Azure SQL (Managed Instance), Blob Storage, and Azure NetApp Files.
Experience & Certifications ---->
Experience: 10+ years in IT Infrastructure, with a minimum of 5+ years in a Lead Architect role specifically on Azure.
Migration Experience: Proven track record of leading large-scale "Lift & Shift" or "Refactor" migrations for enterprise clients.
Certifications: * Required: AZ-305 (Azure Solutions Architect Expert).
Preferred: AZ-500 (Azure Security Engineer) or AZ-700 (Azure Network Engineer).
