Azure Cloud Architect

Role Overview

• Lead the discovery effort across all nine assessment domains, including stakeholder interviews with technical and business leaders and hands-on review of the client’s Azure tenant, network topology, identity configuration, IaC repositories, deployment paths, cost reporting, and security posture.
• Own the architectural point of view. Assess the current state against Azure Landing Zone guidance and the Well-Architected Framework, identify the foundational moves that unlock everything else, and decide where the report needs to push back versus where it should affirm the client’s existing direction.
• Author the prioritized recommendations and the phased roadmap. Tag each recommendation against the success criteria the client cares about (security, cost, resiliency, auditability, deployment ease, reduction of single-person dependencies), sequence the work with explicit dependency mapping, and make the sequencing logic legible to non-technical readers.
• Direct the Senior Cloud and Platform Engineer on the engagement. Frame the analysis, divide the work, review the output, and make sure the technical depth in the report holds up under scrutiny from the client’s engineers.
• Run the cadence of the engagement with the client: kickoff facilitation, weekly written status, the mid-Phase-2 draft-review working session, and the final presentation to leadership.
• Write the executive narrative. The leadership-ready summary is part of your deliverable, not a hand-off to someone else, and it has to read well to an audience outside technical engineering.

Requirements

• Approximately 15 years of experience architecting, building, and operating complex software and infrastructure platforms, with substantial depth on Azure and meaningful exposure to hybrid and on-premises environments.
• A track record of guiding clients through full cloud transformation journeys — from initial assessment through landing-zone design, migration, and steady-state operations — not just a single phase of one.
• Deep, current expertise in Azure Landing Zone design, management group and subscription strategy, hub-and-spoke and Virtual WAN network topologies, ExpressRoute and VPN resiliency patterns, and private access and DNS integration.
• Strong command of identity architecture on Microsoft Entra ID, including Conditional Access, MFA enforcement, privileged-role design, PIM, Azure Policy coverage, and the practical realities of consolidating production Active Directory under Entra ID.
• Hands-on experience leading Infrastructure-as-Code at scale, with Terraform as a primary tool and working knowledge of Bicep and Azure Verified Modules. Familiarity with common Azure DevOps deployment patterns and what “code-driven, team-owned” looks like in practice.
• Demonstrated ability to translate technical findings into fundable, prioritized roadmaps that survive contact with finance, audit, and executive leadership.
• Direct experience delivering assessment work in regulated environments — financial services, insurance, or healthcare — and comfort operating inside the governance rhythms of a federally chartered or similarly regulated institution.
• Senior-presence communication: confident in front of a CIO and equally credible in a working session with the engineers who will operate what you recommend.

Tech Stack

• Azure
• Cloud
• DNS
• Terraform

Benefits

• As a consultant, you’re trusted as an advisor — clients look to you not just for implementation, but for guidance, strategic thinking, and leadership.
• Work alongside strong engineering teams and modern technology stacks
• Competitive Hourly Pay
• Impactful Work: Help drive application best practices in a respected organization
• Highly collaborative, low-ego environment focused on problem solving
• Meaningful and impactful client-facing work
• “Small company feel” backed by a stable, award-winning organization
• Company Events