Sr Cloud Architect/Engineer

Responsibilities:

• Cloud Architecture Design and architect cloud-based solutions that meet business requirements while ensuring scalability, reliability, security, and performance. Manage Azure IaaS deployment infrastructure based on requirements and best practices. Design Secured Azure Landing Zones with segmented deployment groups Secured Azure Landing Zones with segmented deployment groups.
• Infrastructure as Code (IaC): Develop and maintain Infrastructure as Code (IaC) using tools such as Terraform, CloudFormation, or Azure Resource Manager to automate the provisioning and management of cloud resources.
• Cloud Migration: Lead the migration of on-premises applications and infrastructure to cloud environments, ensuring minimal disruption and maximum efficiency.
• Cloud Platform Management: Manage and optimize cloud platforms (e.g., AWS, Azure, GCP) to ensure resource utilization, cost-effectiveness, and adherence to best practices.
• Lead efforts for identifying and resolving cloud infrastructure and operational issues, ensuring high availability and minimal downtime.
• Build, configure, and maintain cloud-based monitoring tools to provide visibility into the health and performance of cloud systems.
• Establish and lead incident response procedures, ensuring rapid response to cloud outages, failures, and security incidents.
• Continuous Integration/Continuous Deployment (CI/CD): Implement CI/CD pipelines to automate the deployment of applications and infrastructure changes in cloud environments.
• Security and Compliance: Implement security best practices and compliance standards in cloud environments, including identity and access management, data encryption, network security, and regulatory compliance.
• Collaboration and Documentation: Collaborate with cross-functional teams to gather requirements, provide technical guidance, and communicate project status. Document architecture designs, configurations, and processes.
• Technical Leadership: Provide technical leadership and mentorship to junior engineers. Stay current with emerging technologies and industry trends in cloud computing.
• Develop and maintain the data architecture vision and strategy, ensuring alignment with business objectives and technology roadmaps.
• Design conceptual, logical, and physical data models that accurately represent our data assets and enable efficient data access, analysis, reporting, logging, and monitoring.
• Define data integration strategies and patterns to enable seamless data flow and interoperability across various systems and platforms.
• Conduct risk assessments and develop disaster recovery and business continuity plans.
• Ensure adherence to the enterprise data movement, quality and accountability standards in technology, and established data governance policies and procedures.
• Collaborate with cross functional teams to recommend data security measures and privacy control to ensure gaps in controls are filled.
• Collaborate with the governance team to develop strategies for MDM including data profiling, data cleansing, and data standardization, data quality management practices to monitor and improve data quality and ensure consistent and accurate master data.
• Define and maintain the blueprint for managing data assets. Map relationships between data, process, business, system, and technology.
• Provide technical leadership and mentorship to data architecture and engineering teams, guiding them in implementing best practices and maintaining data standards.
• Architect, design and deployment of Secured Azure Landing Zones with segmented deployment groups and manage Azure SaaS and PaaS services and solutions. 
• Cost management of Azure services and implementation of a tagging strategy for Cloud Resources and Assets with an associated taxonomy in support of cost rebilling, reporting, and compliance. 
• Planning and migration of existing workloads into Azure. 
• Design, build, upgrade, and decommission various Windows and Linux systems, features, and services including but not limited to: 
• Automate the delivery of Azure and VMware services. 
• Planning and migration of existing workloads into Azure. 
• Respond to monitoring alerts of any health issues within the Azure and VMware environments. 
• Liaise effectively with 3rd party suppliers and support providers to ensure issues and solutions are provided within expected service levels. 
• Design conceptual, logical, and physical data models that accurately represent our data assets and enable efficient data access, analysis, reporting, logging, and monitoring.
• Define data integration strategies and patterns to enable seamless data flow and interoperability across various systems and platforms.
• Ensure adherence to the enterprise data movement, quality and accountability standards in technology, and established data governance policies and procedures.
• Automate configurations and deployments using scripts, ensuring a consistent and streamlined setup across various environments.
• Implement and enforce security best practices, such as Multi-Factor Authentication (MFA), private endpoint connections, and RBAC roles.
• Continuously research and stay updated with cloud advancements, suggesting improvements and updates to the company's existing setup.
• Cost management of Azure services and implementation of a tagging strategy for Cloud Resources and Assets with an associated taxonomy in support of cost rebilling, reporting, and compliance. 
• Recommend areas where existing policies and procedures require change or where new ones need to be developed. 
• Create supporting documentation for various audiences with the ability to multi-task and be creative and innovative in a dynamic, fast paced team environment. 
• Drive the design delivery of multi-cloud services adhering to Enterprise Cloud strategy.
• Perform hands-on evaluations before we scale up the adoption of cloud platform services/tools to highly critical applications.
• Performs hands-on architecture, design, and development of systems specially as it pertains to Public Clouds, Kubernetes, service Mesh, Terraform, and Gen AI capabilities.
• Define and translate vision into actionable plans; ability to see the “big picture.”
• Work with product owners to understand the features and ensure proper design for the cloud capabilities.
• Understand the current implementation of the cloud platform services across multiple clouds and look for improvements to the platform and its dependencies.
• Monitor emerging technologies and manage relationships with technology vendors.

Required Qualifications:

• Bachelor’s degree in information systems, Information Technology, Computer Science, or Engineering from an accredited university, master’s degree preferred.
• 10 + years of information technology experience
• 7+ years of experience in cloud architecture, engineering, or related roles.
• 5 + years of information security experience
• 5+ years of hands-on experience with Azure migrations, Azure Security, Azure SQL, Azure Active Directory, Terraform, Infrastructure as Code, and disaster recovery.
• Expertise in cloud platforms like AWS, Microsoft Azure, or Google Cloud Platform (GCP).
• Strong experience in designing cloud-native applications, microservices architectures, and serverless environments.
• Solid understanding of cloud networking, storage, and security.
• Proficiency with Infrastructure as Code (IaC) tools such as Terraform, CloudFormation, or ARM templates.
• Hands on experience in security systems, including but not limited to (firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.)
• One or more of the following certifications in area of specialty are preferred. Examples include CISSP, CCSA/CCSE, CISM, CCSP, Azure Solutions Architect, AWS Solutions Architect, Microsoft Certified: Azure Solutions Architect Expert, or Google Professional Cloud Architect.
• Must manage ambiguity, resolve urgent and competing demands, and go above-&-beyond to deliver outcomes
• Strong knowledge of Azure services, including but not limited to: Azure Networking, Identity, Landing Zones, Azure Advisor, Azure Policy, Microsoft Cost Management
• Be well versed in general infrastructure technology and understand public and private cloud concepts such as Software as a Service (SaaS), Platform as a Service (PaaS), Desktop as a Service (DaaS), and Infrastructure as a Service (IaaS).
• Strong leadership and mentoring abilities.
• Excellent communication skills, both written and verbal.
• Ability to think strategically and architect long-term solutions.
• Collaborative mindset with a strong focus on teamwork.
• Exceptionally self-motivated, directed and detail oriented.
• Strong attention to detail and ability to manage complex tasks.
• Strong level of experience using the Microsoft suite of Products.

Technical Qualifications:

• Expertise in Azure Cloud Architect, including but not limited to Custom Imaging and VDI/Hypervisor, VNet and Resource Groups, and Azure VPN gateways.
• Expertise in Azure ADF, Azure Data Bricks, and Azure Data Lake with Azure Synapse database.
• Hands on experience working with or implementing data fabric technology on cloud.
• Strong understanding of security principles, practices, and technologies, including encryption, authentication, access control, and network security. Proven experience with reliability engineering practices such as monitoring, alerting, incident response, and performance tuning.
• Knowledge of machine learning, AI, and Big Data services in the cloud.
• Effective communication and collaboration skills to work effectively with cross-functional teams.
• Project management experience with the ability to manage multiple initiatives concurrently.
• Needs to be a skilled communicator with tools like Visio, PowerPoint, and be able to quickly put together and present ideas to large groups clearly and effectively.
• Strong Excel skills experience working with large amounts of data, conducting analysis and present findings.
• Hands-on design and implementation experience with one/more of the following data tools:
• Able to independently architect solutions, lead code reviews and ensure quality throughout the life of each project.
• Identity and Access Management (IAM) platforms and related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth
• Experience with cloud-based security platforms (ZTNA), Zscaler
• Experience with VMware Cloud Disaster Recover (VCDR)
• Understanding corporate network monitoring and security and common network protocols such as TCP/IP, VLANS, DNS, DHCP, MA Radius, WIFI, Backup
• Networking and firewalls – CISCO, Fortinet, Meraki, Palo Alto and VMWARE NSX
• Experience with Web-Application Firewalls implementing and managing.
• Experience with Infrastructure as Code (IaC) tools such as ARM templates, Bicep Terraform, Puppet, Azure resource Manager.
• Solid understanding of networking concepts, security principles, and compliance standards in cloud environments. 
• Enterprise Network Monitoring software experience (SolarWinds Orion, Service Now)

Benefit Information:​

ABM offers a comprehensive benefits package.  For information about ABM’s benefits, visit:

ABM 2025 Employee Benefits | Staff & Management