Lead Cloud Architect (Azure)

TL;DR

Lead Cloud Architect (Azure): Architecting and evolving resilient Azure cloud infrastructure with an accent on Azure Landing Zone, Infrastructure-as-Code (IaC), and CI/CD, while strengthening SRE practices for production reliability. Focus on designing secure multi-tenant isolation, improving observability and incident response, and standardizing platforms like AKS and Azure/O365 services with security-first governance.

Location: Remote (Birmingham, AL)

Salary: $122,000 - $150,000 per year

Company

hirify.global builds cloud infrastructure to help protect customers and support enterprise cloud transformation.

What you will do

• Refine Azure Landing Zone architecture and evolve the “Secure Sandbox” for multi-tenant isolation, compliance, networking, monitoring, and automation.
• Build “Paved Roads” for cloud enablement by enhancing reusable IaC modules (Bicep/ARM/Terraform) and CI/CD templates (Azure DevOps/GitHub Actions) with governance, security, and cost controls.
• Drive SRE practices by defining SLOs/SLIs, improving observability (Azure Monitor/Application Insights), and supporting self-healing and incident troubleshooting with 24/7 on-call rotation.
• Standardize and optimize AKS and related services (provisioning, scaling, observability, security) across hybrid/multi-cloud setups, including containers and Blob Storage.
• Improve resilience and scalability through reviews, tuning, chaos engineering, incident response, post-mortems, and security integration (Defender, Sentinel, Key Vault) including disaster recovery planning.
• Advance DevOps and automation by championing CI/CD/release strategies and creating operational scripts (PowerShell/VM scripts) and orchestration automations.

Requirements

• 8+ years in cloud engineering, including 5+ years in Azure architecture/SRE with hands-on production-scale, high-availability work and root-cause analysis.
• Strong Azure architecture expertise: Landing Zones, AKS, VMs, VNet, Entra ID, Azure Policy/Blueprints, and designing/managing IaaS/PaaS/SaaS components.
• Proven IaC and CI/CD mastery: Bicep/ARM/Terraform, Azure DevOps/GitHub Actions, and PowerShell/CLI; 2+ years in CI/CD automation.
• Solid SRE fundamentals: SLOs/SLIs, error budgets, observability (Azure Monitor/Prometheus/Grafana), and automation (Logic Apps/Functions).
• Security depth: Azure Defender, Sentinel, Key Vault, IAM expertise (Entra ID/AD/Azure AD DS/Connect/B2C, MFA), and Azure Policy implementation.
• Experience with O365 and Azure AD B2C plus Kubernetes/containers; ability to translate requirements into architecture and solve complex system problems.

Culture & Benefits

• Comprehensive health, dental, and vision insurance, plus mental health benefits and an employee assistance program.
• Work-life balance with paid time away (e.g., paid time off, paid parental leave, short-term disability, cultural observance day).
• Financial wellbeing support including healthcare account contributions, pension plan, and a 401(k) with company matching.
• Additional incentive opportunities via an annual incentive based on individual and company performance.
• 401(k) plan with company matching and access to ProHealth Rewards for wellbeing and cash rewards.

Hiring process

• Application review supported by AI tools, with final hiring decisions made by humans.
• Interviews and evaluations aligned to cloud architecture, SRE, security, and automation experience.