Azure Cloud Architect
TCS
- Huntsville, Alabama, United States
- Huntsville, Alabama, United States
Über
Clearances Required: Active DoD Secret
Location: Huntsville, Alabama, United States
Government / Defense / Classified Cloud Environments
Position Summary
We are seeking a Senior Azure Architect to lead the design, engineering, and governance of secure Microsoft Azure environments supporting government, defense, and mission-critical workloads. This role will serve as a senior technical leader responsible for defining Azure architecture patterns, guiding secure cloud adoption, and ensuring solutions align with federal security, compliance, and operational requirements.
The selected candidate will join our strong team of Engineers supporting our Missile Defense Agency (MDA) customer in Huntsville, AL.
************************************************************************************
This is an in-office position. Remote work is not available.
************************************************************************************
Candidates without a Secret, or higher clearance, will not be considered.
************************************************************************************
The ideal candidate has deep experience architecting Azure-based enterprise platforms, including hybrid connectivity, zero trust principles, identity, network segmentation, resiliency, and security boundary enforcement. Candidates with experience supporting DoD, IC, federal civilian agencies, or classified environments are strongly preferred. Experience working with private DISA circuits, dedicated cloud connectivity, or architectures extending from cloud environments to classified LANs is considered a major advantage.
Key Responsibilities
Lead architecture and technical design for secure Azure environments supporting government and defense missions.
Define and maintain Azure reference architectures, landing zones, and platform standards for regulated and sensitive workloads.
Design cloud solutions that meet federal security, compliance, and operational requirements, including strong boundary protection, segmentation, and least-privilege access models.
Architect secure hybrid connectivity between Azure and on-premises, restricted, or mission-partner environments.
Support implementation of enterprise Azure services including networking, identity, compute, storage, security tooling, monitoring, and disaster recovery.
Develop and review architectures for mission systems requiring high availability, resiliency, auditability, and controlled data flows.
Guide engineering teams on Infrastructure as Code, repeatable deployment patterns, and secure cloud operations.
Collaborate with cybersecurity, network, system, and mission stakeholders to align architecture with accreditation and operational objectives.
Support design reviews, technical risk assessments, and architecture decision documentation.
Ensure cloud implementations align with organizational standards, federal mandates, and security control requirements.
Mentor engineers and provide senior-level technical leadership across programs and projects.
Required Qualifications
8+ years of experience in cloud architecture, infrastructure architecture, or enterprise solution design.
5+ years of hands-on experience architecting and implementing solutions in Microsoft Azure.
Strong experience with Azure networking and core platform services, including:
Azure Virtual Network
ExpressRoute
Private Endpoints
Azure Firewall / NSGs
Load balancing and traffic management
Azure compute and storage services
Key Vault
Azure Monitor / Log Analytics
Experience designing secure hybrid cloud environments with strong emphasis on segmentation, private connectivity, and controlled access.
Experience with Azure landing zones, management groups, subscriptions, RBAC, policy, and governance frameworks.
Experience with Infrastructure as Code, including Terraform, Bicep, ARM, or comparable automation frameworks.
Strong understanding of cloud security architecture, including encryption, identity federation, privileged access controls, logging, and boundary defense.
Ability to produce architecture diagrams, technical documentation, standards, and implementation guidance for engineering teams and program stakeholders.
Strong written and verbal communication skills, especially in environments requiring coordination across security, operations, leadership, and external partners.
Current Department of Defense (DoD) Secret clearance, or higher.
Preferred Qualifications
Prior experience supporting Department of Defense, Intelligence Community, federal civilian, or other highly regulated government customers.
Experience with Azure Government or similarly regulated sovereign cloud environments.
Familiarity with federal security and compliance frameworks such as:
NIST 800-53
RMF
Zero Trust Architecture
FedRAMP
DISA security requirements
Experience supporting workloads subject to accreditation, authorization, or classified handling requirements.
Knowledge of enterprise security architecture for mission systems, including logging, auditing, continuity, and incident response integration.
Experience with DevSecOps pipelines, policy-as-code, and automated compliance validation.
Azure certification such as Microsoft Certified: Azure Solutions Architect Expert.
Highly Desired Experience
Direct experience working with private DISA circuits, secure transport, or dedicated cloud connectivity supporting government or defense use cases.
Experience supporting architectures that extend from a cloud provider into a classified LAN, restricted enclave, or mission network.
Experience with:
secure boundary design
network isolation and segmentation
controlled interconnection points
routing and firewall policy for sensitive environments
multi-domain or cross-boundary connectivity considerations
coordination with security accreditation, network engineering, and government mission owners
Technical Competencies
Microsoft Azure architecture and design
Government and defense cloud security principles
Hybrid cloud networking and private connectivity
Identity and access management
Infrastructure as Code and automation
Security controls and compliance alignment
Monitoring, audit logging, backup, and disaster recovery
Enterprise architecture documentation and governance
Desired Characteristics
Ability to work in an in-office environment.
Strong architectural judgment in high-security, high-visibility environments
Ability to balance mission needs with compliance and security requirements
Comfortable working in structured government program environments
Strong collaboration skills across engineering, cybersecurity, operations, and leadership teams
Able to lead technical design efforts while mentoring junior and mid-level engineers
Benefits
Highlights of our benefits include BC/BS Health, Dental, Vision, 401(k) match, Profit Sharing, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, vacation, sick leave, and maternity/paternity leave.
Apply online or visit us at www.tcs-inc.com/careers
TCS, Inc. is an EEO Employer.
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klick auf „Jetzt Bewerben”, um deine Bewerbung direkt auf deren Website einzureichen.