Azure Cloud Architect

TCS•Huntsville, AL

9h•Onsite

About The Position

We are seeking a Senior Azure Architect to lead the design, engineering, and governance of secure Microsoft Azure environments supporting government, defense, and mission-critical workloads. This role will serve as a senior technical leader responsible for defining Azure architecture patterns, guiding secure cloud adoption, and ensuring solutions align with federal security, compliance, and operational requirements. The selected candidate will join our strong team of Engineers supporting our Missile Defense Agency (MDA) customer in Huntsville, AL. This is an in-office position. Remote work is not available. Candidates without a Secret, or higher clearance, will not be considered. The ideal candidate has deep experience architecting Azure-based enterprise platforms, including hybrid connectivity, zero trust principles, identity, network segmentation, resiliency, and security boundary enforcement. Candidates with experience supporting DoD, IC, federal civilian agencies, or classified environments are strongly preferred. Experience working with private DISA circuits, dedicated cloud connectivity, or architectures extending from cloud environments to classified LANs is considered a major advantage.

Requirements

8+ years of experience in cloud architecture, infrastructure architecture, or enterprise solution design.
5+ years of hands-on experience architecting and implementing solutions in Microsoft Azure .
Strong experience with Azure networking and core platform services, including: Azure Virtual Network ExpressRoute Private Endpoints Azure Firewall / NSGs Load balancing and traffic management Azure compute and storage services Key Vault Azure Monitor / Log Analytics
Experience designing secure hybrid cloud environments with strong emphasis on segmentation, private connectivity, and controlled access.
Experience with Azure landing zones , management groups, subscriptions, RBAC, policy, and governance frameworks.
Experience with Infrastructure as Code , including Terraform, Bicep, ARM, or comparable automation frameworks.
Strong understanding of cloud security architecture, including encryption, identity federation, privileged access controls, logging, and boundary defense.
Ability to produce architecture diagrams, technical documentation, standards, and implementation guidance for engineering teams and program stakeholders.
Strong written and verbal communication skills, especially in environments requiring coordination across security, operations, leadership, and external partners.
Current Department of Defense (DoD) Secret clearance, or higher.

Nice To Haves

Prior experience supporting Department of Defense, Intelligence Community, federal civilian, or other highly regulated government customers .
Experience with Azure Government or similarly regulated sovereign cloud environments.
Familiarity with federal security and compliance frameworks such as: NIST 800-53 RMF Zero Trust Architecture FedRAMP DISA security requirements
Experience supporting workloads subject to accreditation, authorization, or classified handling requirements.
Knowledge of enterprise security architecture for mission systems, including logging, auditing, continuity, and incident response integration.
Experience with DevSecOps pipelines, policy-as-code, and automated compliance validation.
Azure certification such as Microsoft Certified: Azure Solutions Architect Expert .
Direct experience working with private DISA circuits , secure transport, or dedicated cloud connectivity supporting government or defense use cases.
Experience supporting architectures that extend from a cloud provider into a classified LAN , restricted enclave, or mission network.
Experience with: secure boundary design network isolation and segmentation controlled interconnection points routing and firewall policy for sensitive environments multi-domain or cross-boundary connectivity considerations coordination with security accreditation, network engineering, and government mission owners

Responsibilities

Lead architecture and technical design for secure Azure environments supporting government and defense missions.
Define and maintain Azure reference architectures, landing zones, and platform standards for regulated and sensitive workloads.
Design cloud solutions that meet federal security, compliance, and operational requirements, including strong boundary protection, segmentation, and least-privilege access models.
Architect secure hybrid connectivity between Azure and on-premises, restricted, or mission-partner environments.
Support implementation of enterprise Azure services including networking, identity, compute, storage, security tooling, monitoring, and disaster recovery.
Develop and review architectures for mission systems requiring high availability, resiliency, auditability, and controlled data flows.
Guide engineering teams on Infrastructure as Code, repeatable deployment patterns, and secure cloud operations.
Collaborate with cybersecurity, network, system, and mission stakeholders to align architecture with accreditation and operational objectives.
Support design reviews, technical risk assessments, and architecture decision documentation.
Ensure cloud implementations align with organizational standards, federal mandates, and security control requirements.
Mentor engineers and provide senior-level technical leadership across programs and projects.