Winfo Solutions - Azure Cloud Architect - IAC Terraform

Azure Cloud Architect (Hybrid, Security & IaC)

Role Overview :

The Azure Cloud Architect is a senior technical leadership role responsible for designing and implementing robust, scalable, and secure cloud infrastructure solutions for enterprise-grade deployments.

The incumbent will possess deep expertise in the Microsoft Azure platform and must leverage DevOps methodologies and Infrastructure as Code (IaC) using Terraform and GitHub Actions.

This role requires extensive collaboration with development and solution teams to drive technical excellence, governance, and cost optimization.

Job Summary :

We are seeking an experienced Azure Architect with mandatory expertise in Azure, DevOps, Terraform, and GitHub Actions to design and implement highly secure, scalable, and hybrid cloud solutions. Key responsibilities include architecting Azure environments using App Services, Data Factory, CDN, and WAF, implementing IaC using Terraform modules and GitHub Actions CI/CD pipelines for multi-environment deployments, and designing secure networking topologies using Azure Firewall and Virtual WAN. The role also requires establishing comprehensive monitoring (Azure Monitor, Sentinel) and driving cost optimization, backup, and Disaster Recovery (DR) strategies.

Key Responsibilities and Technical Deliverables :

Cloud Architecture and Deployment (IaC Focus) :

- Architect and deploy comprehensive Azure environments including core services like App Services, Azure Data Factory, CDN, Web Application Firewall (WAF), and advanced network configurations.

- Implement Infrastructure as Code (IaC) using complex Terraform modules to provision, configure, and manage cloud resources repeatably and consistently.

- Build and maintain GitHub Actions CI/CD pipelines for automated, reliable, and secure multi-environment deployments (dev, QA, prod).

- Build Azure Stack Hub and hybrid cloud solutions with a strong emphasis on consistent governance and compliance posture across hybrid boundaries.

Security, Networking, and Governance :

- Design secure networking topologies leveraging advanced services such as Azure Firewall, Virtual WAN, and private endpoints to ensure network isolation, data security, and full compliance.

- Establish monitoring and observability frameworks using Azure Monitor and Application Insights.

- Implement and manage security monitoring and posture using tools like Microsoft Defender for Cloud and Azure Sentinel for threat detection and proactive defense.

Performance, Optimization, and Operations :

- Collaborate closely with development teams to integrate Platform-as-a-Service (PaaS) offerings (App Service, Functions, Azure Kubernetes Service (AKS)) and optimize application performance and scalability.

- Drive cost optimization initiatives by right-sizing resources, implementing reserved instances, and managing consumption effectively.

- Define, implement, and maintain robust backup & DR strategies to ensure business continuity and 24x7 operational readiness.

Mandatory Skills & Qualifications :

- Core Cloud Platform : Deep and verifiable expertise in designing and implementing solutions on Microsoft Azure.

- IaC & DevOps : Mandatory proficiency in Terraform for Infrastructure as Code and GitHub Actions for CI/CD automation.

- Networking & Security : Expertise in Azure networking (Virtual WAN, Private Endpoints) and security services (Azure Firewall, WAF, Defender for Cloud).

- Architecture : Experience architecting solutions using Azure PaaS services (App Services, Data Factory, AKS) and defining hybrid cloud strategies (Azure Stack Hub).

Preferred Skills :

- Relevant Microsoft Azure certifications (e.g., Azure Solutions Architect Expert - AZ-305).

- Experience with governance tools like Azure Policy and Blueprints.

- Proven ability to optimize application performance and manage large-scale data solutions in Azure.

- Strong background in writing automation scripts (e.g., PowerShell, Python).