10+
Experience
Full Time
Job Type
B2
English Level
Who We’re Looking For
We are looking for a true “full-stack” architect who bridges the gap between traditional hardware and modern cloud-native practices.
What You’ll Do
-
Lead Hybrid Infrastructure Discovery: Rapidly assess the current state of the client’s key technology domains, including:
-
Core Infrastructure (Servers, WAN/LAN, WiFi, Firewalls, Data Centers)
-
Cloud Infrastructure (CDN, Multi-Cloud Networking, Managed Control Planes)
-
Infrastructure Insights (AIOps, FinOps, Policy & Compliance)
-
ITC Infrastructure (Composable Infrastructure, Image Management)
-
-
Design the “IaC-First” Framework: Architect the high-level target state, focusing on a unified IaC workflow (e.g., GitOps) for provisioning and managing all infrastructure.
-
Define the Source of Truth (SoT): Propose a strategy for a unified Source of Truth (like NetBox, mentioned in Core Infrastructure.jpg) to drive network and system automation.
-
Architect Governance & Guardrails: Design the “as-code” framework for governance, including:
-
Policy as Code (PaC) (e.g., OPA, Sentinel) to enforce compliance and security standards.
-
FinOps & Cost Management (e.g., mandatory tagging, cost estimation in CI/CD).
-
Monitoring & AIOps as Code (e.g., declarative dashboards and alerts).
-
-
Design Composable Infrastructure Patterns: Define a strategy for creating “composable”, reusable, self-service infrastructure blocks (e.g., Terraform Modules, Crossplane compositions) and a “golden image” management pipeline (e.g., Packer).
-
Deliver the Strategic Roadmap: Present your findings, architectural blueprint, tool recommendations, and a phased execution plan to senior leadership. This roadmap will be the foundational guide for the new engineering team.
What You’ll Need
-
Architectural & Strategic Leadership
-
10+ years in infrastructure, with 5+ years in a Principal or Solutions Architect role for a large-scale, global enterprise.
-
Proven experience leading “current state to future state” discovery, analysis, and strategic planning projects for hybrid environments.
-
Infrastructure as Code (IaC) & Automation Mastery (Non-Negotiable)
-
Expert-level proficiency in Python for automation and API integration.
-
Mastery of declarative IaC tools, especially Terraform and Ansible, for both cloud and on-prem hardware.
-
Deep experience with Policy as Code (PaC) frameworks (e.g., Open Policy Agent, HashiCorp Sentinel) to enforce governance.
-
Hands-on experience with “Image as Code” tools like Packer for building golden VM/container images.
-
Experience with “Monitoring as Code” (e.g., configuring Datadog, Splunk, or Prometheus declaratively).
-
Core On-Prem & Network Automation Expertise
-
Demonstrable experience applying IaC principles to traditional hardware.
-
Expertise in network automation for vendors like Cisco and Palo Alto (e.g., managing configurations, firewalls, and routing “as code”).
-
Experience automating core services like DNS/IPAM (e.g., BlueCat, Infoblox) and Active Directory.
-
Strong understanding of data center, WAN/LAN, WiFi, and transport/circuit management.
-
Hybrid & Multi-Cloud Expertise
-
Architect-level knowledge of multi-cloud networking (e.g., AWS Transit Gateway, Azure vWAN) and defining VPCs, NAT, and routing as code.
-
Experience designing cloud account/subscription governance (e.g., AWS Organizations, Azure Landing Zones).
-
Experience with “CDN as Code” (e.g., Cloudflare, Akamai) and “Backup as Code” strategies.
-
Architectural vision for composable, cross-plane infrastructure (e.g., using Crossplane or advanced Terraform patterns).
-
Business & Platform Acumen
-
Strong understanding of FinOps principles and how to enable them via automated tagging, cost reporting, and optimization.
-
Familiarity with AIOps frameworks and how a well-structured IaC platform provides the necessary data.
-
Excellent communication skills to champion the cultural and process shift from a traditional “ticket-based” ops model to a modern “Git-based” platform engineering model.
What We Offer
- Competitive salary.
- Comfortable work in your local time zone.
- Flexible work schedule.
- Professional growth and development.
- Remote work format.
- Multicultural working environment.
