Azure Cloud Architect

Summary

We are seeking an experienced Azure Cloud Architect to lead a strategic initiative to migrate on-premises infrastructure to Microsoft Azure. This is a net-new role created to drive a full data center-to-Cloud transformation, moving workloads currently running across two Tier-3 datacenters (~500 servers) to Azure. This is a high-impact, high-visibility role with meaningful technical ownership from day one.

What Success Looks Like

Within the first 90 days, you are expected to make meaningful progress on the Global Secure Access (GSA) deployment and establish a clear migration roadmap for Azure-specific infrastructure components. You are expected to earn the trust of the Infrastructure Team by demonstrating both deep technical expertise and strong collaboration skills.

Work Environment & Culture

We are a collaborative team that values technical depth, clear communication, and mutual respect. The ideal candidate is a confident, no-ego professional who can engage at both the engineering and senior leadership levels. Fundamental networking knowledge is non-negotiable — the team speaks the language of infrastructure and expects you to do so as well.

Work Schedule

During the Contract Period: 3 days per week, onsite. After Conversion to Permanent Employee: 4 days per week onsite (with potential to increase to 5).

Responsibilities

• Lead end-to-end Azure Cloud migration from two Tier-3 on-premises datacenters (~500 servers).
• Design and implement an Azure architecture following a traditional Hub-Spoke network model.
• Deploy and manage Microsoft Entra ID and Defender for Cloud.
• Complete and extend GSA deployment with Azure-specific components.
• Define and enforce RBAC policies and identity governance standards
• Develop and maintain automation scripts using Python and PowerShell.
• Collaborate with network and infrastructure teams, translating Cloud architecture into networking language.
• Provide technical leadership and guidance across Cloud initiatives.
• Document architecture decisions, standards, and runbooks.
  
  

Requirements

• 5 years of hands-on Azure architecture experience at a senior/enterprise level.
• Demonstrated experience leading a similar data center-to-Cloud migration effort.
• Deep expertise in Microsoft Defender, Microsoft Entra ID, and GSA.
• Strong working knowledge of Cisco and Fortinet networking technologies.
• Solid understanding of fundamental networking concepts: DNS, subnetting, IP addressing, and routing protocols.
• Experience with RBAC design and implementation; must understand the principle of least privilege.
• Proficiency in Python and/or PowerShell for infrastructure automation.
• Ability to deploy and support production workloads for enterprise environments in Azure.
• Strong troubleshooting skills across Cloud infrastructure, identity, and networking layers.
  
  

Preferred

• Microsoft Certified: Azure Solutions Architect Expert (AZ-305) or equivalent.
• Experience in Identity & Access Management at an advanced level.
• Familiarity with Azure Private Cloud and IKM frameworks.
• Experience working in mid-to-large enterprise environments with complex hybrid infrastructures.
  
  

This is a 6-month Contract-to-Hire opportunity with our Kansas City, MO client. Employee benefits include Medical/Dental Benefits, Paid time off, Paid Holidays, and 401(k). H1-B Visa sponsorship is not available for this position. No third-parties, please.