Multi-cloud infrastructure and security Architect

Title: Multi-cloud Infrastructure and Security ArchitectLocation: New York, NYDuration: 6 MonthsKEY RESPONSIBILITIES 1. Hybrid & Multi-Cloud Architecture Design • Architect and implement secure, enterprise-grade multi-cloud landmines-er, landing zones—across AWS and Azure (GCP is a plus), ensuring strict alignment with CIS benchmarks and corporate security policies. • Design and deploy complex hybrid connectivity solutions (e.g., AWS Direct Connect, Azure ExpressRoute, SD-WAN, and high-throughput VPN meshes) to link our legacy on-premises data centers smoothly with cloud environments. • Establish scalable IAM hierarchies, cross-account trust relationships, and organizational units across multiple cloud tenants.2. Infrastructure Resiliency & Disaster Recovery (DR) • Architect high-availability (HA) and disaster recovery topologies across disparate cloud providers to eliminate single points of failure (e.g., active-active cross-cloud replication). • Develop, document, and test automated failover mechanisms for critical enterprise workloads to ensure zero-downtime objectives.3. Infrastructure as Code (laf) & Automation • Define, build, and maintain the company's master laG repository using Terraform, Ansible, or CloudFormation. • Implement secure CI/CD deployment pipelines (Jenkins, GitLab, or GitHub Actions) embedded with automated security guardrails and static analysis tools.4. Technical Advisory & Collaboration • Serve as the primary subject matter expert (SME) on cloud infrastructure for the core Cyber Security team, translating security objectives into concrete cloud configurations. • Collaborate with traditional on-prem network and sysadmin teams to systematically migrate or extend legacy workloads to the cloud without disrupting active operations.REQUIRED SKILLS & EXPERIENCE • Enterprise Scale: Minimum 8+ years of experience managing, architecture-designing, and deploying IT infrastructure within a Fortune 500 or equivalent large-scale enterprise.• Multi-Cloud Mastery: Deep, hands-on production experience with at least two major cloud vendors (AWS and Azure are highly preferred). You know their native networking, identity systems, and edge security controls inside out. • Networking Guru: Strong foundational background in traditional on-premises networking (firewalls, load balancers, VLANs, proxies) and how those concepts map directly to cloud-native constructs (VPCs, Nets, Transit Gateways). • Automation-First Mindset: Advanced proficiency with automation toolsets. • Pragmatic Security Knowledge: While you don't need to be a penetration tester, you must thoroughly understand cloud security frameworks (NIST, Cloud Security Alliance CCM) and modern identity protocols (SAML, OIDC, Auth, JIT access).DESIRED CERTIFICATIONS While your hands-on experience matters most, we highly value the following credentials) • AWS Certified Solutions Architect - Professional / AWS Certified Security - Specialty • Microsoft Certified: Azure Solutions Architect Expert / Azure Security Engineer Associate • CCSP (Certified Cloud Security Professional) or equivalent infrastructure-focused certificationsPREFERRED / PLUS QUALIFICATIONS • Familiarity with Microsoft Exchange On-Premises and Exchange Online environments • Experience with large-scale email broadcast or bulk-messaging platforms • Exposure to compliance frameworks, audits, and regulatory examinations • Experience integrating email platforms with monitoring, logging, and AlOps tooling • Prior experience mentoring senior or mid-level engineers