Senior Cloud Engineer/Architect (AZURE)

GES Digital Modernization is seeking an experienced Senior Cloud Engineer Architect (Azure) to support large-scale migration and operations on a large, high-profile DOD contract. The I3TS program provides enterprise-wide IT support to enable DTRA’s Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA’s internal and external mission partners operating in CONUS and OCONUS locations. The Senior Cloud Engineer/Architect (Azure) supports design of a new, modernized updated and upgraded capabilities for DTRA. This role will be responsible for tech requirement definition, feasibility studies, pilot projects and implementations plans, as well as diagnosing and troubleshooting outages, monitoring networks, infrastructure and systems, and proving proactive mitigation strategies. This role is part of a highly skilled technical team responsible for designing and deploying secure, scalable, and compliant hybrid- and multi-cloud architectures that enable mission success across complex defense environments. The ideal candidate has deep expertise in Microsoft Azure architecture, identity and access management (IAM), Microsoft Entra ID (formerly Azure Active Directory), and cross-cloud interoperability. The selected candidate will design and implement Zero Trust-aligned, IL4/IL5-accredited solutions integrating Azure, AWS, and on-premises systems in accordance with DoD cybersecurity requirements. Primary Responsibilities: • Design, implement, and secure Azure-based cloud architectures in alignment with DoD mission objectives and cybersecurity standards. • Lead configuration, deployment, and management of Microsoft Entra ID / Azure AD for centralized identity, single sign-on (SSO), and role-based access control (RBAC) across Azure tenants and subscriptions. • Integrate federated identity solutions with AWS Identity Center, Okta, or on-premises Active Directory. • Develop and enforce Azure governance frameworks, including Azure Policy, Management Groups, and Blueprints, ensuring alignment with DoD Zero Trust and least-privilege principles. • Architect and secure hybrid connectivity across Azure, AWS, and DoD on-premises networks, ensuring consistent identity and access management across clouds. • Collaborate with cybersecurity teams to ensure solutions comply with DISA STIGs, DoD Cloud Computing SRG, FedRAMP High, and NIST 800-53 controls. • Implement and manage Infrastructure as Code (IaC) solutions using Bicep, Terraform, or Azure Resource Manager (ARM) templates. • Active Microsoft Certified: Azure Solutions Architect Expert certification (or equivalent). • Active DoD Top Secret clearance with SCI Eligibility. • DoD 8570 IAT Level II certification. • BS degree and 12+ years of prior relevant experience or a Masters degree with 10+ years of prior relevant experience, additional years of experience may be considered in lieu of a degree. • 5+ years of experience designing and implementing secure Azure-based solutions in enterprise or government environments. • Proven expertise in Microsoft Entra ID / Azure AD, Azure RBAC, and Conditional Access. • Experience with multi-cloud identity integration (Azure + AWS or GCP). • Strong understanding of federated identity, SAML/OIDC protocols, and cross-cloud authentication mechanisms. • Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks. • Hands-on experience with Terraform, Bicep, Azure CLI, and CI/CD automation. • Excellent written and verbal communication skills with the ability to brief technical concepts to leadership and stakeholders. • Must be able to work as part of a team to troubleshoot and resolve complex issues. • Excellent written and verbal communication skills.This shall include drafting SOPs and technical documentation as well as communication with senior program and customer leadership. • Must be able to present designs and plans to technical leadership personnel and boards for approvals. Required Qualifications: • Active Microsoft Certified: Azure Solutions Architect Expert certification (or equivalent). • Active DoD Top Secret clearance with SCI Eligibility. • DoD 8570 IAT Level II certification. • BS degree and 12+ years of prior relevant experience or aMastersdegree with 10+ years of prior relevant experience,additionalyears of experience may be considered in lieu of a degree. • 5+ years of experience designing and implementing secure Azure-based solutions in enterprise or government environments. • Provenexpertisein Microsoft Entra ID / Azure AD, Azure RBAC, and Conditional Access. • Experience with multi-cloud identity integration (Azure + AWS or GCP). • Strong understanding of federated identity, SAML/OIDC protocols, and cross-cloud authentication mechanisms. • Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks. • Hands-on experience with Terraform, Bicep, Azure CLI, and CI/CD automation. • Excellent written and verbal communication skills with the ability to brief technical concepts to leadership and stakeholders. • Must be able to work as part of a team to troubleshoot and resolve complex issues. • Excellent written and verbal communication skills.This shall include drafting SOPs and technical documentation as well as communication with senior program and customer leadership. • Must be able to present designs and plans to technical leadership personnel and boards forapprovals. Desired Qualifications: • Experience implementing Zero Trust Architecture (ZTA) within DoD or federal environments. • Deep familiarity with Azure Government, Azure Lighthouse, and Azure Arc for multi-tenant management. • Experience with Kubernetes (AKS) and container security in classified or restricted networks. • Advanced certifications such as CISSP, CCSP, or Microsoft Cybersecurity Architect Expert. • Prior experience supporting DoD mission systems or Intelligence Community (IC) programs. • Experience providing technical leadership and oversight of teams of junior, intermediate, and senior Engineers. Apply tot his job