Senior Cloud Platform Architect

Role Purpose

Lead the design, engineering, and evolution of secure, scalable, cost‑efficient cloud platforms for enterprise and government clients. The role combines architectural leadership with hands‑on engineering, creating golden paths, guardrails, and reusable assets. Operate as “first‑among‑equals” within a collaborative, engineering‑centric organization.

Work location: remote or Office in Warsaw

Collaboration model: B2B

Compensation : 22,000 – 30,000 PLN net + VAT

Business travel: occasional (within Poland)

Working hours: 8 hours, between 8:00–18:00

Benefits: MultiSport card, Allianz medical care, 5,000 PLN annual learning & development budget

About us

We are a leading IT integrator with 21 years of experience in infrastructure, cybersecurity, cloud, and business applications. Our team has been recognized with 4× Microsoft Partner of the Year, Country Partner of the Year, and holds 4 Microsoft Advanced Specializations. We work with enterprise and public‑sector clients, building modern, secure, and scalable cloud environments.

Key Responsibilities

Platform Architecture & Governance

·        Design Azure Landing Zones aligned with the Cloud Adoption Framework.

·        Define adaptable architectures across IaaS, PaaS, SaaS.

·        Apply client‑specific data residency (primarily EU), sovereignty, segmentation, and administrative boundary controls.

Networking & Connectivity

·        Architect hub‑and‑spoke or mesh topologies: VNet peering, Private DNS, Private Endpoints/Links, ExpressRoute, VPN, Azure Firewall, WAF, Application Gateway, Front Door, Bastion.

·        Ensure secure hybrid connectivity and multi‑environment isolation.

Security & Compliance

·        Implement Zero Trust: Entra ID, Privileged Identity Management, Conditional Access, identity lifecycle, and Key Vault.

·        Align with ISO 27001, NIST, CIS, GDPR, SOC 2, and client‑specific frameworks.

·        Embed IaC validation, container governance, and continuous security scanning in CI/CD.

Compute, Containers & Hosting

·        Provide paved‑road patterns for AKS, VM Scale Sets, Functions, App Service, Container Apps.

·        Implement blue‑green, canary, and staged rollout strategies.

Data, AI & MLOps

·        Architect secure Azure Machine Learning platforms (workspaces, compute, AKS, networking).

·        Support Notebook/Jobs‑based workflows, model registry, promotion, and monitoring.

·        Integrate Azure OpenAI, Cognitive Services, Azure AI Search; prepare for Azure AI Foundry.

Observability & Reliability

·        Standardize monitoring with Azure Monitor, Log Analytics, Application Insights, DCR/DCE.

·        Define SLOs/SLIs and reliability patterns; support incident management and disaster recovery.

FinOps & Optimization

·        Drive tagging strategy, budgets, alerts, dashboards, and client‑aligned optimization.

·        Lead initiatives around reserved instances, savings plans, rightsizing, and consumption control.

Engineering & Enablement

·        Build reusable Terraform modules and Bicep templates with quality gates.

·        Implement CI/CD pipelines in Azure DevOps and GitHub Actions; support Jenkins/on‑prem pipelines when required.

·        Provide an internal developer platform with templates, references, and self‑service; integrate with portals (ServiceNow, Jira).

Change Management

·        Apply trunk‑based or GitFlow, branching strategies, pull‑request workflows, and environment promotion rules.

·        Ensure consistent, traceable release validation across environments.

Required Qualifications

·        Extensive experience delivering Azure platforms at enterprise scale across multiple subscriptions and regions.

·        Broad familiarity with Azure services across compute, networking, security, identity, data, and AI.

·        Hands‑on mastery of Terraform, Bicep/ARM, Azure Policy, Azure DevOps, GitHub Actions, PowerShell, Bash.

·        Practical application of DevOps, MLOps, and FinOps in regulated environments.

·        Strong communication and stakeholder management skills.

·        Strong command of English (minimum B2) and fluent Polish (C1).

Nice to Have

·        Multi‑cloud exposure (especially AWS).

·        Experience with Microsoft Sentinel or other SIEM/SOAR tools.

·        Knowledge of data platform components (Azure SQL, Managed Instance, Storage, Event Hubs, Service Bus, Synapse, Data Factory, Databricks).

·        Relevant certifications (architecture, cloud, security, DevOps, MLOps, FinOps).