Security & Network Focused Cloud Architect (Hybrid Infrastructure Expert)

We are seeking an experienced Cloud Architect with a strong background in Network Security, Hybrid Connectivity, and Cloud Infrastructure Design. The ideal candidate combines hands-on network engineering experience (Cisco, Palo Alto, F5, Fortinet) with multi-cloud architecture skills (Huawei Cloud, Google Cloud, Azure, AWS) to design, secure, and optimize enterprise-grade infrastructures. This role bridges on-prem and cloud, ensuring secure, high-performance, and resilient environments across all layers — network, security, compute, and application.

Requirements

• 5+ years of experience in Cloud Architecture, Network Security, or Hybrid Infrastructure roles.
• Strong practical experience with switching, routing, and firewall configuration (Cisco IOS/ASA, Palo Alto PAN-OS, FortiGate).
• Deep knowledge of networking fundamentals (VLAN, BGP, OSPF, NAT, IPSec, SSL VPN).
• Hands-on experience with load balancer and WAF solutions (F5 BIG-IP, Citrix ADC, Cloud-native ALB/NLB).
• Proven experience in cloud migration and hybrid interconnect design (VPN, Direct Connect, Cloud Connect).
• Solid understanding of cloud networking and security models (VPC, IAM, SG/NACL, Private Link, encryption).
• Advanced Linux administration and network troubleshooting experience.
• Disaster Recovery planning and design experience — data replication, RTO/RPO strategy definition.
• Strong experience with Kubernetes, container orchestration, and infrastructure as code (Terraform, Ansible).
• Familiarity with monitoring and logging (Cloud Eye, ELK, Prometheus, Grafana).
• Fluent in English; excellent communication and documentation skill.

Key Responsibilities

• Design and implement secure hybrid cloud architectures integrating on-prem infrastructure with cloud environments (Huawei Cloud, Google Cloud, Azure, AWS).
• Define network topologies including VPCs, subnets, route tables, peering, NAT, and load balancer configurations.
• Lead migration and interconnect setups, including VPN, Direct Connect, Cloud Connect, and SD-WAN architectures.
• Design and implement Disaster Recovery (DR) strategies — replication, failover, and business continuity across multi-region/multi-cloud deployments.
• Hands-on configuration and troubleshooting of LAN/WAN networks, switches, routers, and firewalls (Cisco, Palo Alto, Fortinet, F5).
• Deploy and manage firewall rules, NAT, ACLs, and traffic segmentation (Zero Trust, micro-segmentation).
• Configure and operate load balancers (F5, NLB, ALB) and Web Application Firewalls (WAF) to ensure application security and performance.
• Implement VPNs (IPSec, SSL) and inter-cloud connectivity with high availability and encryption.
• Integrate on-prem security layers with cloud-native solutions such as Cloud Firewall, IAM, and KMS.
• Secure Kubernetes clusters — manage NetworkPolicies, PodSecurity, RBAC, and Service Mesh (Istio/Linkerd).
• Implement DevSecOps practices — CI/CD pipeline hardening, vulnerability scanning, and IaC security validation.
• Manage database security — encryption, access control, backup strategy, and DR configuration.

Certifications (Preferred / Advantage)

• Cloud Architect Certifications: Huawei Cloud Architect, Google Professional Cloud Architect, Azure Solutions Architect Expert, AWS Solutions Architect.
• Network & Security Certifications: CCNP, Palo Alto PCNSE, Fortinet NSE4+, F5 Certified Administrator/Professional, CCSP, CISSP, or equivalent.
• Kubernetes Certifications: CKA, CKAD, CKS.
• Other Advantageous Certifications: ITIL, ISO 27001 Lead Implementer, CompTIA Security+, DevSecOps Foundation.

Preferred Qualifications

• Hands-on experience designing and deploying multi-cloud or hybrid solutions integrating private data centers with public clouds.
• Experience implementing Zero Trust network architecture and micro-segmentation in hybrid environments.
• Proven ability to lead migrations, handle network transformations, and collaborate with both infrastructure and application teams.
• Strong understanding of DR drills, backup orchestration, and HA architecture patterns.
• Exposure to SOC, SIEM, and log correlation (Splunk, QRadar, Cloud-native log platforms).

Why Join Us?

Lead strategic security-driven cloud transformation projects for top enterprises. Be at the intersection of networking, security, and cloud architecture, designing next-generation hybrid infrastructures. Collaborate with experts across multi-cloud environments and global teams. Shape how enterprises achieve secure, compliant, and high-performing cloud adoption.