Cloud Infrastructure Architect (Azure)

Job Description

Job Description

Place of Performance:

This is a hybrid position. The candidate will work both remotely and on-site in Washington, DC. Travel is required to attend in-person meetings, including those in classified environments.

Overview:

NITS is seeking a qualified and motivated Cloud Infrastructure Architect (Azure) to support our client, a U.S. government agency, in the modernization and secure deployment of cloud-based infrastructure for enterprise DevSecOps operations. The ideal candidate will be responsible for designing and implementing robust, secure, and scalable Azure Government cloud environments, supporting continuous integration and delivery pipelines in compliance with federal security standards.

This role requires strong expertise in Azure DevOps, Infrastructure as Code (IaC), and federal IT compliance frameworks such as FedRAMP, FISMA, and NIST 800-series guidelines.

Minimum Qualifications:

Education:

• Bachelor’s degree in Computer Science or related field (Master’s preferred or equivalent professional experience)

• Strong communication, leadership, and organizational skills

• Experience with secure software development lifecycles

• Must possess an active Secret clearance

Experience:

• 10+ years of relevant IT/cloud engineering experience

• 5+ years working with Federal or State government agencies

• Experience designing and supporting enterprise CI/CD pipelines and secure cloud environments

• Proven ability to work independently and as part of a hybrid remote/on-site team

Key Responsibilities:

• Design and manage CI/CD pipelines using Azure DevOps, GitLab, or similar for both Azure Government and commercial cloud environments

• Implement Infrastructure as Code using Terraform, ARM templates, or Bicep for consistent, automated provisioning

• Maintain secure environments in compliance with FedRAMP, FISMA, and other federal security requirements

• Integrate security scanning tools into automated workflows (SAST, DAST, container scanning)

• Manage Azure Key Vault, secret rotation, and identity access controls with Azure Active Directory

• Oversee deployments across classified and unclassified environments with zero-downtime strategies (e.g., blue-green, canary releases)

• Collaborate with development and security teams to optimize pipeline performance and ensure ATO readiness

• Lead technical decision-making on architecture updates, cloud optimization, and deployment strategy

Required Skills and Expertise:

• Expert in Azure DevOps or GitLab, Azure Cloud, and cloud-native CI/CD pipeline architecture

• Strong understanding of government cloud security frameworks: FedRAMP, FISMA, NIST 800-53, and DISA STIGs

• Proficiency with Terraform, ARM/Bicep, and scripting for automated infrastructure provisioning, or other IaC tools.

• Hands-on experience with security tools and testing frameworks integrated into DevSecOps pipelines

• Familiarity with container orchestration (e.g., Kubernetes, AKS) and modern deployment strategies

• Background in secure credential handling using Azure Key Vault and identity management best practices

• Excellent documentation skills for creating technical guidance, runbooks, and compliance reporting