Cloud Platform & Security Lead

Virginia Tech Foundation

Blacksburg, VA, USA

Published: 6/14/2022

Technology

Full Time

Job Description

Virginia Tech Foundation, Inc. (VTF) is a nonstock corporation established in 1948 for the sole purpose of managing the endowment and real estate portfolio of Virginia Tech, now valued at $3.0 billion. VTF exists and operates as a separate, independent entity with its own officers and governing board – managing, investing, and distributing private resources to advance Virginia Tech’s mission and its strategic priorities.

Position Summary:

The Cloud Platform & Security Lead is responsible for the architecture, security, governance, and oversight of the organization’s enterprise cloud ecosystem. While day-to-day Microsoft platform administration is delivered through a managed services provider, this role retains full ownership of platform design, security controls, governance standards, and vendor management. Reporting to the Director of IT, this position serves as the internal authority for cloud architecture and security strategy across Microsoft 365, Azure, and additional SaaS applications. The role combines architectural leadership, security governance, and vendor management.

Role & Responsibilities:

Cloud Architecture & Design:

Own the architectural design of Microsoft 365, Azure, and collaboration platforms
Define and enforce enterprise cloud standards, configuration baselines, and governance frameworks
Ensure cohesive identity, access, and integration architecture across all cloud services
Lead evaluation and onboarding of new SaaS solutions

Security & Governance:

Manage enterprise identity and access strategy (Entra ID, SSO, Conditional Access)
Define and enforce Zero Trust principles across all cloud platforms
Lead data governance initiatives including sensitivity labels, DLP, retention, and compliance controls (CIS IG2)
Oversee cloud security posture, monitoring standards, and incident response coordination
Ensure security consistency across Microsoft and non-Microsoft SaaS platforms

Vendor & Service Oversight:

Serve as the primary technical authority over managed service providers
Review vendor performance, SLAs, and adherence to architectural and security standards
Ensure outsourced administration aligns with enterprise design and risk posture

Leadership:

Provide escalation support for complex security and platform issues
Establish operational standards and governance workflows
Drive automation, documentation, and continuous improvement initiatives

Strategic Enablement:

Develop and maintain the cloud roadmap aligned with business objectives
Partner with leadership on risk management and compliance strategy
Identify opportunities to enhance efficiency, insight, and secure collaboration

Qualifications:

Bachelor’s degree in Computer Science, Information Technology, or related field, or Associate’s degree and equivalent experience.
6+ years of experience in cloud architecture, Microsoft 365, Azure, and enterprise security.
Strong understanding of cloud security principles, best practices, and industry standards.
Experience leading technical teams in a player–coach capacity.
Effective communication skills, with the ability to articulate complex technical concepts to stakeholders
Excellent strategic thinking and interpersonal skills.
Beneficial to have security certification such as SANS GIAC, CISSP, etc.
Beneficial to have Microsoft certifications such as MCSE, MCSA, MCP, etc.

Physical Requirements:

Light lifting (<20 lbs.)

Standing

Sitting

Bending

Moderate lifting (20-50 lbs.)

Lifting

Walking

Climbing

Heavy lifting (>50 lbs.)

Reaching

Repetitive motion

Pushing/pulling

Other, specify: