Network Architect

We are seeking a Network Architect to design, secure, and govern Azure network architectures for both HIPAA-regulated and non-regulated cloud environments, ensuring secure connectivity, compliance, high availability, and scalability for enterprise workloads across hybrid and multi-subscription deployments.

Responsibilities

• Design and maintain Azure network architectures for regulated and non-regulated workloads
• Define and enforce network security controls aligned with HIPAA, NIST, and internal security policies
• Architect hub-and-spoke and landing zone network models across subscriptions and tenants
• Implement and manage secure hybrid connectivity (VPN, ExpressRoute) to on-premises and partner networks
• Ensure network isolation between regulated and non-regulated workloads
• Support zero-trust networking principles and traffic inspection strategies
• Define DNS architecture including Azure DNS, Private DNS Zones, and hybrid DNS
• Provide network guidance for Kubernetes (AKS), PaaS, and SaaS integrations
• Partner with Security, Compliance, DevOps, and Application teams to ensure secure delivery
• Produce architecture diagrams, standards, and runbooks

Requirements

• 7+ years in network engineering or architecture
• 4+ years designing Azure network solutions
• Deep knowledge of Azure networking services, Azure Virtual Networks (VNets), subnets, route tables
• Background in HIPAA or other regulated environments
• Strong understanding of network segmentation and data-in-transit security
• Expertise in Azure Firewall, NSGs, ASGs, Application Gateway, Load Balancer, Front Door
• Knowledge of Private Endpoints and Service Endpoints
• Familiarity with Infrastructure-as-Code (Bicep, Terraform), TCP/IP, routing, firewalls, load balancing
• Skills in Kubernetes networking (AKS, ingress controllers)

Nice to have

• Azure certifications (AZ-700, AZ-305)
• Experience with healthcare or life sciences workloads