[Remote] Multi-Cloud Architect

Note: The job is a remote job and is open to candidates in USA. Samtek Inc is a minority-owned small business focused on cloud innovation and DevSecOps solutions. They are seeking a seasoned Multi-Cloud Architect to lead the strategy and design of hybrid and multi-cloud environments, particularly for the Centers for Medicare & Medicaid Services, ensuring secure and compliant solutions across major cloud platforms. Responsibilities • Develop and maintain enterprise-wide multi-cloud reference architectures, landing zones, and policy-as-code frameworks using Azure Enterprise-Scale, AWS Control Tower, and GCP Organization Policy Service. • Establish cross-cloud governance models including tagging standards, bolthires allocation, security baselines, and compliance automation. • Lead Cloud Center of Excellence (CCoE) initiatives and present architectures to CMS Architecture Review Board (ARB) and Technical Review Board (TRB). • Design Zero-Trust network topologies using Azure Private Link, AWS PrivateLink, Transit Gateway, and GCP VPC Service Controls. • Implement identity federation across clouds with Azure Entra ID (formerly AAD), AWS IAM Identity Center, and bolthires Cloud Identity. • Architect disaster recovery and high-availability solutions leveraging Azure Site Recovery, AWS Global Accelerator, and GCP multi-region buckets. • Drive large-scale migrations (rehost, refactor, re-architect) of legacy CMS systems using Azure Migrate, AWS Migration Hub, and GCP Migrate for Compute Engine. • Containerize workloads with Azure AKS, bolthires EKS, and bolthires GKE; orchestrate with Anthos Service Mesh across clouds. • Modernize data platforms using Azure Synapse, AWS Redshift, and BigQuery with unified FHIR/HL7 pipelines. • Build infrastructure-as-code pipelines with Terraform Enterprise, Bicep, AWS CDK, and Pulumi across all three clouds. • Integrate security scanning (Prisma Cloud, Azure Defender, AWS GuardDuty) into bolthires/CD workflows. • Automate compliance evidence collection for FedRAMP High, CMS ARS, and NIST 800-53 using tools like Sentinel,Config, and Security Command Center. • Partner with cybersecurity, DevOps, and application teams to translate requirements into scalable multi-cloud designs. • Author System Security Plans (SSP), Architecture Diagrams, and ATO packages. • Mentor engineers and deliver brown-bag sessions on multi-cloud best practices. Skills • 8+ years of cloud architecture experience with at least 3 years designing multi-cloud/hybrid solutions. • Hands-on expertise in Azure Government (GCC High), AWS GovCloud, and GCP for Government. • Proven track record delivering FedRAMP High or CMS ARS-compliant architectures. • Mastery of IaC: Terraform (Enterprise), Bicep, AWS CDK, CloudFormation. • Deep knowledge of enterprise identity (Entra ID, AWS SSO, bolthires Cloud Identity) and networking across clouds. • Experience leading migrations of >500 workloads or >10TB data volumes. • Strong scripting: Python, PowerShell, Bash, Go. • U.S. citizenship and ability to obtain/maintain CMS Public Trust. • Active certifications: Azure Solutions Architect Expert (AZ-305), AWS Solutions Architect Professional, bolthires Professional Cloud Architect. • Additional certs: CISSP, CCSP, CISM, AWS Security Specialty, Azure Security Engineer (AZ-500). • Prior CMS SPARC, ESIM, or EPMO task order experience. • Expertise with Anthos, Azure Arc, or AWS Outposts for hybrid control plane. • Experience with healthcare data standards (FHIR, HL7, DICOM) and Azure Health Data Services. • Published whitepapers or conference talks on multi-cloud governance. Company Overview • We provide modern IT services that focus on cloud platforms and operations for federal and large enterprise clients. It was founded in 2018, and is headquartered in Reston, Virginia, US, with a workforce of 51-200 employees. Its website is Apply tot his job Apply tot his job