Position Title: Cloud Architect – AWS / Azure Government
Location: Remote (U.S.) with Occasional Travel
Client: Federal / Public Sector Programs
Work Authorization: Candidates must be authorized to work in the United States. U.S. Citizenship may be required based on client assignment.
Application Email: careers@wintrio.com
📩 To apply, please submit your resume to careers@wintrio.com or complete the application form below.
Job Summary
WINTrio LLC is seeking an experienced Cloud Architect to design, implement, and oversee secure, scalable cloud solutions supporting Federal agencies and mission-critical programs.
This role is responsible for enterprise cloud strategy, cloud migration, infrastructure modernization, and secure architecture across AWS GovCloud, Microsoft Azure Government, and hybrid environments. The successful candidate will lead the design of cloud-native solutions while ensuring compliance with Federal security requirements, including NIST Risk Management Framework (RMF), FedRAMP, FISMA, and Zero Trust Architecture principles.
The ideal candidate will possess extensive experience designing enterprise cloud architectures, integrating DevSecOps pipelines, implementing Infrastructure as Code (IaC), and supporting large-scale Federal cloud modernization initiatives.
Job Responsibilities
- Design enterprise cloud architectures across AWS GovCloud, Microsoft Azure Government, and hybrid cloud environments.
- Develop cloud migration strategies, including rehost, replatform, refactor, and cloud-native transformation approaches.
- Design secure cloud architectures aligned with NIST RMF, FedRAMP, FISMA, Zero Trust Architecture, and agency-specific security requirements.
- Develop reference architectures for compute, storage, networking, identity, security, and enterprise data platforms.
- Architect scalable microservices, API gateways, event-driven systems, and distributed cloud applications.
- Define and implement Infrastructure as Code (IaC) strategies using Terraform, CloudFormation, ARM Templates, or Bicep.
- Integrate DevSecOps practices, including CI/CD pipelines, automated testing, security scanning, and deployment automation.
- Design cloud networking architectures incorporating VPCs, VNets, routing, load balancing, segmentation, and secure connectivity.
- Implement identity and access management solutions using IAM, Microsoft Entra ID (Azure AD), RBAC, ABAC, federation, and PIV/CAC integration.
- Support Authority to Operate (ATO) activities, cloud authorization packages, control inheritance, and security documentation.
- Collaborate with cybersecurity, DevOps, application development, data engineering, and infrastructure teams to ensure end-to-end solution integration.
- Provide technical leadership on cloud modernization strategies, architecture standards, and emerging cloud technologies.
Required Qualifications
- Bachelor’s degree in Computer Science, Information Technology, Engineering, Information Systems, or a related field.
- Minimum ten (10) years of experience in cloud architecture, enterprise infrastructure, or large-scale technology environments.
- Strong experience designing and implementing enterprise solutions using AWS, Microsoft Azure, or hybrid cloud environments.
- Experience supporting Federal, regulated, or mission-critical environments with security and compliance requirements.
- Strong understanding of cloud security, networking, identity management, enterprise application architecture, and distributed systems.
- Experience designing highly available, scalable, and resilient cloud-native solutions.
- Strong written and verbal communication skills.
- Strong analytical, leadership, and problem-solving abilities.
- Ability to communicate complex technical concepts to both technical teams and executive stakeholders.
Technical Areas
Cloud Architecture
- AWS GovCloud
- Microsoft Azure Government
- Hybrid Cloud Architecture
- Cloud Migration
- Cloud Modernization
- Multi-Cloud Strategy
- Enterprise Cloud Design
Compute & Storage
- Amazon EC2
- Azure Virtual Machines
- Amazon S3
- Amazon EBS
- Azure Blob Storage
- Azure Files
Cloud Networking
- Amazon VPC
- Azure Virtual Network (VNet)
- Subnets
- Load Balancers
- Application Gateways
- DNS
- Private Endpoints
- VPN Connectivity
- Network Segmentation
Identity & Access Management
- AWS IAM
- Microsoft Entra ID (Azure AD)
- Role-Based Access Control (RBAC)
- Attribute-Based Access Control (ABAC)
- Single Sign-On (SSO)
- Federated Identity
- PIV/CAC Integration
DevSecOps & Automation
- CI/CD Pipelines
- Infrastructure as Code (IaC)
- Automated Testing
- Deployment Automation
- Secure Software Delivery
Enterprise Architecture
- Microservices
- REST APIs
- Service Mesh
- Event-Driven Architecture
- Secure Data Exchange
Tools & Platforms
Cloud Platforms
- AWS GovCloud
- Microsoft Azure Government
Infrastructure as Code
- Terraform
- AWS CloudFormation
- ARM Templates
- Bicep
DevSecOps Platforms
- Jenkins
- GitLab CI/CD
- GitHub Actions
- Azure DevOps
Container Platforms
- Docker
- Kubernetes
- Amazon EKS
- Azure AKS
- OpenShift
Monitoring & Observability
- Amazon CloudWatch
- Azure Monitor
- Prometheus
- Grafana
- ELK Stack
Security & Compliance
- NIST RMF
- FedRAMP
- FISMA
- STIGs
- CIS Benchmarks
- Encryption
- Key Management
Data Platforms
- Amazon RDS
- Azure SQL
- PostgreSQL
- Snowflake
Preferred Certifications
- AWS Certified Solutions Architect (Associate or Professional)
- Microsoft Azure Solutions Architect Expert
- AWS Certified DevOps Engineer
- Microsoft Azure DevOps Engineer Expert
- Certified Cloud Security Professional (CCSP)
- Certified Information Systems Security Professional (CISSP)
- TOGAF
- SABSA
- SAFe Agilist
Preferred Qualifications
- Experience supporting USDA, DHS, IRS, DoD, or other Federal agencies.
- Experience supporting cloud ATO packages, FedRAMP-authorized environments, or compliance-driven cloud deployments.
- Experience implementing Zero Trust Architecture within cloud environments.
- Experience leading enterprise cloud modernization and migration initiatives.
- Experience supporting large-scale hybrid cloud environments and multi-cloud strategies.
Work Environment
- Full-time position.
- Remote within the United States.
- Standard business hours Monday through Friday.
- Occasional travel may be required in support of customer meetings, architecture reviews, cloud assessments, and program activities.
WINTrio Benefits
- Healthcare (Medical, Dental, and Vision)
- Flexible Spending Account (FSA) and Health Savings Account (HSA)
- 401(k) and Retirement Savings Plan
- Annual Bonus and Profit Sharing Opportunities
- Paid Time Off (PTO) and Vacation
- Employee Assistance Program (EAP)
- Life, Personal, and Voluntary Disability Insurance
Growth Opportunities
There is ample opportunity to grow in multiple dimensions, including cloud architecture, cloud security, Zero Trust Architecture, DevSecOps, infrastructure modernization, enterprise architecture, Artificial Intelligence (AI), Machine Learning (ML), and business development. We are a completely employee-driven company, and our continued success is built on the talent, dedication, and innovation of our team members.
Equal Opportunity Employer
WINTrio LLC is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.