WINTrio career opportunity

Career Opportunity

Cloud Architect – AWS / Azure Government

Remote / Hybrid · Full Time

Position Title: Cloud Architect – AWS / Azure Government 
Location: Remote (U.S.) with Occasional Travel 
Client: Federal / Public Sector Programs 
Work Authorization: Candidates must be authorized to work in the United States. U.S. Citizenship may be required based on client assignment. 
Application Email: careers@wintrio.com 

📩 To apply, please submit your resume to careers@wintrio.com or complete the application form below. 

Job Summary 

WINTrio LLC is seeking an experienced Cloud Architect to design, implement, and oversee secure, scalable cloud solutions supporting Federal agencies and mission-critical programs. 

This role is responsible for enterprise cloud strategy, cloud migration, infrastructure modernization, and secure architecture across AWS GovCloud, Microsoft Azure Government, and hybrid environments. The successful candidate will lead the design of cloud-native solutions while ensuring compliance with Federal security requirements, including NIST Risk Management Framework (RMF), FedRAMP, FISMA, and Zero Trust Architecture principles. 

The ideal candidate will possess extensive experience designing enterprise cloud architectures, integrating DevSecOps pipelines, implementing Infrastructure as Code (IaC), and supporting large-scale Federal cloud modernization initiatives. 

Job Responsibilities 

  • Design enterprise cloud architectures across AWS GovCloud, Microsoft Azure Government, and hybrid cloud environments. 
  • Develop cloud migration strategies, including rehost, replatform, refactor, and cloud-native transformation approaches. 
  • Design secure cloud architectures aligned with NIST RMF, FedRAMP, FISMA, Zero Trust Architecture, and agency-specific security requirements. 
  • Develop reference architectures for compute, storage, networking, identity, security, and enterprise data platforms. 
  • Architect scalable microservices, API gateways, event-driven systems, and distributed cloud applications. 
  • Define and implement Infrastructure as Code (IaC) strategies using Terraform, CloudFormation, ARM Templates, or Bicep. 
  • Integrate DevSecOps practices, including CI/CD pipelines, automated testing, security scanning, and deployment automation. 
  • Design cloud networking architectures incorporating VPCs, VNets, routing, load balancing, segmentation, and secure connectivity. 
  • Implement identity and access management solutions using IAM, Microsoft Entra ID (Azure AD), RBAC, ABAC, federation, and PIV/CAC integration. 
  • Support Authority to Operate (ATO) activities, cloud authorization packages, control inheritance, and security documentation. 
  • Collaborate with cybersecurity, DevOps, application development, data engineering, and infrastructure teams to ensure end-to-end solution integration. 
  • Provide technical leadership on cloud modernization strategies, architecture standards, and emerging cloud technologies. 

Required Qualifications 

  • Bachelor’s degree in Computer Science, Information Technology, Engineering, Information Systems, or a related field. 
  • Minimum ten (10) years of experience in cloud architecture, enterprise infrastructure, or large-scale technology environments. 
  • Strong experience designing and implementing enterprise solutions using AWS, Microsoft Azure, or hybrid cloud environments. 
  • Experience supporting Federal, regulated, or mission-critical environments with security and compliance requirements. 
  • Strong understanding of cloud security, networking, identity management, enterprise application architecture, and distributed systems. 
  • Experience designing highly available, scalable, and resilient cloud-native solutions. 
  • Strong written and verbal communication skills. 
  • Strong analytical, leadership, and problem-solving abilities. 
  • Ability to communicate complex technical concepts to both technical teams and executive stakeholders. 

Technical Areas 

Cloud Architecture 

  • AWS GovCloud 
  • Microsoft Azure Government 
  • Hybrid Cloud Architecture 
  • Cloud Migration 
  • Cloud Modernization 
  • Multi-Cloud Strategy 
  • Enterprise Cloud Design 

Compute & Storage 

  • Amazon EC2 
  • Azure Virtual Machines 
  • Amazon S3 
  • Amazon EBS 
  • Azure Blob Storage 
  • Azure Files 

Cloud Networking 

  • Amazon VPC 
  • Azure Virtual Network (VNet) 
  • Subnets 
  • Load Balancers 
  • Application Gateways 
  • DNS 
  • Private Endpoints 
  • VPN Connectivity 
  • Network Segmentation 

Identity & Access Management 

  • AWS IAM 
  • Microsoft Entra ID (Azure AD) 
  • Role-Based Access Control (RBAC) 
  • Attribute-Based Access Control (ABAC) 
  • Single Sign-On (SSO) 
  • Federated Identity 
  • PIV/CAC Integration 

DevSecOps & Automation 

  • CI/CD Pipelines 
  • Infrastructure as Code (IaC) 
  • Automated Testing 
  • Deployment Automation 
  • Secure Software Delivery 

Enterprise Architecture 

  • Microservices 
  • REST APIs 
  • Service Mesh 
  • Event-Driven Architecture 
  • Secure Data Exchange 

Tools & Platforms 

Cloud Platforms 

  • AWS GovCloud 
  • Microsoft Azure Government 

Infrastructure as Code 

  • Terraform 
  • AWS CloudFormation 
  • ARM Templates 
  • Bicep 

DevSecOps Platforms 

  • Jenkins 
  • GitLab CI/CD 
  • GitHub Actions 
  • Azure DevOps 

Container Platforms 

  • Docker 
  • Kubernetes 
  • Amazon EKS 
  • Azure AKS 
  • OpenShift 

Monitoring & Observability 

  • Amazon CloudWatch 
  • Azure Monitor 
  • Prometheus 
  • Grafana 
  • ELK Stack 

Security & Compliance 

  • NIST RMF 
  • FedRAMP 
  • FISMA 
  • STIGs 
  • CIS Benchmarks 
  • Encryption 
  • Key Management 

Data Platforms 

  • Amazon RDS 
  • Azure SQL 
  • PostgreSQL 
  • Snowflake 

Preferred Certifications 

  • AWS Certified Solutions Architect (Associate or Professional) 
  • Microsoft Azure Solutions Architect Expert 
  • AWS Certified DevOps Engineer 
  • Microsoft Azure DevOps Engineer Expert 
  • Certified Cloud Security Professional (CCSP) 
  • Certified Information Systems Security Professional (CISSP) 
  • TOGAF 
  • SABSA 
  • SAFe Agilist 

Preferred Qualifications 

  • Experience supporting USDA, DHS, IRS, DoD, or other Federal agencies. 
  • Experience supporting cloud ATO packages, FedRAMP-authorized environments, or compliance-driven cloud deployments. 
  • Experience implementing Zero Trust Architecture within cloud environments. 
  • Experience leading enterprise cloud modernization and migration initiatives. 
  • Experience supporting large-scale hybrid cloud environments and multi-cloud strategies. 

Work Environment 

  • Full-time position. 
  • Remote within the United States. 
  • Standard business hours Monday through Friday. 
  • Occasional travel may be required in support of customer meetings, architecture reviews, cloud assessments, and program activities. 

WINTrio Benefits 

  • Healthcare (Medical, Dental, and Vision) 
  • Flexible Spending Account (FSA) and Health Savings Account (HSA) 
  • 401(k) and Retirement Savings Plan 
  • Annual Bonus and Profit Sharing Opportunities 
  • Paid Time Off (PTO) and Vacation 
  • Employee Assistance Program (EAP) 
  • Life, Personal, and Voluntary Disability Insurance 

Growth Opportunities 

There is ample opportunity to grow in multiple dimensions, including cloud architecture, cloud security, Zero Trust Architecture, DevSecOps, infrastructure modernization, enterprise architecture, Artificial Intelligence (AI), Machine Learning (ML), and business development. We are a completely employee-driven company, and our continued success is built on the talent, dedication, and innovation of our team members. 

Equal Opportunity Employer 

WINTrio LLC is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, age, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law. 

Contract Vehicles & Certifications

Trusted credentials for federal delivery

Certifications and contract access that support secure, compliant, mission-ready modernization.