L3 – Azure Cloud Architect / FinOps & DevSecOps Lead

Scope Summary 

The L3 Azure Cloud Architect / FinOps & DevSecOps Lead will be responsible for enterprise cloud architecture, governance, DevSecOps strategy, reliability engineering, multi-cloud operational governance, advanced observability architecture, security governance, platform modernization, and strategic cloud financial optimization initiatives. The role includes end-to-end ownership of long-term cloud transformation programs, enterprise scalability engineering, infrastructure governance frameworks, automation initiatives, and FinOps leadership focused on continuously optimizing and sustaining infrastructure spend below the defined organizational target while ensuring platform reliability, scalability, security, and operational excellence. 

Key Scope of Work 

Enterprise Azure Architecture & Governance 

• Lead enterprise Azure architecture design, cloud landing zones, governance frameworks, subscription hierarchy, management groups, and platform standardization.  

• Define cloud governance standards, policy management, tagging governance, environment segregation, and operational governance frameworks.  

• Design highly available, scalable, secure, and resilient cloud architectures aligned with enterprise growth requirements.  

• Define enterprise HA/DR strategy, backup governance, business continuity planning, and resiliency standards.  

AKS & Cloud-Native Platform Architecture 

• Define scalable AKS architecture, Kubernetes governance standards, cluster segmentation, ingress architecture, and workload isolation strategies.  

• Lead container platform modernization, workload governance, scalability optimization, and platform resiliency initiatives.  

• Define observability-integrated AKS architecture with centralized monitoring, distributed tracing, service mesh strategy, and operational telemetry.  

• Define HPA/VPA governance, deployment architecture, resource optimization standards, and workload deployment governance.  

Enterprise Networking & Security Governance 

• Lead enterprise networking architecture covering VNET segmentation, ExpressRoute, VPN, firewall architecture, WAF governance, DNS governance, CDN integration, and secure hybrid connectivity.  

• Define secure network segmentation models, zero-trust architecture, traffic governance, and infrastructure hardening standards.  

• Lead IAM strategy, RBAC governance, privileged access governance, and enterprise security architecture initiatives.  

• Drive security standardization across Azure, GCP, AKS, CDN platforms, databases, and observability tooling.  

Strategic Cloud Cost Optimization Leadership 

• Define and execute enterprise-wide cloud optimization roadmaps targeting sustained infrastructure spend reduction below ₹50L/month.  

• Lead long-term infrastructure optimization initiatives focused on reducing cloud overhead while maintaining platform scalability and operational stability.  

• Conduct enterprise workload utilization reviews, infrastructure rationalization, modernization assessments, and optimization governance reviews.  

• Drive strategic optimization initiatives across AKS, Azure VMs, networking, databases, CDN platforms, observability tooling, storage layers, and cloud-native workloads.  

• Define cloud financial governance standards, cost allocation models, optimization governance frameworks, and infrastructure efficiency initiatives.  

FinOps Governance & Savings Strategy 

• Lead enterprise FinOps governance covering Reserved Instances, Savings Plans, Spot strategy, autoscaling optimization, compute rightsizing, and storage lifecycle optimization.  

• Define cloud utilization governance, budget forecasting, optimization governance, and proactive savings initiatives.  

• Drive optimization reviews across AKS node utilization, database workloads, observability platforms, CDN traffic optimization, and storage utilization.  

• Lead environment rationalization, idle resource cleanup initiatives, workload modernization strategy, and infrastructure consolidation programs.  

• Present savings roadmaps, optimization dashboards, infrastructure efficiency metrics, and cost governance reviews to leadership stakeholders.  

Database, CDN & Multi-Cloud Optimization Strategy 

• Define operational and optimization strategy for ScyllaDB, MongoDB, Redis, Azure SQL, HDInsight, and Azure Data Explorer environments.  

• Lead performance engineering and infrastructure optimization initiatives for distributed databases and large-scale data platforms.  

• Define JioCDN and Fastly CDN optimization strategy including cache governance, edge routing optimization, traffic management, and CDN cost optimization.  

• Lead multi-cloud governance across Azure, GCP, Firebase, BigQuery, Cloud Run, and Airflow operational environments.  

• Drive centralized governance and integrated optimization across hybrid and multi-cloud infrastructure platforms.  

Enterprise Observability, APM & Reliability Engineering 

• Define enterprise observability architecture, centralized logging strategy, monitoring governance, distributed tracing standards, and APM governance frameworks.  

• Lead CloudXP onboarding governance, telemetry standardization, alert governance, and enterprise operational visibility initiatives.  

• Define cross-platform alerting standards, escalation governance, incident visibility frameworks, and centralized operational governance models.  

• Lead reliability engineering initiatives including SLA governance, SLO definitions, RCA governance, resiliency engineering, scalability assessments, and capacity planning.  

• Drive operational excellence programs focused on reducing alert fatigue, improving observability maturity, and increasing platform reliability.  

Security Compliance, VA/PT & DevSecOps Governance 

• Lead internal/external VA/PT governance, remediation tracking, audit readiness, compliance governance, and enterprise security operations.  

• Define enterprise DevSecOps strategy covering CI/CD security governance, deployment security standards, secret management, and release governance.  

• Lead infrastructure hardening initiatives, proactive compliance remediation, and security automation programs.  

• Drive governance across Azure Defender, WAF policies, IAM controls, RBAC governance, and cloud-native security tooling.  

DevSecOps, Automation & Platform Engineering Strategy 

• Define Infrastructure as Code (IaC) standards using Terraform/Bicep and enforce enterprise deployment governance.  

• Lead CI/CD governance frameworks, deployment approvals, rollback governance, release standards, and automation architecture.  

• Drive platform engineering initiatives focused on self-healing infrastructure, operational automation, auto-remediation, and deployment standardization.  

• Define enterprise automation frameworks across infrastructure operations, observability tooling, networking, and cloud operations.  

SLA, Operational Governance & On-Call Framework 

• Define SLA governance models, severity matrices, escalation frameworks, operational response standards, and incident governance processes.  

• Define production support governance, on-call operational models, after-hours support frameworks, and critical incident management standards.  

• Lead operational governance reviews, problem management governance, and executive operational reporting.  

Executive Reporting & Stakeholder Management 

• Present optimization dashboards, FinOps reports, infrastructure governance updates, security reviews, operational metrics, and modernization initiatives to leadership teams.  

• Lead governance discussions with business stakeholders, vendors, security teams, infrastructure teams, and executive leadership groups.  

• Define strategic cloud roadmaps, modernization programs, transformation initiatives, and operational maturity frameworks.  

Cloud Transformation & Modernization Programs 

• Drive enterprise cloud modernization, infrastructure transformation, automation initiatives, observability maturity improvements, and platform optimization programs.  

• Lead strategic initiatives focused on improving scalability, governance, operational efficiency, deployment maturity, reliability, and cloud financial optimization.  

• Define enterprise operational excellence frameworks and long-term cloud transformation strategies aligned with organizational growth and scalability objectives. 



Priority 

Scope Item 

P0 

Enterprise Azure Architecture & Governance 

P0 

Strategic Cloud Cost Optimization Leadership 

P0 

FinOps Governance & Savings Strategy 

P0 

Enterprise Security Governance & DevSecOps Strategy 

P0 

AKS & Cloud-Native Platform Architecture 

P0 

Enterprise Networking & Security Architecture 

P0 

Multi-Cloud Governance & Optimization Strategy 

P1 

Enterprise Observability, APM & Reliability Engineering 

P1 

SLA, Severity Matrix & Escalation Governance 

P1 

On-Call & Operational Governance Framework 

P1 

Cloud Transformation & Modernization Programs 

P1 

Executive Reporting & Stakeholder Governance 

P1 

SRE Governance & Reliability Engineering 

P1 

FinOps KPI Governance & Optimization Dashboards 

P1 

Database, CDN & Platform Optimization Strategy 

P1 

DevSecOps, Automation & IaC Governance 

P1 

Security Compliance, VA/PT Governance & Audit Readiness 

P2 

Capacity Planning & Scalability Governance 

P2 

Operational Excellence & Platform Modernization 

P2 

Enterprise Automation & Self-Healing Strategy 

P2 

Infrastructure Standardization & Governance Improvements