Azure SME

Azure SME L2/ L3 – 5 to 10 Years - B2/B3

Key Requisites

• The Azure Subject Matter Expert (SME) will act as the primary technical authority for Microsoft Azure cloud technologies. This role is responsible for designing, implementing, optimizing, and supporting Azure-based solutions while providing expert guidance to engineering, operations, and business stakeholders.
• Expertise in Azure Tenant and Subscription and Resources Groups and other resources.

• Understanding of Azure Well‑Architected Framework (Security, Reliability, Cost, Performance, Operational Excellence)
• Hands‑on with IAM, IAM identity Center, AWS Organizations, Control Tower, Cost management, automation, and monitoring,SCPs and least‑privilege access models
• Experience with networking architectures (VNet, NGS, hub‑and‑spoke models)
• Knowledge of IAM, SCPs, Identity Center (SSO) and least‑privilege access models
• Strong exposure to FinOps and cost optimization strategies
• Experience with DevOps / IaC tools (Terraform, CloudFormation, CI/CD pipelines)
• Ability to engage with customers, security teams, and leadership stakeholders
• Strong hands‑on experience in Azure cloud architecture across multi‑account environments
•  

Key Accountabilities

• Support multi‑account, network, and platform architecture decisions
• Lead entity and account migrations from external organizations into managed Azure Tenant, including pre‑migration validation, cutover planning, and post‑migration stabilization
• Ensure CSPM onboarding, monitoring, and vulnerability remediation, including fixing security findings and coordinating with account owners for closure
• Define and enforce security guardrails, IAM policies, SCPs, and Identity Center role mappings across accounts
• Conduct and support Azure Well‑Architected Reviews, identifying risks and driving remediation actions
• Drive FinOps initiatives, including cost optimization, waste cleanup, and savings recommendations
• Architect and validate network connectivity models (hub‑and‑spoke, hybrid connectivity)
• Act as technical SPOC for architecture reviews, escalations, audits, and customer discussions
• Provide technical leadership and guidance to cloud, security, and account teams during delivery and operations
• Design deployment architecture for IaaS/SaaS/PaaS that will address our client's business needs and lead teams that will implement them for our clients.
• Ability to design and create technical labs, handouts, etc. for topics based on Azure and DevOps tools and software's related to DevOps (Docker, Kubernetes, Ansible, Terraform, Chef, Jenkins, etc.)
•  
• Design and validate Azure cloud architectures for enterprise-grade applications
• Lead cloud migration and modernization initiatives
• Deploy and manage Azure services such as VMs, App Services, AKS, Networking, and Databases
• Implement Azure security best practices including Azure AD, RBAC, Key Vault, and Defender for Cloud
• Build Infrastructure as Code using ARM, Bicep, or Terraform
• Integrate CI/CD pipelines using Azure DevOps or GitHub Actions
• Act as the go-to Azure expert and mentor technical teams