Azure DevOps Architect

Role Overview

Azure DevOps Architect (12-month contract) based in Menlo Park, CA (Remote). You will design and govern enterprise CI/CD and platform engineering capabilities across multi-subscription Azure environments and large engineering organizations.

Responsibilities

• Architect and govern centralized CI/CD platforms using Azure DevOps, including OPA policy-as-code enforcement.
• Design and implement enterprise infrastructure lifecycle management with Azure Deployment Stacks across hundreds of Azure subscriptions.
• Build and operate GitOps delivery frameworks using FluxCD for large-scale AKS cluster management.
• Lead software supply chain security initiatives, including:
  • Sigstore artifact signing/verification pipelines
  • SBOM automation (generation, dependency visibility, vulnerability tracking) integrated into CI/CD
• Architect secure workload environments using Azure Confidential Computing for regulated/high-security use cases.
• Drive resilience engineering by running failure experiments with Azure Chaos Studio across microservices.
• Define and enforce DevSecOps standards, governance frameworks, and security controls across engineering teams.
• Collaborate with security, platform, and product engineering to align DevOps strategy with compliance/regulatory needs.
• Mentor senior engineers and establish best practices for GitOps, supply chain security, and policy-driven delivery.

Requirements

• 10+ years of experience in DevOps architecture and cloud platform engineering.
• Enterprise-scale delivery experience across Fortune-level organizations (finance, healthcare, retail, or technology).
• Hands-on, proven experience with all seven mandatory niche skills (generalist profiles not accepted):
  • Azure Deployment Stacks
  • Open Policy Agent (OPA) / Policy-as-Code
  • Sigstore
  • Azure Chaos Studio
  • Azure Confidential Computing
  • SBOM Automation Pipelines
  • FluxCD GitOps Platform Engineering
• Experience supporting 500+ engineering teams (or equivalent large-scale platform environments).
• Background in regulated industries, with strong understanding of compliance, audit, and security requirements.
• Azure DevOps enterprise CI/CD platform design/management.
• Kubernetes (AKS) large-scale cluster platform engineering.
• Infrastructure as Code using Terraform and/or Bicep at enterprise scale.
• DevSecOps architecture and security-first pipeline governance.

Nice-to-haves

• Integration experience with modern supply chain security frameworks (mentioned as required via secure artifact signing integration).