Principal Cloud Network Architect – Part-Time

Job Description

Join Miratech as a Principal Cloud Network Architect and lead the design of our global cloud transit backbone. This role involves evaluating and defining the target-state AWS multi-account routing model, deciding between AWS Cloud WAN and regional Transit Gateway (TGW) architectures to unify over 40 AWS accounts. You'll design the hybrid interconnect fabric between physical and cloud environments, ensuring seamless Layer 2/Layer 3 connectivity between legacy data centers and AWS using Digital Realty (PlatformDIGITAL / ServiceFabric) and AWS Direct Connect. The role includes defining the cloud-native security perimeter and identity access using AWS WAF, AWS Shield Advanced, and centralized logging, replacing raw credential management with AWS KMS/Secrets Manager and integrating AWS IAM with Entra ID for SSO. You'll also standardize cloud routing boundaries for e-commerce and voice workloads, architecting a split-routing model to securely steer SIP signaling through AWS while keeping real-time RTP media on physical hardware to avoid cloud latency. Deliver a detailed transition blueprint with Infrastructure-as-Code (IaC) migration templates and a phased rollout strategy to move from the current fragmented state to a unified cloud fabric without disrupting voice or e-commerce services. Drive strategic Cloud FinOps and architecture economics by auditing AWS spend, right-sizing compute resources, and implementing Reserved Instances and Savings Plans alongside structural cloud changes.

Qualifications

1. Requires 8+ years in IT infrastructure/architecture, with 5+ years of focus on AWS-native networking, multi-account transit architectures, and hybrid cloud convergence. 2. Must have advanced AWS networking expertise, including AWS Cloud WAN, Transit Gateway, Direct Connect, VPC Lattice, Route 53, and cross-account governance (IAM / Resource Access Manager). 3. Strong "Hybrid BGP Fluency" (AS-PATH, MED, Local Pref) is essential to act as the cloud-side counterpart to core network engineers, seamlessly accepting route handoffs at AWS Direct Connect or Microsoft Meet-Me Room edges without creating routing loops. 4. Requires deep expertise in AWS-native security perimeters (AWS WAF, Shield Advanced, GuardDuty, Security Hub) and enterprise identity federation. 5. Proven track record designing cross-region AWS Disaster Recovery (DR) architectures and executing Cloud FinOps cost-optimization strategies is a must. 6. In-depth knowledge of Infrastructure as Code using Terraform and AWS CloudFormation for large-scale network and routing automation is necessary. 7. Experience in M&A cloud consolidation, including unifying fragmented or “shadow IT” AWS environments into enterprise-grade governance models is highly valued.

Benefits

- Employees can work remotely