Azure Infrastructure and Identity Architect

Lantern

$128K — $192K *
Edmonton, AB T5A 0A1In-Person
Information Technology
8 - 10 years of experience
2 weeks ago
Job Overview by Ladders

Qualifications

  • 10+ years in IT infrastructure, with 6+ years in Microsoft Azure design and delivery in consulting or enterprise environments using IaC.
  • Proven experience as lead architect on significant Azure projects, including build-outs, migrations, or identity modernization.
  • Experience in billable consulting, with a focus on pre-sales efforts and management of Statements of Work (SOWs).
  • Expertise in Azure Landing Zones, Azure Policy, and platform versus application patterns for implementation.
  • Strong knowledge of networking and security in Azure, including hub-and-spoke architecture and related technologies.
  • Deep understanding of identity management with Microsoft Entra ID architecture and hybrid identity solutions.
  • Hands-on production experience with Infrastructure as Code (IaC), notably Terraform.

Responsibilities

  • Lead technical sales from discovery to deal closure, translating client needs into technical approaches and phased roadmaps.
  • Draft technical content for Statements of Work and proposals, detailing assumptions, deliverables, and exit criteria.
  • Develop and defend delivery estimates, sizing teams and identifying risks and dependencies.
  • Deliver compelling executive presentations and architecture walkthroughs, leveraging technical credibility for new business opportunities.
  • Act as the lead architect on multiple Azure projects, ensuring high technical quality across engagements.
  • Establish architectural guidance for Azure Landing Zones that support AI workloads within clients' environments.
  • Design and supervise the implementation of complex network topologies and identity foundations aligned with best practices.

Benefits

  • Mentorship opportunities to grow skills and advance career in a collaborative environment.
  • Access to resources for continuous learning and staying current with Azure and Entra innovations.
  • Chance to contribute to the development of internal intellectual property, enhancing professional visibility.
  • Engagement in a diverse set of complex projects across various client industries to broaden experience.
Full Job Description
Position Summary

We are hiring an experienced Azure Infrastructure and Identity Architect to lead our most complex Microsoft Azure and Identity engagements to build the AI Foundations for our clients. This is a senior, client-facing role that sits at the intersection of architecture, delivery, and presales. You will own the technical shape of multi-workstream deals, set the architectural direction for landing zones and identity foundations, and act as a trusted advisor to client executives and engineering teams alike.

The primary objective of this role is to architect and solution AI Azure platforms for our clients. You are expected to operate with a high degree of autonomy: scoping work from opportunities, defending estimates with the sales team, and walking into a delivery with a credible plan on day one. You will also help mature the practice itself, codifying reusable accelerators, mentoring more junior consultants, and contributing to our Microsoft partner alignment.

Position Responsibilities
  • Lead technical sales motions end-to-end, from discovery through deal closure. Translate ambiguous client needs into a credible technical approach, phased roadmap, and commercial model (T&M, fixed-fee).
  • Author the technical content of Statements of Work, proposals, including assumptions, deliverables, RACI, and exit criteria.
  • Build and defend bottom-up estimates; size delivery teams; identify and price in risk, dependencies.
  • Deliver executive-level presentations, demos, and architecture walkthroughs; convert technical credibility into pipeline.
  • Serve as the lead architect across one or more concurrent Azure engagements; own the end-to-end technical quality of what we ship.
  • Set architectural direction for Azure Landing Zones aligned to CAF and WAF and properly sized to support our clients' AI workloads.
  • Design and oversee implementation of hub-and-spoke and Virtual WAN network topologies, including Azure Firewall/NVA strategy, Private Link, DNS, ExpressRoute, and segmentation patterns.
  • Define the identity foundation: Microsoft Entra ID tenant design, hybrid identity, Conditional Access, PIM, Entra ID governance.
  • Shape and lead on-prem to Azure migration programs: assessment with Azure Migrate, wave planning, replatform vs. rehost decisions, cutover strategy, and decommissioning. Cover VMware, Hyper-V, physical, and database workloads.
  • Security and governance: Microsoft Defender for Cloud, Azure Policy, role-based access control, key and secret management, logging and monitoring (Azure Monitor, Log Analytics, Sentinel handoffs).
  • Mentor more junior consultants; run internal architecture reviews and design clinics.
  • Contribute to and curate practice IP: reference architectures, IaC modules, assessment templates, runbooks, and migration playbooks.
  • Stay current with the Azure and Entra roadmaps.


Skills, Knowledge and Expertise
  • 10+ years in IT infrastructure, with 6+ years designing and delivering on Microsoft Azure in a consulting or large-enterprise environment using IaC.
  • Demonstrable track record as the lead architect on substantial Azure engagements (landing zone build-outs, large-scale migrations, or enterprise identity modernization).
  • Direct experience in a billable consulting model, including pre-sales contribution and ownership of SOWs.
  • Azure Landing Zones/CAF, Azure Policy, platform vs. application landing zone patterns.
  • Networking & security: hub-and-spoke, Virtual WAN, Azure Firewall, NSGs and ASGs, Application Gateway/Front Door/WAF, Private Link and Private DNS, ExpressRoute, site-to-site VPN, DDoS protection.
  • Identity: Entra ID tenant architecture, hybrid identity (Entra Connect, Cloud Sync, ADFS where relevant), Conditional Access design, MFA and passwordless rollouts, PIM, Entra ID Governance, B2B/B2C, workload identities and managed identities.
  • Infrastructure as Code: production experience with Terraform.
  • Migration: Azure Migrate (Discovery, Server Assessment, Server Migration), Azure Site Recovery, Database Migration Service, application dependency mapping, cutover planning.
  • Governance, monitoring, and cost: Azure Policy and Initiatives, Microsoft Defender for Cloud, Azure Monitor, Log Analytics, cost management and FinOps fundamentals.
  • Working knowledge of Microsoft 365 / Intune / Defender boundaries with Azure infrastructure work, sufficient to scope adjacent workstreams and route them appropriately.


Lantern is committed to fair and equitable compensation practices. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time.

Ontario Salary Range

$128,000-$192,000 CAD
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Lantern

More Information Technology Jobs

Find similar Azure Infrastructure and Identity Architect jobs:

NationwideEdmonton, AB