Senior Cloud Engineer/Architect (AZURE)

SMS’s Digital Modernization is seeking an experienced Senior Cloud Engineer Architect (Azure) to support large-scale migration and operations on a large, high-profile DOD contract. The I3TS program provides enterprise-wide IT support to enable DTRA’s Information Management & Technology Directorate (ITD) to consolidate, modernize, and continuously innovate the delivery of IT services and mission capabilities to DTRA’s internal and external mission partners operating in CONUS and OCONUS locations.

The Senior Cloud Engineer/Architect (Azure) supports design of a new, modernized updated and upgraded capabilities for DTRA.  This role will be responsible for tech requirement definition, feasibility studies, pilot projects and implementations plans, as well as diagnosing and troubleshooting outages, monitoring networks, infrastructure and systems, and proving proactive mitigation strategies.

This role is part of a highly skilled technical team responsible for designing and deploying secure, scalable, and compliant hybrid- and multi-cloud architectures that enable mission success across complex defense environments.

The ideal candidate has deep expertise in Microsoft Azure architecture, identity and access management (IAM), Microsoft Entra ID (formerly Azure Active Directory), and cross-cloud interoperability. The selected candidate will design and implement Zero Trust-aligned, IL4/IL5-accredited solutions integrating Azure, AWS, and on-premises systems in accordance with DoD cybersecurity requirements.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 45 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

• Design, implement, and secure Azure-based cloud architectures in alignment with DoD mission objectives and cybersecurity standards.
• Lead configuration, deployment, and management of Microsoft Entra ID / Azure AD for centralized identity, single sign-on (SSO), and role-based access control (RBAC) across Azure tenants and subscriptions.
• Integrate federated identity solutions with AWS Identity Center, Okta, or on-premises Active Directory.
• Develop and enforce Azure governance frameworks, including Azure Policy, Management Groups, and Blueprints, ensuring alignment with DoD Zero Trust and least-privilege principles.
• Architect and secure hybrid connectivity across Azure, AWS, and DoD on-premises networks, ensuring consistent identity and access management across clouds.
• Collaborate with cybersecurity teams to ensure solutions comply with DISA STIGs, DoD Cloud Computing SRG, FedRAMP High, and NIST 800-53 controls.
• Implement and manage Infrastructure as Code (IaC) solutions using Bicep, Terraform, or Azure Resource Manager (ARM) templates.

• Active Microsoft Certified: Azure Solutions Architect Expert certification (or equivalent).
• Active DoD Top Secret clearance with SCI Eligibility.
• DoD 8570 IAT Level II certification.
• BS degree and 12+ years of prior relevant experience or a Masters degree with 10+ years of prior relevant experience, additional years of experience may be considered in lieu of a degree.
• 5+ years of experience designing and implementing secure Azure-based solutions in enterprise or government environments.
• Proven expertise in Microsoft Entra ID / Azure AD, Azure RBAC, and Conditional Access.
• Experience with multi-cloud identity integration (Azure + AWS or GCP).
• Strong understanding of federated identity, SAML/OIDC protocols, and cross-cloud authentication mechanisms.
• Familiarity with Azure Government (DoD), FedRAMP, and DISA STIG compliance frameworks.
• Hands-on experience with Terraform, Bicep, Azure CLI, and CI/CD automation.
• Excellent written and verbal communication skills with the ability to brief technical concepts to leadership and stakeholders.
• Must be able to work as part of a team to troubleshoot and resolve complex issues.
• Excellent written and verbal communication skills. This shall include drafting SOPs and technical documentation as well as communication with senior program and customer leadership.
• Must be able to present designs and plans to technical leadership personnel and boards for approvals.

SMS is a dynamic systems integrator established in 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 47 years. Our ability to hire and retain quality people in a rapidly evolving IT market is proven through our employee retention rate averaging over 3 years. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices, resulting in CMMI Level 3 certification and ISO registrations including 9001:2015, 20000-1:2018, and ISO/IEC 27001:2013. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. 

SMS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.