Role
:
Azure Cloud Administrator/Architect – Networking Focus (Onshore)
Location
:
Ireland/UK
Notice Period
: Max 4 weeks
Position Overview
We are seeking an experienced Azure Cloud Administrator/Architect with deep expertise in Azure networking and strong hands-on experience managing Azure Key Vault, Databricks, Blob Storage, and SQL Server (Azure SQL) environments. You will design, implement, and operate secure, scalable cloud infrastructure with a particular emphasis on networking, connectivity, and secure data access patterns.
Key Responsibilities
Network Design and Architecture
• Design and implement scalable, secure Azure network architectures including VNets, subnets, NSGs, UDRs, and VNet peering with zero trust
• Develop hub-and-spoke and landing zone network topologies for enterprise workloads.
• Architect and maintain hybrid connectivity using VPN Gateway, ExpressRoute, and Azure Virtual WAN.
• Design multi-region and high-availability network architectures including front-door/load-balancing strategies.
Cloud Infrastructure and Platform Management
• Deploy and manage Azure networking components: Application Gateway (incl. WAF), Azure Firewall, Azure Load Balancer, Azure Front Door, and Traffic Manager.
• Configure and optimize private endpoints, service endpoints, and Private Link services for PaaS resources (Key Vault, Storage, SQL, Databricks).
• Implement and manage Azure DNS and Private DNS zones for internal and external name resolution.
• Use Azure Monitor, Network Watcher, Log Analytics, and Connection Monitor for proactive network health monitoring and troubleshooting.
Security, Identity, and Compliance
• Design and implement network security controls: NSGs, ASGs, Azure Firewall policies, DDoS Protection, WAF policies, and just-in-time access.
• Secure access to Azure Key Vault with private endpoints, RBAC, and policies aligned with least-privilege principles.
• Implement secure connectivity patterns for Blob Storage, Azure SQL, and Databricks (e.g., no public access, private endpoints, trusted services).
• Ensure compliance with internal policies and external standards (e.g., ISO 27001, SOC 2, GDPR), and support audits and security assessments.
Key Vault Management
• Configure and manage Azure Key Vault for secrets, keys, and certificates.
• Implement network-restricted Key Vaults using private endpoints and firewall rules.
• Integrate Key Vault with Azure Databricks, App Services, Functions, and CI/CD pipelines for secure secret management.
• Establish backup, recovery, rotation policies, and monitoring/alerting for Key Vault usage and access anomalies.
Azure Databricks Management
• Design secure network architecture for Databricks workspaces including VNet injection, private endpoints, and secure connectivity to data sources.
• Configure NSGs, route tables, and subnets for Databricks clusters and data plane/control plane separation where applicable.
• Manage secure access from Databricks to Blob Storage, Data Lake, Azure SQL, and Key Vault.
• Collaborate with data engineering and analytics teams on cluster configuration, workspace governance, and cost-optimized architectures.
Blob Storage and Data Platform Management
• Design and manage Azure Storage accounts (Blob, ADLS Gen2) with network rules, private endpoints, and encryption options.
• Implement storage firewall policies, shared access signature (SAS) governance, and identity-based access (Azure AD / RBAC).
• Optimize performance, lifecycle management, and cost for storage accounts used by Databricks and SQL workloads.
• Ensure secure data transfer patterns (SFTP, VPN, ExpressRoute) and proper segregation between environments (dev/test/prod).
SQL Server / Azure SQL Management
• Configure and manage Azure SQL Database / SQL Managed Instance / SQL Server on Azure VMs with secure connectivity.
• Implement private endpoints, service endpoints, and firewall rules for SQL, avoiding public exposure where possible.
• Collaborate on backup, DR, high availability, and maintenance windows while ensuring network configurations support SLAs.
• Integrate SQL with on-premises systems via ExpressRoute/VPN and ensure secure access from application tiers and Databricks.
Automation and Infrastructure as Code
• Develop and maintain Infrastructure as Code (Terraform) for all network, Key Vault, Databricks, Storage, and SQL resources.
• Implement CI/CD pipelines (Azure DevOps or GitHub Actions) for repeatable, tested infrastructure deployments.
• Automate operational tasks such as provisioning, configuration, compliance checks, and tagging using PowerShell, Azure CLI, or Python.
• Maintain clear documentation, diagrams, and runbooks for deployed architectures and standard operating procedures.
Required Qualifications
Technical Skills
• 5-7+ years of experience in Azure cloud administration/architecture roles with professional grade certification
• Deep hands-on expertise with Azure networking (VNets, peering, VPN Gateway, ExpressRoute, Application Gateway, Azure Firewall, Load Balancer, Front Door, Traffic Manager).
• Strong understanding of TCP/IP, routing, DNS, VPNs, and network security concepts.
• Practical experience managing:
o Azure Key Vault (network-restricted vaults, policies, integrations).
o Azure Databricks (VNet injection, private endpoints, secure data access).
o Azure Blob Storage / ADLS (network rules, private endpoints, IAM).
o Azure SQL (private endpoints, firewalls, hybrid connectivity).
• Proficiency with Infrastructure as Code (Terraform strongly preferred; Bicep/ARM is a plus).
• Experience using Azure Monitor, Network Watcher, Log Analytics, and related tools for observability and troubleshooting.
• Scripting skills in PowerShell and/or Python; strong Azure CLI usage.
Certifications
• Microsoft Certified: Azure Solutions Architect Expert (required).
• Microsoft Certified: Azure Network Engineer Associate (highly preferred).
• Relevant database/network certifications (e.g., Azure Data Engineer, CCNA/CCNP) are a plus.
Additional Skills
• Experience with hybrid and enterprise network architectures integrating on-premises and Azure.
• Familiarity with DevOps practices, Git-based workflows, and CI/CD for infrastructure.
• Understanding of security and compliance frameworks and how they map to Azure controls.
• Strong incident management and root cause analysis capabilities.
Preferred Qualifications
• Experience with Azure Databricks in regulated or enterprise environments (e.g., PHI/PII workloads).
• Exposure to AKS and container networking (CNI, ingress, private clusters).
• Background supporting data platforms, BI, or analytics teams at scale.
Personal Attributes
• Clear, concise communicator able to work with infrastructure, security, data, and application teams.
• Strong ownership mindset with focus on reliability, security, and automation.
• Detail-oriented with strong documentation habits.
• Curious, proactive learner who keeps up to date with Azure networking and data platform capabilities.
About Timus Consulting services:
Timus Consulting is a leading EnterpriseTech and Business Consulting firm, providing an extensive array of services including Governance, Risk Management, and Compliance (GRC) solutions, Software Development, Enterprise Resource Planning (ERP) solutions, Cloud Consulting, Artificial Intelligence (AI) solutions, and Managed Services.
For more details visit:
Our people and culture
Our diverse, equitable, and inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Timus as one of the most rewarding places to work.
Professional development
From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.