Home › Companies › Ejgk Fa Em2 Oraclecloud Com CX 3 › Associate Director-GDC
Associate Director-GDC
Ejgk Fa Em2 Oraclecloud Com CX 3 · Hyderabad - GDC, Hyderabad, Telangana, IN · Hybrid · Active · Oracle Recruiting Cloud / Fusion HCM
Job facts
| Field | Value |
|---|---|
| Company | Ejgk Fa Em2 Oraclecloud Com CX 3 |
| Title | Associate Director-GDC |
| Normalized title | - |
| Department / team | Associate Director/Manager |
| Location | Telangana, IN, United States |
| Work model | Hybrid / Hybrid |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
| Posted / first seen | 2026-05-27 / 2026-05-31 |
| Changed / last seen | 2026-06-04 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Ejgk Fa Em2 Oraclecloud Com CX 3. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Oracle Recruiting Cloud / Fusion HCM. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Telangana. | Open |
| Department jobs | Active postings in Associate Director/Manager. | Open |
| Work model jobs | Active Hybrid postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Ejgk Fa Em2 Oraclecloud Com CX 3 |
| Source | 23e21224-44fc-4b77-9fe1-8f1fdc6bff0d |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
Description
Description
Roles & responsibilities
Role Purpose
Design, build, and govern secure, resilient, and scalable cloud/hybrid infrastructure on Microsoft Azure, integrating on‑prem and platform services. The role blends Infrastructure Architecture & Operations with Infrastructure Security & Compliance, ensuring Zero Trust, policy‑as‑code, and operational excellence across identity, network, compute, containers (AKS), storage, backup, observability, and disaster recovery
Key Responsibilities
A. Infrastructure Architecture & Operations
Own the Azure landing zone (CAF‑aligned) and hub‑spoke network design (ExpressRoute/VPN, Private DNS, Private Endpoints).
Define standards for compute, storage, databases, and platform services (VM/VMSS, images, disks, files, backups, SQL/MI).
AKS Platform Ownership (Mandatory):
Design AKS clusters (node pools, taints/tolerations, zoning, multi‑region DR), Azure CNI/Overlay networking, and ingress (NGINX/App Gateway).
Establish lifecycle practices for upgrades, autoscaling (HPA/VPA, Cluster Autoscaler), image management (ACR), and workload placement.
Integrate platform services (Key Vault, Managed Identities, Private Link) and ensure operational SLOs.
Lead modernization/migration for Windows/Linux workloads and data platforms; ensure resilience, cost efficiency, and operational readiness.
Establish BCDR strategy—RTO/RPO targets, automated recovery runbooks, DR rehearsals, and evidence packs.
Build observability: Azure Monitor, Log Analytics, Application Insights, synthetic checks, and incident runbooks.
Drive FinOps: tagging, showback/chargeback, rightsizing, reservations/savings plans, and lifecycle policies.
B. Infrastructure Security & Compliance
Implement Zero Trust across identity, device, network, and data: RBAC, PIM, Conditional Access/MFA, workload identities.
Design network security: NSG/ASG, Azure Firewall/WAF, micro‑segmentation, DDoS Protection, egress control, DNS security.
AKS Security (Mandatory):
Entra ID/RBAC integration, Pod Security Admission (PSA) baselines, Network Policies, secrets management and workload identity.
Container image scanning, supply‑chain security (Helm/OCI), baseline hardening, and Defender for Containers posture/threat protection.
Embed policy‑as‑code (Azure Policy/Blueprints) for guardrails, CIS/benchmarks, drift detection, and automated remediation.
Integrate Defender for Cloud and Microsoft Sentinel with tuned alerts, SOAR playbooks, and incident coordination.
Ensure compliance with enterprise policies and applicable standards (ISO 27001, SOC 2, GDPR/HIPAA where relevant).
C. Automation & DevOps (Shared)
Champion IaC using Terraform/Bicep—reusable modules, environment promotion, approvals in Azure DevOps/GitHub CI/CD.
Build image pipelines (Packer/Golden Images) and configuration baselines (DSC/Automanage).
Implement GitOps for AKS (Flux/Argo), pre‑deployment policy validation, and security scans.
D. Governance, Documentation & Stakeholder Management
Author reference architectures, standards, roadmaps, HLD/LLD/Technical Architecture Proposal, RACI, risk registers, and decision logs; enforce via design reviews.
Partner with platform engineering, security, app/dev, and risk/compliance to deliver secure‑by‑design outcomes and smooth operational handovers.
Mentor engineers/architects; lead threat modeling, resiliency reviews, incidents & escalations.
Responsibilities
Roles & responsibilities
Role Purpose
Design, build, and govern secure, resilient, and scalable cloud/hybrid infrastructure on Microsoft Azure, integrating on‑prem and platform services. The role blends Infrastructure Architecture & Operations with Infrastructure Security & Compliance, ensuring Zero Trust, policy‑as‑code, and operational excellence across identity, network, compute, containers (AKS), storage, backup, observability, and disaster recovery
Key Responsibilities
A. Infrastructure Architecture & Operations
Own the Azure landing zone (CAF‑aligned) and hub‑spoke network design (ExpressRoute/VPN, Private DNS, Private Endpoints).
Define standards for compute, storage, databases, and platform services (VM/VMSS, images, disks, files, backups, SQL/MI).
AKS Platform Ownership (Mandatory):
Design AKS clusters (node pools, taints/tolerations, zoning, multi‑region DR), Azure CNI/Overlay networking, and ingress (NGINX/App Gateway).
Establish lifecycle practices for upgrades, autoscaling (HPA/VPA, Cluster Autoscaler), image management (ACR), and workload placement.
Integrate platform services (Key Vault, Managed Identities, Private Link) and ensure operational SLOs.
Lead modernization/migration for Windows/Linux workloads and data platforms; ensure resilience, cost efficiency, and operational readiness.
Establish BCDR strategy—RTO/RPO targets, automated recovery runbooks, DR rehearsals, and evidence packs.
Build observability: Azure Monitor, Log Analytics, Application Insights, synthetic checks, and incident runbooks.
Drive FinOps: tagging, showback/chargeback, rightsizing, reservations/savings plans, and lifecycle policies.
B. Infrastructure Security & Compliance
Implement Zero Trust across identity, device, network, and data: RBAC, PIM, Conditional Access/MFA, workload identities.
Design network security: NSG/ASG, Azure Firewall/WAF, micro‑segmentation, DDoS Protection, egress control, DNS security.
AKS Security (Mandatory):
Entra ID/RBAC integration, Pod Security Admission (PSA) baselines, Network Policies, secrets management and workload identity.
Container image scanning, supply‑chain security (Helm/OCI), baseline hardening, and Defender for Containers posture/threat protection.
Embed policy‑as‑code (Azure Policy/Blueprints) for guardrails, CIS/benchmarks, drift detection, and automated remediation.
Integrate Defender for Cloud and Microsoft Sentinel with tuned alerts, SOAR playbooks, and incident coordination.
Ensure compliance with enterprise policies and applicable standards (ISO 27001, SOC 2, GDPR/HIPAA where relevant).
C. Automation & DevOps (Shared)
Champion IaC using Terraform/Bicep—reusable modules, environment promotion, approvals in Azure DevOps/GitHub CI/CD.
Build image pipelines (Packer/Golden Images) and configuration baselines (DSC/Automanage).
Implement GitOps for AKS (Flux/Argo), pre‑deployment policy validation, and security scans.
D. Governance, Documentation & Stakeholder Management
Author reference architectures, standards, roadmaps, HLD/LLD/Technical Architecture Proposal, RACI, risk registers, and decision logs; enforce via design reviews.
Partner with platform engineering, security, app/dev, and risk/compliance to deliver secure‑by‑design outcomes and smooth operational handovers.
Mentor engineers/architects; lead threat modeling, resiliency reviews, incidents & escalations.
Mandatory technical & functional skills
Infrastructure Core (Mandatory)
Azure subscriptions/management groups; CAF Landing Zones, hub spoke networking, ExpressRoute/S2S VPN.
Compute & OS: Windows Server/Linux, image management (Packer), VMSS, patching automation.
Storage & Data: disks/storage accounts, files/shares, backup/restore; integration with SQL MI/Cosmos DB (platform perspective).
Azure Kubernetes Service (AKS) – Mandatory:
Cluster design & lifecycle (upgrades, node pools, autoscaling, zoning, DR), Azure CNI/Overlay, service networking, ingress controllers.
Workload packaging & deployment (Helm/OCI), registry management (ACR), quotas/requests/limits, scheduling.
Observability (Container Insights, Prometheus/Grafana), capacity planning, and reliability practices.
Hybrid Integration: Entra ID/AD, GPO, MECM/Intune, identity sync, and on prem connectivity.
Infrastructure Security Core (Mandatory)
Identity security: RBAC, PIM, Conditional Access, workload identities; secure key/secret management (Key Vault/CMK).
Network security: NSG/ASG, Azure Firewall/WAF, micro segmentation, Private Link, DDoS Protection; egress/DNS controls.
AKS Security – Mandatory:
Entra ID/RBAC, PSA baselines, Network Policies, secrets via CSI/Key Vault, workload identity; container image scanning and policy enforcement (Gatekeeper/Kyverno).
Defender for Containers and Defender for Cloud posture/threat management; Sentinel SIEM/SOAR integration.
Compliance & governance: Azure Policy/Blueprints, CIS baselines, evidence collection/attestation.
Automation, Observability & Documentation
Terraform/Bicep, Azure DevOps/GitHub pipelines, GitOps for AKS (Flux/Argo).
Azure Monitor/Log Analytics/Kusto, action groups, runbooks, SRE practices (SLO/SLI, error budgets).
Strong documentation and executive ready communication via ArchiMate/Visio/PowerPoint.
Qualifications
This role is for you if you have the below
Education: Bachelor’s in computer science, Information Technology, or related field.
Experience: 10–14 years overall; 6+ years in Azure/hybrid infrastructure and 3–5 years in infrastructure security architecture; hands on AKS platform ownership in production is required.
Certifications (preferred):
- Microsoft: AZ 305 (Solutions Architect), AZ 500 (Security Engineer), SC 100 (Cybersecurity Architect), AZ-104(Azure Administrator Associate).
Full job record
| Job ID | 605180f8ca1e5a4b7236f15869ba77e9e9d718b1 |
| Org ID | 019b9a6f-57a3-4cbf-b25a-f9c839f04f7e |
| Source ID | 23e21224-44fc-4b77-9fe1-8f1fdc6bff0d |
| Board ID | 23e21224-44fc-4b77-9fe1-8f1fdc6bff0d |
| Provider | oracle_hcm |
| Provider Job Key | 30044504 |
| Title | Associate Director-GDC |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Hyderabad - GDC, Hyderabad, Telangana, IN |
| Department | Associate Director/Manager |
| Team | — |
| Employment Type | full_time |
| Workplace Type | hybrid |
| Remote Policy | hybrid |
| Country | United States |
| Region | IN |
| City | Telangana |
| Salary Raw | Description Roles & responsibilities Role Purpose Design, build, and govern secure, resilient, and scalable cloud/hybrid infrastructure on Microsoft Azure, integrating on‑prem and platform services. The role blends Infrastructure Architecture & Operations with Infrastructure Security & Compliance, ensuring Zero Trust, policy‑as‑code, and operational excellence across identity, network, compute, containers (AKS), storage, backup, observability, and disaster recovery Key Responsibilities A. Infrastructure Architecture & Operations Own the Azure landing zone (CAF‑aligned) and hub‑spoke network design (ExpressRoute/VPN, Private DNS, Private Endpoints). Define standards for compute, storage, databases, and platform services (VM/VMSS, images, disks, files, backups, SQL/MI). AKS Platform Ownership (Mandatory): Design AKS clusters (node pools, taints/tolerations, zoning, multi‑region DR), Azure CNI/Overlay networking, and ingress (NGINX/App Gateway). Establish lifecycle practices for upgrades, autoscaling (HPA/VPA, Cluster Autoscaler), image management (ACR), and workload placement. Integrate platform services (Key Vault, Managed Identities, Private Link) and ensure operational SLOs. Lead modernization/migration for Windows/Linux workloads and data platforms; ensure resilience, cost efficiency, and operational readiness. Establish BCDR strategy—RTO/RPO targets, automated recovery runbooks, DR rehearsals, and evidence packs. Build observability: Azure Monitor, Log Analytics, Application Insights, synthetic checks, and incident runbooks. Drive FinOps: tagging, showback/chargeback, rightsizing, reservations/savings plans, and lifecycle policies. B. Infrastructure Security & Compliance Implement Zero Trust across identity, device, network, and data: RBAC, PIM, Conditional Access/MFA, workload identities. Design network security: NSG/ASG, Azure Firewall/WAF, micro‑segmentation, DDoS Protection, egress control, DNS security. AKS Security (Mandatory): Entra ID/RBAC integration, Pod Security Admission (PSA) baselines, Network Policies, secrets management and workload identity. Container image scanning, supply‑chain security (Helm/OCI), baseline hardening, and Defender for Containers posture/threat protection. Embed policy‑as‑code (Azure Policy/Blueprints) for guardrails, CIS/benchmarks, drift detection, and automated remediation. Integrate Defender for Cloud and Microsoft Sentinel with tuned alerts, SOAR playbooks, and incident coordination. Ensure compliance with enterprise policies and applicable standards (ISO 27001, SOC 2, GDPR/HIPAA where relevant). C. Automation & DevOps (Shared) Champion IaC using Terraform/Bicep—reusable modules, environment promotion, approvals in Azure DevOps/GitHub CI/CD. Build image pipelines (Packer/Golden Images) and configuration baselines (DSC/Automanage). Implement GitOps for AKS (Flux/Argo), pre‑deployment policy validation, and security scans. D. Governance, Documentation & Stakeholder Management Author reference architectures, standards, roadmaps, HLD/LLD/Technical Architecture Proposal, RACI, risk registers, and decision logs; enforce via design reviews. Partner with platform engineering, security, app/dev, and risk/compliance to deliver secure‑by‑design outcomes and smooth operational handovers. Mentor engineers/architects; lead threat modeling, resiliency reviews, incidents & escalations. Responsibilities Roles & responsibilities Role Purpose Design, build, and govern secure, resilient, and scalable cloud/hybrid infrastructure on Microsoft Azure, integrating on‑prem and platform services. The role blends Infrastructure Architecture & Operations with Infrastructure Security & Compliance, ensuring Zero Trust, policy‑as‑code, and operational excellence across identity, network, compute, containers (AKS), storage, backup, observability, and disaster recovery Key Responsibilities A. Infrastructure Architecture & Operations Own the Azure landing zone (CAF‑aligned) and hub‑spoke network design (ExpressRoute/VPN, Private DNS, Private Endpoints). Define standards for compute, storage, databases, and platform services (VM/VMSS, images, disks, files, backups, SQL/MI). AKS Platform Ownership (Mandatory): Design AKS clusters (node pools, taints/tolerations, zoning, multi‑region DR), Azure CNI/Overlay networking, and ingress (NGINX/App Gateway). Establish lifecycle practices for upgrades, autoscaling (HPA/VPA, Cluster Autoscaler), image management (ACR), and workload placement. Integrate platform services (Key Vault, Managed Identities, Private Link) and ensure operational SLOs. Lead modernization/migration for Windows/Linux workloads and data platforms; ensure resilience, cost efficiency, and operational readiness. Establish BCDR strategy—RTO/RPO targets, automated recovery runbooks, DR rehearsals, and evidence packs. Build observability: Azure Monitor, Log Analytics, Application Insights, synthetic checks, and incident runbooks. Drive FinOps: tagging, showback/chargeback, rightsizing, reservations/savings plans, and lifecycle policies. B. Infrastructure Security & Compliance Implement Zero Trust across identity, device, network, and data: RBAC, PIM, Conditional Access/MFA, workload identities. Design network security: NSG/ASG, Azure Firewall/WAF, micro‑segmentation, DDoS Protection, egress control, DNS security. AKS Security (Mandatory): Entra ID/RBAC integration, Pod Security Admission (PSA) baselines, Network Policies, secrets management and workload identity. Container image scanning, supply‑chain security (Helm/OCI), baseline hardening, and Defender for Containers posture/threat protection. Embed policy‑as‑code (Azure Policy/Blueprints) for guardrails, CIS/benchmarks, drift detection, and automated remediation. Integrate Defender for Cloud and Microsoft Sentinel with tuned alerts, SOAR playbooks, and incident coordination. Ensure compliance with enterprise policies and applicable standards (ISO 27001, SOC 2, GDPR/HIPAA where relevant). C. Automation & DevOps (Shared) Champion IaC using Terraform/Bicep—reusable modules, environment promotion, approvals in Azure DevOps/GitHub CI/CD. Build image pipelines (Packer/Golden Images) and configuration baselines (DSC/Automanage). Implement GitOps for AKS (Flux/Argo), pre‑deployment policy validation, and security scans. D. Governance, Documentation & Stakeholder Management Author reference architectures, standards, roadmaps, HLD/LLD/Technical Architecture Proposal, RACI, risk registers, and decision logs; enforce via design reviews. Partner with platform engineering, security, app/dev, and risk/compliance to deliver secure‑by‑design outcomes and smooth operational handovers. Mentor engineers/architects; lead threat modeling, resiliency reviews, incidents & escalations. Mandatory technical & functional skills Infrastructure Core (Mandatory) Azure subscriptions/management groups; CAF Landing Zones, hub spoke networking, ExpressRoute/S2S VPN. Compute & OS: Windows Server/Linux, image management (Packer), VMSS, patching automation. Storage & Data: disks/storage accounts, files/shares, backup/restore; integration with SQL MI/Cosmos DB (platform perspective). Azure Kubernetes Service (AKS) – Mandatory: Cluster design & lifecycle (upgrades, node pools, autoscaling, zoning, DR), Azure CNI/Overlay, service networking, ingress controllers. Workload packaging & deployment (Helm/OCI), registry management (ACR), quotas/requests/limits, scheduling. Observability (Container Insights, Prometheus/Grafana), capacity planning, and reliability practices. Hybrid Integration: Entra ID/AD, GPO, MECM/Intune, identity sync, and on prem connectivity. Infrastructure Security Core (Mandatory) Identity security: RBAC, PIM, Conditional Access, workload identities; secure key/secret management (Key Vault/CMK). Network security: NSG/ASG, Azure Firewall/WAF, micro segmentation, Private Link, DDoS Protection; egress/DNS controls. AKS Security – Mandatory: Entra ID/RBAC, PSA baselines, Network Policies, secrets via CSI/Key Vault, workload identity; container image scanning and policy enforcement (Gatekeeper/Kyverno). Defender for Containers and Defender for Cloud posture/threat management; Sentinel SIEM/SOAR integration. Compliance & governance: Azure Policy/Blueprints, CIS baselines, evidence collection/attestation. Automation, Observability & Documentation Terraform/Bicep, Azure DevOps/GitHub pipelines, GitOps for AKS (Flux/Argo). Azure Monitor/Log Analytics/Kusto, action groups, runbooks, SRE practices (SLO/SLI, error budgets). Strong documentation and executive ready communication via ArchiMate/Visio/PowerPoint. Qualifications This role is for you if you have the below Education: Bachelor’s in computer science, Information Technology, or related field. Experience: 10–14 years overall; 6+ years in Azure/hybrid infrastructure and 3–5 years in infrastructure security architecture; hands on AKS platform ownership in production is required. Certifications (preferred): - Microsoft: AZ 305 (Solutions Architect), AZ 500 (Security Engineer), SC 100 (Cybersecurity Architect), AZ-104(Azure Administrator Associate). |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://ejgk.fa.em2.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_3/job/30044504 |
| Apply URL | https://ejgk.fa.em2.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_3/job/30044504 |
| First Seen At | 2026-05-31 17:59:00Z |
| Last Seen At | 2026-06-06 19:36:50Z |
| Last Checked At | 2026-06-06 19:36:50Z |
| Last Changed At | 2026-06-04 10:34:08Z |
| Inactive At | — |
| Source Posted At | 2026-05-27 10:54:22Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=oracle_hcm/board=ejgk.fa.em2.oraclecloud.com|CX_3/date=2026-06-06/2026-06-06T19-35-13-939Z-c8a4c8523681b51b11de3f04f5e22835885177099e406fb5094b39b52dd526aa.json |
Event Fields
{
"content_hash": "f1ae93245b5f5abf6b64d599e5141c2736f7a1789db49ab38d15cc18f103b89b",
"source_hash": "d41dd014c67d789a0fa4fb0766bf786cc01752e6bbe57dc7363ad271d0500739",
"last_changed_at": "2026-06-04T10:34:08.579Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Hyderabad - GDC, Hyderabad, Telangana, IN",
"city": "Telangana",
"region": "IN",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T19:36:49.914Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Hyderabad - GDC, Hyderabad, Telangana, IN",
"city": "Telangana",
"region": "IN",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"countries": [
"United States"
]
},
"remote_policy": "hybrid",
"salary_period": null,
"workplace_type": "hybrid",
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"Id": "30044504",
"Title": "Associate Director-GDC",
"media": [],
"skills": [],
"JobType": null,
"Category": "Associate Director/Manager",
"JobGrade": null,
"JobLevel": null,
"JobShift": null,
"WorkDays": null,
"WorkHours": null,
"WorkYears": null,
"Department": null,
"HotJobFlag": false,
"StudyLevel": null,
"WorkMonths": null,
"WorkerType": null,
"GeographyId": 300002240955238,
"JobFamilyId": 300000006415678,
"JobFunction": null,
"JobSchedule": "Full time",
"BusinessUnit": null,
"ContractType": null,
"Organization": null,
"TrendingFlag": false,
"workLocation": [
{
"Country": "IN",
"Region1": null,
"Region2": "Telangana",
"Region3": null,
"Building": null,
"Latitude": "17.44744",
"Longitude": "78.38366",
"LocationId": 300004849565533,
"PostalCode": "500081",
"TownOrCity": "Hyderabad",
"AddressLine1": "5th Floor, Tower 30, RMZ Hetero Nexity,",
"AddressLine2": "Hyderabad Knowledge City, Raidurga, Serilingampally, Hyderabad, Rangareddy, ",
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "Hyderabad - GDC"
}
],
"ContentLocale": "en",
"HiringManager": null,
"LegalEmployer": null,
"RequisitionId": 300006888297690,
"WorkplaceType": "",
"BusinessUnitId": 300000002527011,
"OrganizationId": 300002582513969,
"GeographyNodeId": 300002241670252,
"JobFunctionCode": null,
"LegalEmployerId": 300000002525371,
"PrimaryLocation": "Hyderabad, Telangana, India",
"RequisitionType": "KGS Lateral - Full Term Employee",
"NumberOfOpenings": null,
"WorkplaceTypeCode": null,
"BeFirstToApplyFlag": true,
"otherWorkLocations": [],
"secondaryLocations": [
{
"Name": "Bangalore, Karnataka, India",
"Latitude": "12.96618",
"Longitude": "77.5869",
"CountryCode": "IN",
"GeographyId": 300002240961169,
"GeographyNodeId": 300002241670230,
"RequisitionLocationId": 300006888297708
}
],
"ExternalContactName": null,
"ShortDescriptionStr": "",
"ExternalContactEmail": null,
"ExternalPostedEndDate": "2026-07-30T18:30:00+00:00",
"OtherRequisitionTitle": null,
"requisitionFlexFields": [],
"ApplyWhenNotPostedFlag": false,
"DomesticTravelRequired": null,
"ExternalDescriptionStr": "<p> Roles & responsibilities<br>Role Purpose<br>Design, build, and govern secure, resilient, and scalable cloud/hybrid infrastructure on Microsoft Azure, integrating on‑prem and platform services. The role blends Infrastructure Architecture & Operations with Infrastructure Security & Compliance, ensuring Zero Trust, policy‑as‑code, and operational excellence across identity, network, compute, containers (AKS), storage, backup, observability, and disaster recovery<br>Key Responsibilities<br>A. Infrastructure Architecture & Operations <br>Own the Azure landing zone (CAF‑aligned) and hub‑spoke network design (ExpressRoute/VPN, Private DNS, Private Endpoints).<br>Define standards for compute, storage, databases, and platform services (VM/VMSS, images, disks, files, backups, SQL/MI).<br>AKS Platform Ownership (Mandatory): <br>Design AKS clusters (node pools, taints/tolerations, zoning, multi‑region DR), Azure CNI/Overlay networking, and ingress (NGINX/App Gateway).<br>Establish lifecycle practices for upgrades, autoscaling (HPA/VPA, Cluster Autoscaler), image management (ACR), and workload placement.<br>Integrate platform services (Key Vault, Managed Identities, Private Link) and ensure operational SLOs.<br>Lead modernization/migration for Windows/Linux workloads and data platforms; ensure resilience, cost efficiency, and operational readiness.<br>Establish BCDR strategy—RTO/RPO targets, automated recovery runbooks, DR rehearsals, and evidence packs.<br>Build observability: Azure Monitor, Log Analytics, Application Insights, synthetic checks, and incident runbooks.<br>Drive FinOps: tagging, showback/chargeback, rightsizing, reservations/savings plans, and lifecycle policies.<br>B. Infrastructure Security & Compliance <br>Implement Zero Trust across identity, device, network, and data: RBAC, PIM, Conditional Access/MFA, workload identities.<br>Design network security: NSG/ASG, Azure Firewall/WAF, micro‑segmentation, DDoS Protection, egress control, DNS security.<br>AKS Security (Mandatory): <br>Entra ID/RBAC integration, Pod Security Admission (PSA) baselines, Network Policies, secrets management and workload identity.<br>Container image scanning, supply‑chain security (Helm/OCI), baseline hardening, and Defender for Containers posture/threat protection.<br>Embed policy‑as‑code (Azure Policy/Blueprints) for guardrails, CIS/benchmarks, drift detection, and automated remediation.<br>Integrate Defender for Cloud and Microsoft Sentinel with tuned alerts, SOAR playbooks, and incident coordination.<br>Ensure compliance with enterprise policies and applicable standards (ISO 27001, SOC 2, GDPR/HIPAA where relevant).<br>C. Automation & DevOps (Shared)<br>Champion IaC using Terraform/Bicep—reusable modules, environment promotion, approvals in Azure DevOps/GitHub CI/CD.<br>Build image pipelines (Packer/Golden Images) and configuration baselines (DSC/Automanage).<br>Implement GitOps for AKS (Flux/Argo), pre‑deployment policy validation, and security scans.<br>D. Governance, Documentation & Stakeholder Management<br>Author reference architectures, standards, roadmaps, HLD/LLD/Technical Architecture Proposal, RACI, risk registers, and decision logs; enforce via design reviews.<br>Partner with platform engineering, security, app/dev, and risk/compliance to deliver secure‑by‑design outcomes and smooth operational handovers.<br>Mentor engineers/architects; lead threat modeling, resiliency reviews, incidents & escalations.<br> </p>",
"ObjectVerNumberProfile": null,
"PrimaryLocationCountry": "IN",
"CorporateDescriptionStr": "",
"ExternalPostedStartDate": "2026-05-27T10:54:22+00:00",
"ExternalQualificationsStr": "<p> This role is for you if you have the below<br>Education: Bachelor’s in computer science, Information Technology, or related field.<br>Experience: 10–14 years overall; 6+ years in Azure/hybrid infrastructure and 3–5 years in infrastructure security architecture; hands on AKS platform ownership in production is required.<br>Certifications (preferred): <br>- Microsoft: AZ 305 (Solutions Architect), AZ 500 (Security Engineer), SC 100 (Cybersecurity Architect), AZ-104(Azure Administrator Associate).</p><p> </p>",
"InternalQualificationsStr": "<p> This role is for you if you have the below<br>Education: Bachelor’s in computer science, Information Technology, or related field.<br>Experience: 10–14 years overall; 6+ years in Azure/hybrid infrastructure and 3–5 years in infrastructure security architecture; hands on AKS platform ownership in production is required.<br>Certifications (preferred): <br>- Microsoft: AZ 305 (Solutions Architect), AZ 500 (Security Engineer), SC 100 (Cybersecurity Architect), AZ-104(Azure Administrator Associate).</p><p> </p>",
"OrganizationDescriptionStr": "",
"primaryLocationCoordinates": [
{
"Latitude": "17.4083",
"Longitude": "78.55625",
"CountryCode": "IN",
"GeographyId": 300002240955238,
"GeographyNodeId": 300002241670252
}
],
"ExternalResponsibilitiesStr": "<p> Roles & responsibilities<br>Role Purpose<br>Design, build, and govern secure, resilient, and scalable cloud/hybrid infrastructure on Microsoft Azure, integrating on‑prem and platform services. The role blends Infrastructure Architecture & Operations with Infrastructure Security & Compliance, ensuring Zero Trust, policy‑as‑code, and operational excellence across identity, network, compute, containers (AKS), storage, backup, observability, and disaster recovery<br>Key Responsibilities<br>A. Infrastructure Architecture & Operations <br>Own the Azure landing zone (CAF‑aligned) and hub‑spoke network design (ExpressRoute/VPN, Private DNS, Private Endpoints).<br>Define standards for compute, storage, databases, and platform services (VM/VMSS, images, disks, files, backups, SQL/MI).<br>AKS Platform Ownership (Mandatory): <br>Design AKS clusters (node pools, taints/tolerations, zoning, multi‑region DR), Azure CNI/Overlay networking, and ingress (NGINX/App Gateway).<br>Establish lifecycle practices for upgrades, autoscaling (HPA/VPA, Cluster Autoscaler), image management (ACR), and workload placement.<br>Integrate platform services (Key Vault, Managed Identities, Private Link) and ensure operational SLOs.<br>Lead modernization/migration for Windows/Linux workloads and data platforms; ensure resilience, cost efficiency, and operational readiness.<br>Establish BCDR strategy—RTO/RPO targets, automated recovery runbooks, DR rehearsals, and evidence packs.<br>Build observability: Azure Monitor, Log Analytics, Application Insights, synthetic checks, and incident runbooks.<br>Drive FinOps: tagging, showback/chargeback, rightsizing, reservations/savings plans, and lifecycle policies.<br>B. Infrastructure Security & Compliance <br>Implement Zero Trust across identity, device, network, and data: RBAC, PIM, Conditional Access/MFA, workload identities.<br>Design network security: NSG/ASG, Azure Firewall/WAF, micro‑segmentation, DDoS Protection, egress control, DNS security.<br>AKS Security (Mandatory): <br>Entra ID/RBAC integration, Pod Security Admission (PSA) baselines, Network Policies, secrets management and workload identity.<br>Container image scanning, supply‑chain security (Helm/OCI), baseline hardening, and Defender for Containers posture/threat protection.<br>Embed policy‑as‑code (Azure Policy/Blueprints) for guardrails, CIS/benchmarks, drift detection, and automated remediation.<br>Integrate Defender for Cloud and Microsoft Sentinel with tuned alerts, SOAR playbooks, and incident coordination.<br>Ensure compliance with enterprise policies and applicable standards (ISO 27001, SOC 2, GDPR/HIPAA where relevant).<br>C. Automation & DevOps (Shared)<br>Champion IaC using Terraform/Bicep—reusable modules, environment promotion, approvals in Azure DevOps/GitHub CI/CD.<br>Build image pipelines (Packer/Golden Images) and configuration baselines (DSC/Automanage).<br>Implement GitOps for AKS (Flux/Argo), pre‑deployment policy validation, and security scans.<br>D. Governance, Documentation & Stakeholder Management<br>Author reference architectures, standards, roadmaps, HLD/LLD/Technical Architecture Proposal, RACI, risk registers, and decision logs; enforce via design reviews.<br>Partner with platform engineering, security, app/dev, and risk/compliance to deliver secure‑by‑design outcomes and smooth operational handovers.<br>Mentor engineers/architects; lead threat modeling, resiliency reviews, incidents & escalations.<br> </p><p>Mandatory technical & functional skills<br>Infrastructure Core (Mandatory)<br>Azure subscriptions/management groups; CAF Landing Zones, hub spoke networking, ExpressRoute/S2S VPN.<br>Compute & OS: Windows Server/Linux, image management (Packer), VMSS, patching automation.<br>Storage & Data: disks/storage accounts, files/shares, backup/restore; integration with SQL MI/Cosmos DB (platform perspective).<br>Azure Kubernetes Service (AKS) – Mandatory: <br>Cluster design & lifecycle (upgrades, node pools, autoscaling, zoning, DR), Azure CNI/Overlay, service networking, ingress controllers.<br>Workload packaging & deployment (Helm/OCI), registry management (ACR), quotas/requests/limits, scheduling.<br>Observability (Container Insights, Prometheus/Grafana), capacity planning, and reliability practices.<br>Hybrid Integration: Entra ID/AD, GPO, MECM/Intune, identity sync, and on prem connectivity.<br>Infrastructure Security Core (Mandatory)<br>Identity security: RBAC, PIM, Conditional Access, workload identities; secure key/secret management (Key Vault/CMK).<br>Network security: NSG/ASG, Azure Firewall/WAF, micro segmentation, Private Link, DDoS Protection; egress/DNS controls.<br>AKS Security – Mandatory: <br>Entra ID/RBAC, PSA baselines, Network Policies, secrets via CSI/Key Vault, workload identity; container image scanning and policy enforcement (Gatekeeper/Kyverno).<br>Defender for Containers and Defender for Cloud posture/threat management; Sentinel SIEM/SOAR integration.<br>Compliance & governance: Azure Policy/Blueprints, CIS baselines, evidence collection/attestation.<br>Automation, Observability & Documentation<br>Terraform/Bicep, Azure DevOps/GitHub pipelines, GitOps for AKS (Flux/Argo).<br>Azure Monitor/Log Analytics/Kusto, action groups, runbooks, SRE practices (SLO/SLI, error budgets).<br>Strong documentation and executive ready communication via ArchiMate/Visio/PowerPoint.</p><p> </p>",
"InternalResponsibilitiesStr": "<p> Roles & responsibilities<br>Role Purpose<br>Design, build, and govern secure, resilient, and scalable cloud/hybrid infrastructure on Microsoft Azure, integrating on‑prem and platform services. The role blends Infrastructure Architecture & Operations with Infrastructure Security & Compliance, ensuring Zero Trust, policy‑as‑code, and operational excellence across identity, network, compute, containers (AKS), storage, backup, observability, and disaster recovery<br>Key Responsibilities<br>A. Infrastructure Architecture & Operations <br>Own the Azure landing zone (CAF‑aligned) and hub‑spoke network design (ExpressRoute/VPN, Private DNS, Private Endpoints).<br>Define standards for compute, storage, databases, and platform services (VM/VMSS, images, disks, files, backups, SQL/MI).<br>AKS Platform Ownership (Mandatory): <br>Design AKS clusters (node pools, taints/tolerations, zoning, multi‑region DR), Azure CNI/Overlay networking, and ingress (NGINX/App Gateway).<br>Establish lifecycle practices for upgrades, autoscaling (HPA/VPA, Cluster Autoscaler), image management (ACR), and workload placement.<br>Integrate platform services (Key Vault, Managed Identities, Private Link) and ensure operational SLOs.<br>Lead modernization/migration for Windows/Linux workloads and data platforms; ensure resilience, cost efficiency, and operational readiness.<br>Establish BCDR strategy—RTO/RPO targets, automated recovery runbooks, DR rehearsals, and evidence packs.<br>Build observability: Azure Monitor, Log Analytics, Application Insights, synthetic checks, and incident runbooks.<br>Drive FinOps: tagging, showback/chargeback, rightsizing, reservations/savings plans, and lifecycle policies.<br>B. Infrastructure Security & Compliance <br>Implement Zero Trust across identity, device, network, and data: RBAC, PIM, Conditional Access/MFA, workload identities.<br>Design network security: NSG/ASG, Azure Firewall/WAF, micro‑segmentation, DDoS Protection, egress control, DNS security.<br>AKS Security (Mandatory): <br>Entra ID/RBAC integration, Pod Security Admission (PSA) baselines, Network Policies, secrets management and workload identity.<br>Container image scanning, supply‑chain security (Helm/OCI), baseline hardening, and Defender for Containers posture/threat protection.<br>Embed policy‑as‑code (Azure Policy/Blueprints) for guardrails, CIS/benchmarks, drift detection, and automated remediation.<br>Integrate Defender for Cloud and Microsoft Sentinel with tuned alerts, SOAR playbooks, and incident coordination.<br>Ensure compliance with enterprise policies and applicable standards (ISO 27001, SOC 2, GDPR/HIPAA where relevant).<br>C. Automation & DevOps (Shared)<br>Champion IaC using Terraform/Bicep—reusable modules, environment promotion, approvals in Azure DevOps/GitHub CI/CD.<br>Build image pipelines (Packer/Golden Images) and configuration baselines (DSC/Automanage).<br>Implement GitOps for AKS (Flux/Argo), pre‑deployment policy validation, and security scans.<br>D. Governance, Documentation & Stakeholder Management<br>Author reference architectures, standards, roadmaps, HLD/LLD/Technical Architecture Proposal, RACI, risk registers, and decision logs; enforce via design reviews.<br>Partner with platform engineering, security, app/dev, and risk/compliance to deliver secure‑by‑design outcomes and smooth operational handovers.<br>Mentor engineers/architects; lead threat modeling, resiliency reviews, incidents & escalations.<br> </p><p>Mandatory technical & functional skills<br>Infrastructure Core (Mandatory)<br>Azure subscriptions/management groups; CAF Landing Zones, hub spoke networking, ExpressRoute/S2S VPN.<br>Compute & OS: Windows Server/Linux, image management (Packer), VMSS, patching automation.<br>Storage & Data: disks/storage accounts, files/shares, backup/restore; integration with SQL MI/Cosmos DB (platform perspective).<br>Azure Kubernetes Service (AKS) – Mandatory: <br>Cluster design & lifecycle (upgrades, node pools, autoscaling, zoning, DR), Azure CNI/Overlay, service networking, ingress controllers.<br>Workload packaging & deployment (Helm/OCI), registry management (ACR), quotas/requests/limits, scheduling.<br>Observability (Container Insights, Prometheus/Grafana), capacity planning, and reliability practices.<br>Hybrid Integration: Entra ID/AD, GPO, MECM/Intune, identity sync, and on prem connectivity.<br>Infrastructure Security Core (Mandatory)<br>Identity security: RBAC, PIM, Conditional Access, workload identities; secure key/secret management (Key Vault/CMK).<br>Network security: NSG/ASG, Azure Firewall/WAF, micro segmentation, Private Link, DDoS Protection; egress/DNS controls.<br>AKS Security – Mandatory: <br>Entra ID/RBAC, PSA baselines, Network Policies, secrets via CSI/Key Vault, workload identity; container image scanning and policy enforcement (Gatekeeper/Kyverno).<br>Defender for Containers and Defender for Cloud posture/threat management; Sentinel SIEM/SOAR integration.<br>Compliance & governance: Azure Policy/Blueprints, CIS baselines, evidence collection/attestation.<br>Automation, Observability & Documentation<br>Terraform/Bicep, Azure DevOps/GitHub pipelines, GitOps for AKS (Flux/Argo).<br>Azure Monitor/Log Analytics/Kusto, action groups, runbooks, SRE practices (SLO/SLI, error budgets).<br>Strong documentation and executive ready communication via ArchiMate/Visio/PowerPoint.</p><p> </p>",
"InternationalTravelRequired": null
},
"list_job": {
"Id": "30044504",
"Title": "Associate Director-GDC",
"JobType": null,
"Distance": 1779840000000,
"JobShift": null,
"Language": "US",
"WorkDays": null,
"JobFamily": null,
"Relevancy": 5,
"WorkHours": null,
"Department": null,
"HotJobFlag": false,
"PostedDate": "2026-05-27",
"StudyLevel": null,
"WorkerType": null,
"GeographyId": 300002240955238,
"JobFunction": null,
"JobSchedule": null,
"BusinessUnit": null,
"ContractType": null,
"ManagerLevel": null,
"Organization": null,
"TrendingFlag": false,
"workLocation": [
{
"Country": "IN",
"Region1": null,
"Region2": "Telangana",
"Region3": null,
"Building": null,
"Latitude": 17.44744,
"Longitude": 78.38366,
"LocationId": 300004849565533,
"PostalCode": "500081",
"TownOrCity": "Hyderabad",
"AddressLine1": "5th Floor, Tower 30, RMZ Hetero Nexity,",
"AddressLine2": "Hyderabad Knowledge City, Raidurga, Serilingampally, Hyderabad, Rangareddy, ",
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "Hyderabad - GDC"
}
],
"LegalEmployer": null,
"MediaThumbURL": null,
"WorkplaceType": "",
"BusinessUnitId": 300000002527011,
"OrganizationId": 300002582513969,
"PostingEndDate": null,
"LegalEmployerId": 300000002525371,
"PrimaryLocation": "Hyderabad, Telangana, India",
"WorkDurationYears": null,
"WorkplaceTypeCode": null,
"BeFirstToApplyFlag": true,
"WorkDurationMonths": null,
"otherWorkLocations": [],
"secondaryLocations": [
{
"Name": "Bangalore, Karnataka, India",
"Latitude": 12.96618,
"Longitude": 77.5869,
"CountryCode": "IN",
"GeographyId": 300002240961169,
"GeographyNodeId": 300002241670230,
"RequisitionLocationId": 300006888297708
}
],
"ShortDescriptionStr": "",
"requisitionFlexFields": [],
"DomesticTravelRequired": null,
"PrimaryLocationCountry": "IN",
"ExternalQualificationsStr": null,
"ExternalResponsibilitiesStr": null,
"InternationalTravelRequired": null
},
"detail_meta": {
"url": "https://ejgk.fa.em2.oraclecloud.com/hcmRestApi/resources/latest/recruitingCEJobRequisitionDetails?expand=all&onlyData=true&finder=ById;Id=%2230044504%22,siteNumber=CX_3",
"http_status": 200,
"content_type": "application/json",
"response_bytes": 19198
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/605180f8ca1e5a4b7236f15869ba77e9e9d718b1?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/019b9a6f-57a3-4cbf-b25a-f9c839f04f7eJSONGET https://api.bluedoor.sh/job-postings/v1/sources/23e21224-44fc-4b77-9fe1-8f1fdc6bff0dJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/605180f8ca1e5a4b7236f15869ba77e9e9d718b1/eventsJSON