Role Overview
We are seeking a Senior Azure Architect to join our Toronto-based Managed Service Provider team. In this role, you will lead the design, implementation, and management of Azure cloud environments for our clients, while also supporting core IT infrastructure. You’ll leverage your deep expertise in Microsoft Azure to enhance our cloud offerings and ensure robust, scalable solutions. This is a client-facing position in a hybrid work setting (approximately 3 days per week on-site in Markham, ON), so strong communication and interpersonal skills are as important as technical prowess. The ideal candidate has a proven track record in Azure administration and can seamlessly switch between cutting-edge cloud projects and traditional MSP support duties.
Key Responsibilities
Azure Infrastructure Management: Deploy, configure, and manage Azure IaaS resources including virtual machines (VMs), virtual networks (VNets), subnets, and network security groups to meet business and client needs. Ensure high availability and optimal performance of cloud resources, implementing load balancing and scalability as needed.
Advanced Azure PaaS & Services: Design and maintain solutions using advanced Azure PaaS services such as Azure Functions, App Services, Azure Monitor, Storage Accounts/Data Lake, Azure SQL Database, Managed Identities, and Application Gateways. This includes monitoring these services for performance and reliability, and leveraging Azure Monitor and Log Analytics to proactively identify and resolve issues.
DevOps & Automation: Develop and manage CI/CD pipelines using Azure DevOps. Implement Infrastructure-as-Code automation (using ARM templates, Bicep, or Terraform) to provision and configure Azure resources in a repeatable manner. Use scripting (PowerShell, Azure CLI) to automate routine tasks and deployments, improving efficiency and consistency across environments.
Cloud Migrations: Plan and execute on-premises-to-Azure migrations for client systems. Assess existing on-prem infrastructure, design target Azure architectures, and utilize Azure Migrate and related tools to move VMs, databases, and applications with minimal downtime. Ensure successful cutover and post-migration validation for each project.
Azure Virtual Desktop (AVD): Deploy and manage Azure Virtual Desktop environments to provide secure remote desktop solutions for users. Configure host pools, session hosts, FSLogix user profiles, and virtual network integration for AVD, and troubleshoot connectivity or performance issues in the virtual desktop infrastructure.
Security & Identity Management: Oversee cloud security and identity for client Azure environments. Administer Entra ID to manage users, groups, and application access. Implement Role-Based Access Control (RBAC) and ensure proper use of managed identities for Azure resources to adhere to the principle of least privilege. Monitor security logs and apply Azure Security Center recommendations to maintain a strong security posture.
Microsoft 365 Integration: Support and integrate Microsoft 365 services with Azure. This includes familiarity with Exchange Online, SharePoint Online, Teams, and Intune device management in relation to Entra ID for identity and access management. Help configure hybrid connectivity (e.g., Azure AD Connect) and troubleshoot issues that span on-prem AD, Entra ID, and Microsoft 365.
Client Support: Serve as a senior technical advisor in a client-facing capacity, addressing client inquiries and providing guidance on cloud best practices. Communicate clearly with both technical and non-technical stakeholders. When needed, step in to assist with traditional MSP tasks – such as Windows server administration, basic network troubleshooting, or data backups – to ensure comprehensive support for our clients’ IT environments.
Required Qualifications & Skills
Extensive IT Experience: 7+ years in IT infrastructure/support roles (systems administration, network administration, or cloud engineering). At least 3-5 years of hands-on experience managing Azure environments in production, including deploying and supporting Azure-based solutions for end-users or customers.
Azure Expertise: In-depth knowledge of core Azure services. Must be highly proficient with Azure Virtual Machines, virtual networking (VNets, subnets, NSGs, VPN gateways), and storage solutions (Blob, Files, Disks). Experience with Azure PaaS offerings is required, for example, building or administrating solutions with Azure Functions, App Services, Event Hubs, Azure SQL, Azure Storage/Data Lake, and configuring services like Application Gateway or Azure Front Door. Familiarity with using Azure Monitor and Application Insights for diagnostics is expected.
Cloud Security & Identity: Strong understanding of cloud security best practices and identity management. Experience administering Entra ID (user and group management, conditional access, MFA) and implementing security controls such as RBAC, network security rules, and web application firewalls. Ability to manage Managed Identities and service principals for secure inter-service authentication.
DevOps & IaC Skills: Demonstrated ability to streamline operations using DevOps and code. Hands-on experience creating or maintaining CI/CD pipelines (Azure DevOps or GitHub Actions) for deploying infrastructure or applications. Proficiency in Infrastructure-as-Code tools – Azure Resource Manager (ARM) templates, Bicep, or Terraform – to automate Azure resource provisioning. Scripting skills in PowerShell and/or Azure CLI are required for automation and configuration tasks.
Azure Migrations & AVD: Practical experience with migrating on-premises systems to Azure. Comfortable assessing legacy environments (AD, file servers, databases, etc.) and using Azure migration tools to move them to cloud. Experience deploying and managing Azure Virtual Desktop in a production setting is highly desirable, including knowledge of sizing VMs for AVD, managing images, and user profile management.
Microsoft 365 Ecosystem: Solid understanding of Microsoft 365 cloud services and their administration – specifically Exchange Online (email), SharePoint/OneDrive (collaboration), Teams, and Intune (device management). Knowledge of how Microsoft 365 integrates with Azure AD is needed to troubleshoot identity and access issues across hybrid environments.
Education: Bachelor’s degree in Computer Science, Information Technology, or a related field is preferred. Equivalent work experience will be considered.
Certifications: Microsoft Certified: Azure Administrator Associate (AZ-104) is strongly preferred for this role, as it validates Azure admin skills in computing, storage, and security. Additional certifications are a plus, especially Azure Solutions Architect Expert (AZ-305) for advanced Azure design, or Azure DevOps Engineer Expert (AZ-400) to showcase DevOps and automation expertise.
Work Environment & Location
Location: Toronto, ON (Greater Toronto Area). Primary office in Markham, with clients across the Toronto region.
Hybrid Work Arrangement: This role requires ~3 days per week on-site in the Markham office with the remaining days working remotely. Candidates should be within commuting distance to Markham and prepared for occasional travel to local client sites.
Managed Services Setting: Join a collaborative team in a Managed Service Provider environment, where priorities can shift based on client needs. You’ll manage multiple client environments and projects, so strong organizational skills and adaptability are important.
Client-Facing Role: As a senior architect interfacing with clients, expect regular meetings (in-person and virtual) to discuss project plans, report on progress, and handle support escalations. The ability to build rapport and trust with clients is key to success. We foster a culture of excellent customer service in addition to technical excellence.
Tools & Resources: All necessary tools for remote connectivity and management will be provided (e.g., laptop, VPN access, Azure admin portals). The company invests in training and keeping your skills current – you’ll have access to Azure training resources and will be encouraged to pursue relevant certifications and attend industry events.
Join Our Team: If you are a seasoned Azure Architect with a passion for Azure cloud technology and a knack for solving diverse IT challenges, we’d love to hear from you. This is an opportunity to take a lead role in advancing our Azure practice and make a significant impact for a variety of businesses. Apply today to become a key player in our innovative, growth-oriented MSP team!
