Senior Director, Infrastructure

Looking to build your career and design your future? You have come to the right place. 

Summary
The Senior Director of Infrastructure is a critical enterprise technology executive responsible for the architecture, delivery, automation, and security of the organization's entire infrastructure ecosystem. This role leads the cloud modernization and automation program, with deep expertise in AWS Organizations governance, Infrastructure-as-Code (IaC), Governance-as-Code, Cloud PAM, FinOps, and next-generation networking and security architectures. The Senior Director also holds executive oversight of IT Service and Support operations, ensuring a modern, high-performing end-user experience across the business.

Reporting directly to the Chief Information Technology Officer, this leader operates with a high degree of financial accountability, executive communication fluency, and organizational influence that extends well beyond the scope of a Director-level role. The position is a combination of hands-on cloud engineering depth, enterprise governance leadership, cyber hygiene mastery, and the executive presence required to translate complex infrastructure strategy into clear business value for senior stakeholders. The role targets a multi-cloud environment with AWS as the primary platform and Azure as a secondary component.

Essential Functions
Cloud Modernization & Automation Leadership

• Design and own the enterprise cloud strategy across AWS (primary) and Azure (secondary), driving a scalable, automated, and secure multi-cloud operating model aligned to business objectives.

• Lead the design and implementation of a scalable AWS Organizations OU structure to support business unit growth, compliance, and governance — including Business Unit OUs, account vending automation, and organizational policy enforcement.

• Implement account-level guardrails, Service Control Policies (SCPs), Resource Control Policies (RCPs), and baseline configurations across all organizational accounts.

• Define and enforce tagging strategy, standard definitions, and account onboarding procedures to support ongoing manageability, cost allocation, and compliance reporting.

• Drive Infrastructure-as-Code (IaC) standardization using Terraform as the enterprise-standard toolchain, including module libraries, pipeline integration, SCP-based validation, and IaC-driven enforcement.

• Architect and deliver scalable AWS account and organizational automation, including account vending pipelines and automated security baseline validation.

• Implement advanced IAM V2 capabilities including MFA enforcement, RBAC, service account management, and hybrid identity federation.

• Lead IAM V3 / Cloud PAM architecture and delivery — encompassing privileged access workflows, jump server and AppStream design, break-glass implementation, role segregation, and dual-ID auditing.

• Oversee Cloud PAM backport activities including role segregation, dual-ID auditing, and alignment to least-privilege principles across all cloud environments.

Governance-as-Code & Policy Automation

• Define and operationalize the Governance-as-Code program, translating compliance and security controls into codified, automatically enforced policies.

• Implement SCP-driven enforcement, automated compliance validation, and continuous drift detection and reporting across the AWS Organization.

• Develop IAM policy-as-code frameworks and AWS service onboarding guardrails to ensure new services meet security and compliance baselines before production deployment.

• Own Security Alignment programs, integrating SCP, RCP, and IAM policy-as-code into a unified governance posture that supports audit readiness and regulatory compliance.

• Drive automated policy validation, security baseline testing, and tagging compliance enforcement across all cloud accounts.

NextGen Networking & Security Architecture

• Architect and manage advanced cloud and on-premises network infrastructure including Transit Gateway, Cloud WAN, and hybrid connectivity topologies.

• Lead Route 53 strategy including DNS architecture, private hosted zones, resolver rules, DNS security controls, and failover routing design.

• Design and implement NextGen networking and security architectures including network segmentation, micro-segmentation, and zero-trust network access patterns.

• Oversee firewall policy, WAF, VPC design, and inter-account routing to maintain a secure, scalable, and auditable network posture.

• Partner with the security organization to ensure network architecture aligns with threat modeling, compliance requirements, and incident response capabilities.

Cyber Posture, Hygiene & Security Leadership

• Own the organization's infrastructure cyber posture program, establishing and continuously improving security baselines, hardening standards, and vulnerability remediation SLAs.

• Lead implementation and operationalization of cloud-native and third-party security tooling including CSPM, CWPP, CNAPP, SIEM, and endpoint security platforms.

• Direct vulnerability management, patch cadence, configuration compliance, and security posture scoring programs across cloud and on-premises infrastructure.

• Champion a cyber hygiene culture within the infrastructure organization, embedding security review checkpoints into all deployment pipelines and change management processes.

• Lead infrastructure response activities in partnership with the Security Operations Center (SOC) during active incidents, ensuring rapid containment and evidence preservation.

• Develop and maintain infrastructure security runbooks, disaster recovery playbooks, and business continuity procedures aligned to organizational risk tolerance.

• Drive security-by-design principles across all architecture decisions, ensuring new capabilities do not introduce unacceptable increases to the organization's attack surface.

• Maintain continuous awareness of emerging threats, CVEs, and attack vectors relevant to cloud, network, and endpoint infrastructure — translating intelligence into actionable hardening activities.

FinOps & Cloud Financial Management

• Design and lead an embedded FinOps operating cadence, establishing cost visibility, accountability, and optimization as ongoing operational disciplines.

• Evaluate, select, and lead migration to a FinOps platform supporting cost allocation, anomaly detection, and chargeback/showback reporting.

• Define and enforce cost allocation taxonomy and tagging alignment across AWS and Azure environments to enable accurate unit economics reporting.

• Own MAP credit tracking and optimization, maximizing cloud provider program value during migration and modernization phases.

• Provide executive-level cloud spend reporting, forecasting, and variance analysis to the CIO, CFO, and relevant business unit leaders.

• Establish cloud unit cost targets and right-sizing cadences across compute, storage, data transfer, and managed services.

IT Service & Support Leadership

• Provide executive leadership over the IT Service and Support organization, with direct oversight of the Service Desk Manager and supervisory team.

• Set the strategic vision for a modern, user-centric IT service delivery model incorporating self-service capabilities, AI-assisted triage, and proactive support practices.

• Establish and govern ITSM processes including incident management, problem management, change control, and service catalog management.

• Define and track service-level agreements (SLAs), key performance indicators, and customer satisfaction metrics for the IT Service and Support function.

• Champion continuous improvement within the support organization, leveraging data and user feedback to drive measurable improvements in resolution speed, first-contact resolution rate, and user satisfaction scores.

• Ensure the service team is equipped with modern tooling, runbooks, and training to support a growing and evolving workforce.

IT Strategy & Executive Leadership

• Develop and communicate a multi-year infrastructure modernization roadmap aligned to business strategy, articulating technology investments in terms of business risk, value, and competitive positioning.

• Serve as a trusted advisor and infrastructure subject matter authority to the CIO, CTO, CISO, and executive business leaders.

• Lead organizational design, workforce planning, and talent development for a high-performing infrastructure organization spanning cloud engineering, network, security operations, and service delivery.

• Build a culture of accountability, continuous learning, psychological safety, and operational excellence across infrastructure and service teams.

• Represent the infrastructure function in board-level briefings, due diligence engagements, and external audit or compliance reviews as required.

Financial Management & Budget Accountability

• Own the infrastructure and IT service budget, including capital and operating expenditures for cloud, software licensing, hardware, and staffing.

• Develop annual budget proposals, mid-year forecasts, and variance analyses with the rigor and fluency expected of a senior technology executive.

• Evaluate and negotiate enterprise vendor agreements, cloud provider contracts, and managed service arrangements to optimize value and control costs.

• Establish financial governance processes ensuring infrastructure investments are tracked, justified, and aligned to approved business cases.

Cross-Enterprise Collaboration & Stakeholder Engagement

• Partner with Engineering, Product, Finance, Legal, and Operations leadership to ensure infrastructure capabilities support current and future business requirements.

• Communicate complex technical architecture and risk tradeoffs to non-technical executives with clarity, confidence, and business context.

• Lead steering committees and governance forums that align infrastructure investments across business units and functional areas.

• Cultivate relationships with key technology vendors, cloud providers, and industry peers to maintain awareness of innovation opportunities and emerging best practices.

Education & Experience
Required

• 18+ years of progressive IT infrastructure experience, including 15+ years in a senior leadership role with direct reports at multiple organizational levels.

• Demonstrated expertise in AWS cloud architecture, AWS Organizations governance, SCP/RCP policy design, and multi-account operating models.

• Hands-on proficiency with Terraform and IaC pipeline design; experience enforcing IaC standards and policy-as-code toolchains across engineering organizations.

• Deep knowledge of cloud networking including Transit Gateway, VPC design, Route 53, and hybrid connectivity models.

• Proven experience designing and operating Cloud PAM programs including privileged access workflows, jump server infrastructure, and break-glass procedures.

• Strong background in cyber hygiene program design, vulnerability management, CSPM/CNAPP tooling, and infrastructure security posture improvement.

• Experience leading FinOps programs including cloud cost governance, tagging strategy, and FinOps platform selection and implementation.

• Track record of leading high-performing infrastructure and IT service organizations through significant modernization and automation programs.

• Executive-level communication skills with demonstrated ability to present infrastructure strategy and risk to C-suite and board-level audiences.

• Experience managing multi-million dollar infrastructure budgets with full accountability for capital and operating expenditures.

Skills & Competencies
Cloud Architecture & Automation

• Expert-level command of AWS Organizations, multi-account design, account vending, SCP/RCP frameworks, and Control Tower or equivalent landing zone implementations.

• Advanced Terraform proficiency: module design, remote state management, CI/CD pipeline integration, and policy-as-code using OPA or Sentinel.

• Strong grasp of Transit Gateway architectures, Route 53 DNS design, VPC peering and sharing, PrivateLink, and AWS network security services.

Security & Governance

• Deep understanding of IAM policy-as-code, least-privilege design, identity federation, and Cloud PAM lifecycle management including break-glass and privileged session recording.

• Proven ability to build Governance-as-Code programs that translate compliance obligations into automated, auditable, and continuously enforced controls.

• Expertise in cyber posture management: CSPM, CWPP, SIEM integration, endpoint hardening, and vulnerability prioritization frameworks.

Financial & Operational Leadership

• Ability to develop and manage large infrastructure budgets with rigor, transparency, and alignment to business priorities.

• Experience deploying FinOps operating models with measurable cloud cost optimization outcomes.

• Track record of delivering against SLAs, OKRs, and operational KPIs at enterprise scale.

Executive Presence & Communication

• Ability to distill complex infrastructure and security topics into concise, compelling narratives for board, C-suite, and business unit stakeholders.

• Skilled in building cross-functional coalitions, managing organizational change, and influencing without direct authority.

• Demonstrated success leading organizations through significant transformation including cloud migrations, security uplift programs, and organizational redesign.

If you like working with a growing close knit team and helping home owners design the home of their dreams, come build your career with us!

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, individual with disabilities, veteran status, gender identity or national origin.