Lead Cloud Technical Architect - GCP

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Position Summary

We are seeking a senior Cloud Architect Lead with deep Google Cloud Platform (GCP) expertise to design and govern enterprise cloud architectures for large-scale transformation programs. This role requires 5+ years of cloud architecture experience with 3+ years of hands-on GCP specialization. The successful candidate will own the design of GCP landing zones, establish architecture standards, and provide technical leadership to engineering teams. You will drive architecture decisions across compute, networking, security, data, and observability domains while mentoring engineers and ensuring alignment with cloud best practices, organizational standards, and security/compliance requirements.

Key Responsibilities

• GCP Landing Zone Design & Governance: Design and govern enterprise GCP landing zone architecture including organization hierarchy, folder structures, project organization, and shared services. Establish architecture standards, policies, and guardrails to ensure consistent, secure, scalable cloud environments.

• Cloud Architecture Design Leadership: Lead the design of target cloud architectures for migration programs, spanning compute, networking, storage, databases, and application platforms. Make critical architecture decisions balancing performance, cost, security, and operational requirements.

• Project Hierarchy & Organization Design: Design GCP project hierarchy, resource organization, and shared VPC architectures. Establish patterns for multi-team, multi-environment deployments with clear isolation, governance, and resource management.

• Networking Architecture: Design VPC, Shared VPC, and hybrid connectivity architectures. Define network segmentation, routing strategies, load balancing patterns, Cloud NAT configurations, and network security controls. Ensure network scalability and high availability.

• Identity & Access Management (IAM) Strategy: Design IAM hierarchies, service accounts, and role-based access control (RBAC) frameworks. Establish least-privilege principles, cross-environment access patterns, and identity federation strategies.

• Security Baseline & Compliance: Design security baselines including KMS key management, Secret Manager configuration, Cloud Armor policies, VPC Service Controls, and security monitoring. Ensure architectures meet compliance requirements (SOC 2, HIPAA, PCI-DSS, regulatory standards).

• Compute Architecture (GKE & GCE): Design container and virtual machine deployment architectures. Establish GKE cluster designs, node configurations, workload identity, and auto-scaling patterns. Define GCE image management and VM deployment strategies.

• Data Platform Architecture: Design Cloud SQL, Cloud Storage, and data warehouse architectures. Establish data isolation patterns, backup/disaster recovery strategies, and cost optimization approaches for data platforms.

• Observability & Monitoring Design: Architect Cloud Logging, Cloud Monitoring, and observability solutions. Design logging centralization, metric collection strategies, alerting policies, and dashboarding approaches for operational visibility.

• Hybrid & Multi-Cloud Connectivity: Design hybrid connectivity solutions including Cloud Interconnect, VPN, and service mesh patterns. Establish patterns for on-premises integration, DNS resolution, and traffic management.

• Infrastructure-as-Code & Automation: Champion infrastructure-as-code practices using Terraform. Design reusable modules, deployment patterns, and CI/CD integration for infrastructure automation across environments.

• Migration Architecture Design: Design cloud migration architectures for lift-and-shift, re-platforming, and refactoring scenarios. Establish migration patterns, cutover strategies, and validation approaches for infrastructure and applications.

• Technical Leadership & Mentoring: Provide technical leadership to engineering teams. Mentor cloud engineers on GCP best practices, architecture patterns, and technical decision-making. Conduct architecture reviews and design discussions.

• Architecture Review & Quality Assurance: Review infrastructure code, designs, and implementations against architecture standards. Ensure adherence to security, performance, cost, and operational excellence principles. Drive continuous improvement.

• Cost Optimization & Performance Tuning: Design cost-optimization strategies leveraging GCP pricing, committed use discounts, and resource optimization. Define performance baselines, establish tuning practices, and drive continuous optimization.

• Documentation & Knowledge Transfer: Document architecture decisions, design patterns, and operational runbooks. Create architecture diagrams, design guides, and technical documentation for teams and stakeholders.

• Stakeholder Communication & Alignment: Communicate architecture designs to technical and non-technical stakeholders. Present architecture trade-offs, recommendations, and risk mitigation strategies. Ensure alignment with business and technical requirements.

Required Qualifications

• Minimum 5 years of professional cloud architecture experience

• Minimum 3+ years of hands-on Google Cloud Platform (GCP) architecture and implementation experience

• Deep expertise in GCP core services including Compute Engine (GCE), Google Kubernetes Engine (GKE), Cloud SQL, Cloud Storage, and networking

• Expert-level knowledge of GCP networking (VPC, Shared VPC, Cloud NAT, Load Balancing, Cloud Armor, Cloud Interconnect, Cloud VPN)

• Strong understanding of IAM, KMS, Secret Manager, and GCP security services and best practices

• Proficiency with infrastructure-as-code tools, particularly Terraform, for GCP resource management

• Experience designing observability solutions using Cloud Logging, Cloud Monitoring, and related tools

• Demonstrated experience designing and implementing enterprise cloud architectures at scale

• Strong understanding of cloud security, compliance frameworks, and risk management

• Excellent communication skills with ability to explain complex technical concepts to diverse audiences

• Experience mentoring and providing technical leadership to engineering teams

Preferred Qualifications & Certifications

• Google Cloud Certified — Professional Cloud Architect ⭐

• Google Cloud Certified — Professional Cloud Network Engineer

• Google Cloud Certified — Professional Cloud Security Engineer

• Google Cloud Certified — Professional Data Engineer

• Google Cloud Certified — Cloud Digital Leader

• Experience with Kubernetes and container orchestration at scale

• Experience with CI/CD pipelines and DevOps practices

• Experience in financial services, healthcare, or enterprise sectors with strict compliance requirements

Workplace type:

About NTT DATA
NTT DATA is a $30+ billion business and technology services leader, serving 75% of the Fortune Global 100. We are committed to accelerating client success and positively impacting society through responsible innovation. We are one of the world’s leading AI and digital infrastructure providers, with unmatched capabilities in enterprise-scale AI, cloud, security, connectivity, data centers and application services.  Our consulting and industry solutions help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have experts in more than 50 countries. We also offer clients access to a robust ecosystem of innovation centers as well as established and start-up partners. NTT DATA is part of NTT Group, which invests over $3 billion each year in R&D.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Third parties fraudulently posing as NTT DATA recruiters 

NTT DATA recruiters will never ask job seekers or candidates for payment or banking information during the recruitment process, for any reason. Please remain vigilant of third parties who may attempt to impersonate NTT DATA recruiters—whether in writing or by phone—in order to deceptively obtain personal data or money from you. All email communications from an NTT DATA recruiter will come from an @nttdata.com email address. If you suspect any fraudulent activity, please contact us.