While technology is the heart of our business, a global and diverse culture is the heart of our success. We love our people and we take pride in catering them to a culture built on transparency, diversity, integrity, learning and growth.
If working in an environment that encourages you to innovate and excel, not just in professional but personal life, interests you- you would enjoy your career with Quantiphi!
About Quantiphi
Quantiphi is an award-winning Applied AI and Big Data software and services company, driven by a deep desire to solve transformational problems at the heart of businesses. Our signature approach combines groundbreaking machine-learning research with disciplined cloud and data-engineering practices to create breakthrough impact at unprecedented speed.
Quantiphi Has Seen 2.5x Growth YoY Since Its Inception In 2013, We Don’t Just Innovate - We Lead. Headquartered In Boston, With 4,000+ Quantiphi Professionals Across The Globe. As An Elite/Premier Partner For Google Cloud, AWS, NVIDIA, Snowflake, And Others, We’ve Been Recognized With
Be part of a trailblazing team that’s shaping the future of AI, ML, and cloud innovation. Your next big opportunity starts here!
For more details, visit: Website or LinkedIn Page.
Role Summary
We’re looking for a hands-on Google Cloud Architect to design and bootstrap a scalable, secure, and resilient GCP foundation that our engineering teams can confidently build on. You’ll own the core landing zone architecture (network, org structure, IAM, guardrails), lead reference implementations, and partner with security, platform, data, and app teams to evolve our cloud operating model.
What You’ll Do
● Design & Build the GCP Foundation
o Define organization structure (folders, projects), naming/labeling, resource hierarchy, billing and quotas.
o Implement a Hub-and-Spoke VPC architecture, Shared VPC, Private Service Connect, Cloud NAT, and secure ingress/egress patterns.
o Establish network segmentation, hierarchical firewall policies, perimeter controls (VPC SC), and DNS strategy.
● Identity & Access (IAM) at Scale
o Build least-privilege IAM with custom roles, service accounts, workload identity federation, and group-based access.
o Implement policy-as-code and Organization Policies for consistent guardrails.
● Fault-Tolerant, Well-Architected Designs
o Architect multi-zone and multi-region patterns for GKE/Compute/Serverless; DR/RTO/RPO strategies; data durability and backup policies.
o Create resilience playbooks (circuit breakers, retries, blue/green & canary, zonal/region failover).
● Observability & Operations
o Implement a logging, metrics, and tracing stack with Cloud Logging/Monitoring, uptime checks, SLOs/SLIs, alerting, dashboards.
o Define golden signals, distributed tracing standards, error budgets, and operational runbooks.
● Project Design/Build/Management
o Lead project templates and blueprints (Terraform/Deployment Manager), CI/CD integration, and environment promotion workflows.
o Run architecture reviews, threat modeling, and cost/perf trade-off analyses.
● Enablement & Governance
o Stand up CICD + IaC pipelines, artifact management, and baseline security scanning.
o Partner with SecOps to embed CSPM and continuous compliance (CIS, NIST, SOC 2).
o Mentor engineers; publish reference architectures and how-to guides.
What Good Looks Like (6 Month Outcomes)
● A production-ready GCP landing zone with repeatable project factory patterns.
● Shared services and network perimeters in place; clear service-to-service communication patterns.
● Observability baselines (SLOs, golden dashboards, alert routing) across key services.
● Documented DR patterns with tested failover runbooks.
● 70–90% of new infra provisioned via Terraform modules and validated pipelines.
● Measurable improvements in security posture, cost visibility, and time-to-environment.
Required Qualifications:-
● 7+ years designing and building on public cloud (3+ on Google Cloud Platform).
● Deep expertise in Cloud Networking: VPC/Shared VPC, subnetting, Cloud NAT, Cloud Router, Private Service Connect, VPN/Interconnect, DNS, firewall policies, VPC SC.
● Strong IAM design at enterprise scale: org policies, custom roles, SA lifecycle, workload identity, secrets management.
● Proven project design/build/management: templating (Terraform), CI/CD integration, environment strategy (dev/test/stage/prod).
● Observability: Cloud Logging/Monitoring, tracing (OpenTelemetry), SLO/SLI design, alerting strategy. ● Fault tolerance & reliability engineering: multi-zone/region designs, DR strategies, backup/restore, chaos/failover testing.
● Hands-on with Terraform, Git, CI/CD (Cloud Build/GitHub Actions/Jenkins), and one scripting language (Python/Go/Bash).
● Strong communicator who can lead design docs, ADRs, and cross-team design reviews.
Nice-to-Have:-
● Certifications: Google Professional Cloud Architect, Professional Cloud Network Engineer, Professional DevOps Engineer.
● Experience with GKE (autoscaling, node pools, HPA/VPA), Anthos, or serverless (Cloud Run/Functions).
● Security tools: Security Command Center, DLP, KMS/HSM.
● Data-plane familiarity: Pub/Sub, BigQuery, Dataflow, Spanner/Cloud SQL high availability patterns.
● FinOps: budget governance, labels/tags, cost allocation and optimization.
Tech Stack You’ll Touch:-
● Core GCP: Resource Manager, IAM, VPC/Shared VPC, Cloud DNS, Cloud NAT, Cloud Load Balancing, PSC, Interconnect/VPN, Org Policies, VPC SC
● Compute/Platform: GKE, Cloud Run, GCE, MIGs, Autoscaling, Cloud Build, Artifact Registry
● Data/Resilience: Cloud Storage, Cloud SQL, Spanner, Pub/Sub, Backup/DR tools
● Observability: Cloud Logging/Monitoring, Trace, Error Reporting, OpenTelemetry
● IaC & Tooling: Terraform, Git, Policy-as-Code (OPA/Conftest), Secret Manager
ATS Match is available
1) Upload your resume. 2) Open any job and click Check ATS Match to see your fit score.
Sign in to check your resume match