Lead Automation Architect

O projekcie: Tech stack:- Azure (public cloud) and on‑prem infrastructure- Hybrid & cloud‑agnostic architectures- OpenTofu / Terraform (Infrastructure as Code)- GitLab (self‑hosted), GitLab CI/CD- Kubernetes (AKS and on‑prem)- Linux (enterprise environments)- Active Directory, SSO, identity federation- Observability platforms (e.g. ELK stack)- Networking, security, IAM, DNS- .NET modernization and containerizationProject description: You will act as the overall technical authority and delivery lead for a large‑scale automation and platform transformation initiative. The project focuses on building a consistent, automation‑first, hybrid infrastructure platform spanning Azure and on‑prem environments. The role combines architecture ownership, technical leadership, and hands‑on contribution, with a strong emphasis on standardization, security, observability, and long‑term maintainability. About Spyrosoft Spyrosoft is an authentic, cutting-edge software engineering company, established in 2016. In 2021 and 2022, we were among the fastest growing technology companies in Europe, according to the Financial Times. We were founded by a group of tech experts with established backgrounds in software engineering, who created an ‘engineer-to-engineer’ workplace, powered by enthusiasm, fairness and authentic relationships. Having a unique offering, which bridge the gap between technology and business, we specialise in technology solutions for industry 4.0, automotive, geospatial, healthcare & life sciences, employee experience & education and financial services industries. Wymagania: - 8–10+ years of experience in infrastructure, platform, or automation architecture roles- Strong hands‑on background in Azure, with proven experience in hybrid or on‑prem migration projects- Demonstrated ability to design cloud‑agnostic architectures spanning networking, security, IAM, Kubernetes, observability, and CI/CD- Strong Infrastructure‑as‑Code expertise (OpenTofu / Terraform), with the ability to review and assess existing templates (e.g. Azure Bicep)- Experience designing and delivering automation‑first platforms in enterprise or regulated environments- Proven ability to lead architecture decisions, manage technical risk, and drive cross‑team alignment- Excellent stakeholder communication skills and strong documentation mindset- Hands‑on, delivery‑oriented approach with ownership mentalityNice to have:- Experience automating load balancers and firewalls (e.g. F5 BIG‑IP, Barracuda)- Background in security tooling evaluation and proof‑of‑concept execution- Experience with observability platforms beyond core logging (APM, security modules)- Exposure to large‑scale identity and access management transformations- Experience in using AI tools in day‑to‑day workflow Codzienne zadania: - Own end‑to‑end architecture decisions and provide technical direction across all automation and infrastructure streams - Ensure architectural consistency across platform, Kubernetes, networking, security, and identity layers - Coordinate technical execution across multiple engineering teams and manage architectural dependencies - Lead proof‑of‑concept migrations from cloud to on‑prem data centers - Drive OpenTofu adoption and infrastructure pipeline standardization across the organization - Lead the design and delivery of SSO and identity federation integrated with existing Active Directory environments - Define Linux‑to‑Windows / Active Directory integration patterns across the infrastructure estate - Design and oversee automated key, secret, and credential rotation strategies - Lead observability platform architecture, including logging, APM, security modules, and agent management - Oversee .NET modernization and containerization for Kubernetes deployments - Lead evaluation, selection, and replacement of infrastructure and security tooling - Report technical progress, risks, and decisions to governance and senior stakeholders