Domain Architect - Ansible, Terraform, GITHub Job Details

Domain Architect - Ansible, Terraform, GITHub

Netherlands

Job Description

Domain Architect - Ansible, Terraform, GITHub

Amsterdam, Noord-Holland

Job Summary

Job Description : Familiarity with logging and monitoring stacks (Kafka, Elasticsearch, Prometheus/Grafana)

Job Responsibilities : Design and operate the interactive access service based on Apache Guacamole, containerized on OpenShift, translating HTTPS to native protocols (SSH, RDP, SQL, VNC) Build and maintain the file transfer service using S3 presigned URLs with time-bound expiry and tenant-scoped bucket/path access controls Engineer tenant isolation within shared SaaS-style deployments, ensuring each consuming team only accesses their own targets through predefined connections and network-level controls Design credential lifecycle automation: retrieval/seeding at session start, reset/removal at session stop, integrated with Privileged Access Management and credential stores Build session recording and logging pipelines shipping audit data to tenant-specified log repositories (Kafka, S3, Git) Implement metering and billing event generation for per-tenant consumption tracking Develop CI/CD pipelines for automated platform lifecycle management: provisioning, start, stop, decommissioning (immutable infrastructure / cattle model) Collaborate with security teams to refine detection scenarios every sprint and maintain audited control reporting (Seven IT Risk Controls, COBIT framework) Define and monitor SLIs/SLOs: start latency, session success rate, recording completeness, tenant isolation violations, credential reset compliance

Skill Requirement : 3+ years hands-on experience with Kubernetes/OpenShift in production (deployment, networking, RBAC, persistent storage, operators) Proficiency in Go and Python for platform service development, automation, and tooling Strong Linux systems engineering (SSH, networking, security hardening, systemd) Container orchestration and CI/CD pipeline design (Helm, ArgoCD, Tekton, or equivalent) S3-compatible object storage (MinIO or AWS S3): presigned URLs, bucket policies, IAM integration Azure DevOps for backlog management, CI/CD pipelines, and release workflows Infrastructure as Code: Terraform, Ansible, or equivalent Understanding of security principles: zero-trust, defence-in-depth, protocol insulation, MFA, credential management Experience with IAM systems, directory services integration, and conditional access policies Familiarity with logging and monitoring stacks (Kafka, Elasticsearch, Prometheus/Grafana)

Job Summary : Architect for Devops and Secure access and File transfer

Other Requirement : VMware Cloud Foundation (VCF) experience or familiarity with VCF-based infrastructure Experience with Privileged Access Management tooling (CyberArk, HashiCorp Vault) Experience with Apache Guacamole or similar remote access gateway technologies RDP and Windows Server administration knowledge Experience in regulated financial services environments (DORA, NIS2, or equivalent regulatory frameworks) Understanding of network segmentation and firewall rule management SOC2 Type 2 reporting or equivalent security assurance frameworks Experience designing metering/billing event pipelines for internal platform products

Key Responsibilities

1. Architect And Design Cloud-Based Solutions Using Ansible And Terraform, Ensuring Alignment With Defined Scope And Quality Standards For Product And Sustenance Delivery.
2. Train And Mentor Team Members On Best Practices For Ansible And Terraform, Ensuring A Skilled Workforce That Can Effectively Deliver Solutions And Mitigate Delivery Risks.
3. Gather And Analyze Specifications From Clients, Delivering Tailored Solutions That Leverage Cloud Technologies And Meet Organizational Requirements.
4. Stay Updated With Emerging Technologies And Industry Trends, Integrating New Tools And Methodologies Into Current Projects To Enhance Solution Quality And Effectiveness.

Skill Requirements

1. Proficient In Ansible And Terraform For Infrastructure As Code Implementations.
2. Solid Understanding Of Ci/Cd Tools Such As Jenkins And Cloud Build Processes.
3. Familiarity With Version Control Systems Like Git And Github.
4. Strong Analytical Skills For Gathering And Interpreting Client Specifications.

Other Requirements

1. Optional Certifications: Hashicorp Certified: Terraform Associate, Red Hat Certified Engineer (Rhce), Or Relevant Cloud Certifications (Aws, Azure, Gcp)

Information at a Glance

Why HCLTech?

At HCLTech, you'll supercharge your potential. You'll find your career. And you'll find your spark. All at a place that knows that helping its customers stay on top starts by putting its people first.

HCLTech is a global technology company, home to more than 226,300 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. Consolidated revenues as of 12 months ending December 2025 totaled $14.5 billion.

23 Benefits At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to: https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg Industry-benchmarked compensation https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg Best-in-class healthcare benefits https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg Personal time off https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg Maternity and paternity benefits https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg Access to skills / higher education programs/resources https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg Discounts on products and services via Benefit Box https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg Participate in CSR programs and live life with a purpose https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg Opportunities to grow and advance your career Note: The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.

Provider	Description	Enabled
Vimeo	Vimeo is a video hosting, sharing, and services platform focused on the delivery of video. Opting out of Vimeo cookies will disable your ability to watch or interact with Vimeo videos. Cookie Policy Privacy Policy Terms and Conditions	Consent to cookies from provider Vimeo
YouTube	YouTube is a video-sharing service where users can create their own profile, upload videos, watch, like, and comment on videos. Opting out of YouTube cookies will disable your ability to watch or interact with YouTube videos. Cookie Policy Privacy Policy Terms and Conditions	Consent to cookies from provider YouTube

Provider	Description	Enabled
Google Analytics	Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Cookie Information Privacy Policy Terms and Conditions	Consent to cookies from provider GoogleAnalytics
Google Tag Manager	Google Tag Manager is a tag management system for conversion tracking, site analytics, remarketing, and more. Privacy Policy Terms and Conditions	Consent to cookies from provider GoogleTagManager
LinkedIn	LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions	Consent to cookies from provider LinkedIn