Track Lead - JBoss Application Server, Apache Tomcat
India
Apply now
Job Description
Track Lead - JBoss Application Server, Apache Tomcat
Noida, Uttar Pradesh

Job Summary

We are looking for a seasoned Senior Middleware Lead to own and drive our strategic migration of on-premises middleware infrastructure to Google Cloud Platform (GCP). The candidate will bring hands-on expertise across key middleware technologies — IBM MQ, Apache Tomcat, Apache HTTP Server / ActiveMQ / Camel, Apigee API Gateway, TIBCO BusinessWorks / EMS — and translate that expertise into robust cloud-native designs, enabling the organisation to achieve agility, resilience, and cost efficiency on GCP. This is an end-to-end ownership role: from current-state assessment through HLD/LLD authoring, hands-on migration execution, and post-go-live steady-state operations.

Key Responsibilities

Current-State Assessment & Migration Planning • Conduct a comprehensive discovery of all on-premises middleware: IBM MQ queues/channels/topics, Tomcat application deployments, Apache HTTP virtual-host configurations, TIBCO flows, and Apigee proxies. • Build a detailed middleware inventory including versions, dependencies, integrations, SLA requirements, and business criticality. • Define migration strategies per workload — Rehost, Replatform, Refactor, or Replace — and document decisions with justification. • Produce a phased Migration Roadmap with milestones, resource plans, risk register, and rollback procedures. • Estimate effort, timeline, and cost for each migration wave; present to senior stakeholders for sign-off. 2.2 Architecture Design – HLD & LLD • Author High-Level Design (HLD) documents covering the target GCP middleware landscape: topology diagrams, integration patterns, security architecture, network flows, and DR strategy. • Produce Low-Level Design (LLD) documents detailing: ◦ IBM MQ → Cloud Pub/Sub or MQ on GKE: queue/topic mapping, message schemas, dead-letter handling, poison-message strategy. ◦ Apache Tomcat → GKE / Cloud Run: containerisation approach, Dockerfile, JVM tuning, session management, health probes. ◦ Apache HTTP Server → Cloud Load Balancing / Cloud Armor: virtual-host migration, SSL termination, rewrite rules, WAF policies. ◦ Apigee On-Prem / Apigee Edge → Apigee X: proxy bundle migration, environment configs, KVMs, target servers, monetisation policies. ◦ TIBCO BusinessWorks / EMS → Cloud Pub/Sub, Dataflow, or containerised TIBCO on GKE: flow decomposition, topic mapping, adapter replacement. • Ensure all designs adhere to GCP Well-Architected Framework principles: security, reliability, performance, cost-optimisation, and operational excellence. • Maintain living architecture documents version-controlled in a shared repository (Confluence / Git). 2.3 Hands-On Migration Execution • Lead the end-to-end migration of middleware workloads across phased sprints, working hands-on with the engineering team. • Containerise Tomcat-based applications using Docker and deploy on GKE with Helm charts; configure HPA and resource limits. • Migrate IBM MQ topologies to Cloud Pub/Sub or IBM MQ on GKE; validate message ordering, durability, and exactly-once semantics. • Migrate Apache HTTP Server configurations to GCP Cloud Load Balancing, configuring SSL policies, URL maps, Cloud Armor security policies, and backend services. • Execute Apigee proxy migration from Edge/on-prem to Apigee X; reconfigure OAuth 2.0 flows, API products, developer apps, and analytics. • Re-platform TIBCO BW processes to cloud-native equivalents (Cloud Dataflow pipelines, Pub/Sub topics) or containerise on GKE with TIBCO runtime. • Implement hybrid connectivity for phased cutovers using Cloud Interconnect, Cloud VPN, and VPC peering. • Conduct performance and load testing of migrated workloads; tune configurations to meet or exceed on-prem SLAs. 2.4 Security & Compliance • Enforce zero-trust security for middleware: mTLS between services, OAuth 2.0 / OpenID Connect via Apigee, API key management, and IAM least-privilege. • Configure VPC Service Controls, Private Service Connect, and Cloud Armor policies to protect middleware endpoints. • Manage secrets (keystore passwords, MQ credentials, TIBCO certificates) via GCP Secret Manager and HashiCorp Vau

Skill Requirements

Current-State Assessment & Migration Planning • Conduct a comprehensive discovery of all on-premises middleware: IBM MQ queues/channels/topics, Tomcat application deployments, Apache HTTP virtual-host configurations, TIBCO flows, and Apigee proxies. • Build a detailed middleware inventory including versions, dependencies, integrations, SLA requirements, and business criticality. • Define migration strategies per workload — Rehost, Replatform, Refactor, or Replace — and document decisions with justification. • Produce a phased Migration Roadmap with milestones, resource plans, risk register, and rollback procedures. • Estimate effort, timeline, and cost for each migration wave; present to senior stakeholders for sign-off. 2.2 Architecture Design – HLD & LLD • Author High-Level Design (HLD) documents covering the target GCP middleware landscape: topology diagrams, integration patterns, security architecture, network flows, and DR strategy. • Produce Low-Level Design (LLD) documents detailing: ◦ IBM MQ → Cloud Pub/Sub or MQ on GKE: queue/topic mapping, message schemas, dead-letter handling, poison-message strategy. ◦ Apache Tomcat → GKE / Cloud Run: containerisation approach, Dockerfile, JVM tuning, session management, health probes. ◦ Apache HTTP Server → Cloud Load Balancing / Cloud Armor: virtual-host migration, SSL termination, rewrite rules, WAF policies. ◦ Apigee On-Prem / Apigee Edge → Apigee X: proxy bundle migration, environment configs, KVMs, target servers, monetisation policies. ◦ TIBCO BusinessWorks / EMS → Cloud Pub/Sub, Dataflow, or containerised TIBCO on GKE: flow decomposition, topic mapping, adapter replacement. • Ensure all designs adhere to GCP Well-Architected Framework principles: security, reliability, performance, cost-optimisation, and operational excellence. • Maintain living architecture documents version-controlled in a shared repository (Confluence / Git). 2.3 Hands-On Migration Execution • Lead the end-to-end migration of middleware workloads across phased sprints, working hands-on with the engineering team. • Containerise Tomcat-based applications using Docker and deploy on GKE with Helm charts; configure HPA and resource limits. • Migrate IBM MQ topologies to Cloud Pub/Sub or IBM MQ on GKE; validate message ordering, durability, and exactly-once semantics. • Migrate Apache HTTP Server configurations to GCP Cloud Load Balancing, configuring SSL policies, URL maps, Cloud Armor security policies, and backend services. • Execute Apigee proxy migration from Edge/on-prem to Apigee X; reconfigure OAuth 2.0 flows, API products, developer apps, and analytics. • Re-platform TIBCO BW processes to cloud-native equivalents (Cloud Dataflow pipelines, Pub/Sub topics) or containerise on GKE with TIBCO runtime. • Implement hybrid connectivity for phased cutovers using Cloud Interconnect, Cloud VPN, and VPC peering. • Conduct performance and load testing of migrated workloads; tune configurations to meet or exceed on-prem SLAs. 2.4 Security & Compliance • Enforce zero-trust security for middleware: mTLS between services, OAuth 2.0 / OpenID Connect via Apigee, API key management, and IAM least-privilege. • Configure VPC Service Controls, Private Service Connect, and Cloud Armor policies to protect middleware endpoints. • Manage secrets (keystore passwords, MQ credentials, TIBCO certificates) via GCP Secret Manager and HashiCorp Vau

Other Requirements

Current-State Assessment & Migration Planning • Conduct a comprehensive discovery of all on-premises middleware: IBM MQ queues/channels/topics, Tomcat application deployments, Apache HTTP virtual-host configurations, TIBCO flows, and Apigee proxies. • Build a detailed middleware inventory including versions, dependencies, integrations, SLA requirements, and business criticality. • Define migration strategies per workload — Rehost, Replatform, Refactor, or Replace — and document decisions with justification. • Produce a phased Migration Roadmap with milestones, resource plans, risk register, and rollback procedures. • Estimate effort, timeline, and cost for each migration wave; present to senior stakeholders for sign-off. 2.2 Architecture Design – HLD & LLD • Author High-Level Design (HLD) documents covering the target GCP middleware landscape: topology diagrams, integration patterns, security architecture, network flows, and DR strategy. • Produce Low-Level Design (LLD) documents detailing: ◦ IBM MQ → Cloud Pub/Sub or MQ on GKE: queue/topic mapping, message schemas, dead-letter handling, poison-message strategy. ◦ Apache Tomcat → GKE / Cloud Run: containerisation approach, Dockerfile, JVM tuning, session management, health probes. ◦ Apache HTTP Server → Cloud Load Balancing / Cloud Armor: virtual-host migration, SSL termination, rewrite rules, WAF policies. ◦ Apigee On-Prem / Apigee Edge → Apigee X: proxy bundle migration, environment configs, KVMs, target servers, monetisation policies. ◦ TIBCO BusinessWorks / EMS → Cloud Pub/Sub, Dataflow, or containerised TIBCO on GKE: flow decomposition, topic mapping, adapter replacement. • Ensure all designs adhere to GCP Well-Architected Framework principles: security, reliability, performance, cost-optimisation, and operational excellence. • Maintain living architecture documents version-controlled in a shared repository (Confluence / Git). 2.3 Hands-On Migration Execution • Lead the end-to-end migration of middleware workloads across phased sprints, working hands-on with the engineering team. • Containerise Tomcat-based applications using Docker and deploy on GKE with Helm charts; configure HPA and resource limits. • Migrate IBM MQ topologies to Cloud Pub/Sub or IBM MQ on GKE; validate message ordering, durability, and exactly-once semantics. • Migrate Apache HTTP Server configurations to GCP Cloud Load Balancing, configuring SSL policies, URL maps, Cloud Armor security policies, and backend services. • Execute Apigee proxy migration from Edge/on-prem to Apigee X; reconfigure OAuth 2.0 flows, API products, developer apps, and analytics. • Re-platform TIBCO BW processes to cloud-native equivalents (Cloud Dataflow pipelines, Pub/Sub topics) or containerise on GKE with TIBCO runtime. • Implement hybrid connectivity for phased cutovers using Cloud Interconnect, Cloud VPN, and VPC peering. • Conduct performance and load testing of migrated workloads; tune configurations to meet or exceed on-prem SLAs. 2.4 Security & Compliance • Enforce zero-trust security for middleware: mTLS between services, OAuth 2.0 / OpenID Connect via Apigee, API key management, and IAM least-privilege. • Configure VPC Service Controls, Private Service Connect, and Cloud Armor policies to protect middleware endpoints. • Manage secrets (keystore passwords, MQ credentials, TIBCO certificates) via GCP Secret Manager and HashiCorp Vau
Apply now
Information at a Glance

Why HCLTech?

At HCLTech, you'll supercharge your potential. You'll find your career. And you'll find your spark. All at a place that knows that helping its customers stay on top starts by putting its people first.

HCLTech is a global technology company, home to more than 226,300 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. Consolidated revenues as of 12 months ending December 2025 totaled $14.5 billion.
23 Benefits At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to: https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg Industry-benchmarked compensation https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg Best-in-class healthcare benefits https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg Personal time off https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg Maternity and paternity benefits https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg Access to skills / higher education programs/resources https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg Discounts on products and services via Benefit Box https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg Participate in CSR programs and live life with a purpose https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg Opportunities to grow and advance your career Note: The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.