Track Lead - Terraform,Python,Google Cloud Build,Ansible
India
Apply now
Job Description
Track Lead - Terraform,Python,Google Cloud Build,Ansible
Noida, Uttar Pradesh

Job Summary

We are looking for a highly experienced GCP Solution Architect with a proven track record of designing and delivering enterprise-grade cloud solutions on Google Cloud Platform (GCP). The ideal candidate will have deep expertise in migrating complex on-premises workloads to GCP, crafting architecture blueprints (HLD/LLD), and delivering operational documentation including runbooks, design documents, CI/CD pipelines, and Infrastructure as Code using Terraform.

Key Responsibilities

 Lead end-to-end cloud architecture design for large-scale GCP engagements. • Create and own High-Level Design (HLD) documents covering network topology, compute, storage, security, and integration patterns. • Develop detailed Low-Level Design (LLD) documents specifying configurations, IP schemes, firewall rules, IAM policies, and resource specifications. • Design multi-region, highly available, and fault-tolerant architectures on GCP. • Define reference architectures, technology standards, and best practices for GCP adoption. On-Premises to GCP Cloud Migration • Lead and execute migration of on-prem workloads (VMs, databases, applications) to GCP using tools like Migrate for Compute Engine, Database Migration Service (DMS), and Transfer Appliance. • Conduct discovery and assessment of existing infrastructure to build migration roadmaps and wave plans. • Define migration strategies: Rehost (Lift & Shift), Replatform, Refactor, and Rearchitect. • Manage cutover planning, rollback strategies, and post-migration validation. • Ensure zero or minimal downtime during migration events. Documentation • Author and maintain comprehensive Design Documents covering solution architecture, data flows, integration points, and technology decisions. • Produce operational Runbooks for deployment, maintenance, incident response, failover, and DR procedures. • Develop Solution Architecture Documents (SADs) and Architecture Decision Records (ADRs). • Create and maintain As-Built Documents post-deployment to reflect actual environment configurations. • Prepare capacity planning documents and cost optimization reports. Infrastructure as Code – Terraform • Design and develop modular, reusable Terraform code for GCP resources (VPC, GKE, Cloud SQL, Pub/Sub, IAM, Cloud Armor, etc.). • Implement and enforce Terraform best practices: remote state management (GCS backend), workspace strategy, and module versioning. • Code review and governance for IaC contributions across teams. • Integrate Terraform with CI/CD pipelines for automated provisioning and drift detection. CI/CD Pipelines • Design and implement CI/CD pipelines using Cloud Build, GitHub Actions, GitLab CI, Jenkins, or Tekton. • Establish GitOps workflows for infrastructure and application deployments. • Integrate security scanning (SAST, container scanning) and policy checks into pipelines. • Define pipeline standards for blue/green, canary, and rolling deployments on GKE. Security & Compliance • Implement GCP security best practices: VPC Service Controls, BeyondCorp, Cloud Armor, Secret Manager, CMEK. • Design IAM policies following the principle of least privilege. • Ensure architectures meet compliance standards (ISO 27001, SOC 2, PCI-DSS, HIPAA) where applicable. • Conduct architecture and security reviews and threat modelling. Stakeholder & Team Collaboration • Engage with business stakeholders to translate requirements into technical solutions. • Present and defend architectural decisions to senior leadership and technical teams. • Mentor and guide junior architects, cloud engineers, and DevOps teams. • Collaborate with application teams, security teams, and network teams across the organisation. Required Technical Skills & Experience Skill Area Technologies / Tools Experience Required GCP Core Services Compute Engine, GKE, Cloud Run, Cloud SQL, Spanner, BigQuery, Pub/Sub, Cloud Storage, VPC, Cloud DNS 8+ years On-Prem to Cloud Migration Migrate for Compute Engine, DMS, Transfer Appliance, VPN/Interconnect 5+ years Terraform / IaC Terraform (modules, workspaces, remote state), Terragrunt 5+ years CI/CD Pipelines Cloud Build, GitHub Actions, GitLab CI, Jenkins, Tekton, ArgoCD 5+ years HLD / LLD Documentation Visio, Lucidchart, draw.io, Confluence 7+ years Security VPC SC, IAM, Cloud Armor, BeyondCorp, CMEK

Skill Requirements

 Lead end-to-end cloud architecture design for large-scale GCP engagements. • Create and own High-Level Design (HLD) documents covering network topology, compute, storage, security, and integration patterns. • Develop detailed Low-Level Design (LLD) documents specifying configurations, IP schemes, firewall rules, IAM policies, and resource specifications. • Design multi-region, highly available, and fault-tolerant architectures on GCP. • Define reference architectures, technology standards, and best practices for GCP adoption. On-Premises to GCP Cloud Migration • Lead and execute migration of on-prem workloads (VMs, databases, applications) to GCP using tools like Migrate for Compute Engine, Database Migration Service (DMS), and Transfer Appliance. • Conduct discovery and assessment of existing infrastructure to build migration roadmaps and wave plans. • Define migration strategies: Rehost (Lift & Shift), Replatform, Refactor, and Rearchitect. • Manage cutover planning, rollback strategies, and post-migration validation. • Ensure zero or minimal downtime during migration events. Documentation • Author and maintain comprehensive Design Documents covering solution architecture, data flows, integration points, and technology decisions. • Produce operational Runbooks for deployment, maintenance, incident response, failover, and DR procedures. • Develop Solution Architecture Documents (SADs) and Architecture Decision Records (ADRs). • Create and maintain As-Built Documents post-deployment to reflect actual environment configurations. • Prepare capacity planning documents and cost optimization reports. Infrastructure as Code – Terraform • Design and develop modular, reusable Terraform code for GCP resources (VPC, GKE, Cloud SQL, Pub/Sub, IAM, Cloud Armor, etc.). • Implement and enforce Terraform best practices: remote state management (GCS backend), workspace strategy, and module versioning. • Code review and governance for IaC contributions across teams. • Integrate Terraform with CI/CD pipelines for automated provisioning and drift detection. CI/CD Pipelines • Design and implement CI/CD pipelines using Cloud Build, GitHub Actions, GitLab CI, Jenkins, or Tekton. • Establish GitOps workflows for infrastructure and application deployments. • Integrate security scanning (SAST, container scanning) and policy checks into pipelines. • Define pipeline standards for blue/green, canary, and rolling deployments on GKE. Security & Compliance • Implement GCP security best practices: VPC Service Controls, BeyondCorp, Cloud Armor, Secret Manager, CMEK. • Design IAM policies following the principle of least privilege. • Ensure architectures meet compliance standards (ISO 27001, SOC 2, PCI-DSS, HIPAA) where applicable. • Conduct architecture and security reviews and threat modelling. Stakeholder & Team Collaboration • Engage with business stakeholders to translate requirements into technical solutions. • Present and defend architectural decisions to senior leadership and technical teams. • Mentor and guide junior architects, cloud engineers, and DevOps teams. • Collaborate with application teams, security teams, and network teams across the organisation. Required Technical Skills & Experience Skill Area Technologies / Tools Experience Required GCP Core Services Compute Engine, GKE, Cloud Run, Cloud SQL, Spanner, BigQuery, Pub/Sub, Cloud Storage, VPC, Cloud DNS 8+ years On-Prem to Cloud Migration Migrate for Compute Engine, DMS, Transfer Appliance, VPN/Interconnect 5+ years Terraform / IaC Terraform (modules, workspaces, remote state), Terragrunt 5+ years CI/CD Pipelines Cloud Build, GitHub Actions, GitLab CI, Jenkins, Tekton, ArgoCD 5+ years HLD / LLD Documentation Visio, Lucidchart, draw.io, Confluence 7+ years Security VPC SC, IAM, Cloud Armor, BeyondCorp, CMEK

Other Requirements

 Lead end-to-end cloud architecture design for large-scale GCP engagements. • Create and own High-Level Design (HLD) documents covering network topology, compute, storage, security, and integration patterns. • Develop detailed Low-Level Design (LLD) documents specifying configurations, IP schemes, firewall rules, IAM policies, and resource specifications. • Design multi-region, highly available, and fault-tolerant architectures on GCP. • Define reference architectures, technology standards, and best practices for GCP adoption. On-Premises to GCP Cloud Migration • Lead and execute migration of on-prem workloads (VMs, databases, applications) to GCP using tools like Migrate for Compute Engine, Database Migration Service (DMS), and Transfer Appliance. • Conduct discovery and assessment of existing infrastructure to build migration roadmaps and wave plans. • Define migration strategies: Rehost (Lift & Shift), Replatform, Refactor, and Rearchitect. • Manage cutover planning, rollback strategies, and post-migration validation. • Ensure zero or minimal downtime during migration events. Documentation • Author and maintain comprehensive Design Documents covering solution architecture, data flows, integration points, and technology decisions. • Produce operational Runbooks for deployment, maintenance, incident response, failover, and DR procedures. • Develop Solution Architecture Documents (SADs) and Architecture Decision Records (ADRs). • Create and maintain As-Built Documents post-deployment to reflect actual environment configurations. • Prepare capacity planning documents and cost optimization reports. Infrastructure as Code – Terraform • Design and develop modular, reusable Terraform code for GCP resources (VPC, GKE, Cloud SQL, Pub/Sub, IAM, Cloud Armor, etc.). • Implement and enforce Terraform best practices: remote state management (GCS backend), workspace strategy, and module versioning. • Code review and governance for IaC contributions across teams. • Integrate Terraform with CI/CD pipelines for automated provisioning and drift detection. CI/CD Pipelines • Design and implement CI/CD pipelines using Cloud Build, GitHub Actions, GitLab CI, Jenkins, or Tekton. • Establish GitOps workflows for infrastructure and application deployments. • Integrate security scanning (SAST, container scanning) and policy checks into pipelines. • Define pipeline standards for blue/green, canary, and rolling deployments on GKE. Security & Compliance • Implement GCP security best practices: VPC Service Controls, BeyondCorp, Cloud Armor, Secret Manager, CMEK. • Design IAM policies following the principle of least privilege. • Ensure architectures meet compliance standards (ISO 27001, SOC 2, PCI-DSS, HIPAA) where applicable. • Conduct architecture and security reviews and threat modelling. Stakeholder & Team Collaboration • Engage with business stakeholders to translate requirements into technical solutions. • Present and defend architectural decisions to senior leadership and technical teams. • Mentor and guide junior architects, cloud engineers, and DevOps teams. • Collaborate with application teams, security teams, and network teams across the organisation. Required Technical Skills & Experience Skill Area Technologies / Tools Experience Required GCP Core Services Compute Engine, GKE, Cloud Run, Cloud SQL, Spanner, BigQuery, Pub/Sub, Cloud Storage, VPC, Cloud DNS 8+ years On-Prem to Cloud Migration Migrate for Compute Engine, DMS, Transfer Appliance, VPN/Interconnect 5+ years Terraform / IaC Terraform (modules, workspaces, remote state), Terragrunt 5+ years CI/CD Pipelines Cloud Build, GitHub Actions, GitLab CI, Jenkins, Tekton, ArgoCD 5+ years HLD / LLD Documentation Visio, Lucidchart, draw.io, Confluence 7+ years Security VPC SC, IAM, Cloud Armor, BeyondCorp, CMEK
Apply now
Information at a Glance

Why HCLTech?

At HCLTech, you'll supercharge your potential. You'll find your career. And you'll find your spark. All at a place that knows that helping its customers stay on top starts by putting its people first.

HCLTech is a global technology company, home to more than 226,300 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud and AI, powered by a broad portfolio of technology services and products. We work with clients across all major verticals, providing industry solutions for Financial Services, Manufacturing, Life Sciences and Healthcare, Technology and Services, Telecom and Media, Retail and CPG, and Public Services. Consolidated revenues as of 12 months ending December 2025 totaled $14.5 billion.
23 Benefits At HCLTech, we believe in empowering our employees with comprehensive benefits that support their professional growth and enhance their well-being. When you sign up for a career with us, you gain access to: https://rmkcdn.successfactors.com/147eb21f/a701dca9-f32d-4fc9-9447-6.svg Industry-benchmarked compensation https://rmkcdn.successfactors.com/147eb21f/b0c54381-ddcc-4a33-9b35-9.svg Best-in-class healthcare benefits https://rmkcdn.successfactors.com/147eb21f/b73027be-7aae-4d36-a090-4.svg Personal time off https://rmkcdn.successfactors.com/147eb21f/d5b4fdfd-2e99-4e26-9878-9.svg Maternity and paternity benefits https://rmkcdn.successfactors.com/147eb21f/3d42b0fc-4652-435a-9ece-c.svg Access to skills / higher education programs/resources https://rmkcdn.successfactors.com/147eb21f/aeddeaf2-9e25-4584-ad11-d.svg Discounts on products and services via Benefit Box https://rmkcdn.successfactors.com/147eb21f/a9609a3b-2700-4b3c-9d90-a.svg Participate in CSR programs and live life with a purpose https://rmkcdn.successfactors.com/147eb21f/c6e33851-710f-4634-bd69-f.svg Opportunities to grow and advance your career Note: The benefits listed above vary depending on the nature of your employment and the country where you work. Some benefits may be available in some countries but not in all.