Role : Cloud Solution Architecture
Location: Hyderabad or Mumbai
Job ID: B-26055
EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 400,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide.
www.eccouncil.org
Role Overview
As Senior AI Architect at EC-Council Global Services, you will own the end-to-end architecture, deployment, and reliability of our multi-cloud AI platform spanning AWS and Azure. You will be the technical authority on how agentic AI workloads, microservices, and data pipelines are designed, deployed, and scaled across regions.
This is an individual contributor (IC) role with high ownership. You will partner closely with the Director of AI Governance and Engineering, product delivery leads, and a lean agentic engineering team to translate architecture decisions into production-grade systems.
Key Responsibilities
Cloud Infrastructure Ownership
-
Own the architecture and operational health of EGS's multi-cloud platform across AWS (ECS Fargate, SQS, S3, Bedrock, CloudWatch, WAF) and Azure (API Management, Container Apps, Azure OpenAI, AD B2C, Service Bus, Key Vault)
-
Define and enforce cloud infrastructure standards — networking, IAM, secrets management, DR strategy, and zero-downtime deployment patterns
-
Drive infrastructure-as-code practices and ensure all environments (dev, staging, prod) are reproducible and auditable
-
Own the Route 53 / Azure Traffic Manager failover topology and regional deployment strategy Global
Agentic AI Platform Architecture
-
Design and maintain the architecture of the agentic AI orchestration layer — including multi-agent systems (CrewAI, LangGraph), LLM routing (Claude via Anthropic API and AWS Bedrock, Azure OpenAI GPT-4o), and MCP tool server integrations
-
Architect and engineer Agentic Systems and Agentic Harness frameworks — covering agent memory, retrieval augmentation, tool harness design, and end-to-end agentic pipeline reliability
-
Define agent sandbox boundaries, tool-call security contracts, and cost observability patterns (token attribution per agent run)
-
Evaluate and adopt new AI infrastructure primitives — model APIs, embedding models, vector databases — as the landscape evolves
Microservices and API Design
-
Define and govern API contracts (OpenAPI 3.x) across EGS microservices: Compliance, VAPT, HRM, AI Governance, Notification, and Reporting services
-
Establish inter-service communication standards — mTLS, async messaging via SQS/Service Bus, and event-driven patterns
Ensure services meet SLA targets: 99.9% uptime, 200ms P95 API response time,- 10,000 concurrent users
Security Architecture
-
Embed security-by-design into every layer — API gateway policies, OAuth2/JWT flows, PII encryption (AES-256 at rest, TLS 1.3 in transit), and append-only audit logging
-
Align platform architecture to ISO 27001, SOC 2, and EU AI Act technical controls
-
Work alongside VAPT and compliance teams to ensure the platform itself is defensible and auditable
Technical Leadership
-
Produce and maintain Architecture Decision Records (ADRs) for all significant design choices
-
Contribute to the technical debt register and drive resolution of high-priority items (distributed tracing, LLM cost observability, migration guardrails)
-
Mentor engineers on cloud architecture, agentic AI patterns, and secure coding practices
-
Lead architecture review cadence (bi-weekly) with cross-functional engineering teams
Required Qualifications
Cloud and Infrastructure
-
5+ years of hands-on cloud architecture experience across AWS and Azure in production environments
-
Deep expertise in AWS services: ECS Fargate or EKS, SQS, S3, CloudWatch, WAF, Secrets Manager, Route 53
-
Deep expertise in Azure services: API Management, Container Apps, Azure AD B2C, Service Bus, Key Vault, Azure Monitor
-
Proven experience designing multi-region, high-availability deployments with blue/green or canary release strategies
-
Strong understanding of networking fundamentals: VPC/VNet design, mTLS, TLS termination, private endpoints
AI and Agentic Systems
-
Hands-on experience building and deploying LLM-powered applications in production — RAG pipelines, tool-use agents, or multi-agent systems
-
Familiarity with agent orchestration frameworks such as CrewAI, LangGraph, LlamaIndex, or equivalent
-
Experience with vector databases (pgvector, Pinecone, Weaviate, or similar) for embedding storage and retrieval
-
Working knowledge of the MCP (Model Context Protocol) or similar tool-integration patterns for AI agents
-
Understanding of LLM cost management — token budgeting, model routing, and inference cost attribution
Backend and API
-
Strong Python (FastAPI or equivalent) and TypeScript/Node.js backend development skills
-
Experience with PostgreSQL schema design, query optimisation, and Alembic-style migrations
-
Proficiency in OpenAPI 3.x spec-first API design and REST/gRPC inter-service communication patterns
-
Experience with async messaging systems (SQS, Service Bus, Kafka, or equivalent)
Security and Compliance
-
Working knowledge of ISO 27001, NIST 800-53, and SOC 2 technical controls as they apply to cloud architecture
-
Experience implementing OAuth2/OIDC flows, JWT validation, and API gateway security policies
-
Understanding of data residency, encryption-at-rest, and audit logging requirements in regulated environments
Preferred Qualifications
-
Experience in cybersecurity product or services delivery environments (VAPT, compliance, GRC, SOC)
-
Exposure to EU AI Act, NIST AI RMF, or ISO/IEC 42001 technical requirements
-
Familiarity with Supabase, Graphlit, Composio, or Tavily in production workloads
-
AWS Solutions Architect Professional or Azure Solutions Architect Expert certification
-
Experience building observability stacks with OpenTelemetry, Jaeger, or AWS X-Ray
-
Prior work with frontier model APIs: Anthropic Claude, OpenAI, or AWS Bedrock
About Our Culture
EC-Council is driven by a mission to strengthen global cybersecurity capability and advance the profession of ethical hacking and information security. Our teams operate across regions and cultures, united by integrity, professionalism, and a commitment to meaningful impact. Continuous learning and accountability are encouraged, empowering individuals to take ownership of their contributions. Respect, trust, and ethical conduct guide how we work with colleagues, partners, and the global cybersecurity community.
Additional Information
EC-Council is an equal opportunity workplace and an affirmative action employer. We are committed to providing equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or veteran status. We do not discriminate based on these or any other characteristics protected by applicable laws or regulations in the locations where we operate.
EC-Council is dedicated to working with and providing reasonable accommodations to individuals with disabilities. If you have a medical condition or disability that limits your ability to complete any part of the application process and require reasonable accommodation, please contact us at
[email protected] and let us know how we can assist.
To be eligible for this position, candidates must be able to provide proof that they are either a citizen of the country or have legal authorization to work in the country where the position is posted and are currently residing there. EC-Council does not offer employment to ineligible candidates and reserves the right to revoke employment in case the candidate loses the authorization to work.
If, as part of the recruitment process, you are required to complete or submit any form of work, project, case study, or assignment, please note that such material will be considered the exclusive property of EC-Council. By submitting such work, you acknowledge that EC-Council retains all rights, title, and interest in the submitted content, including any intellectual property contained therein.
Candidates further waive any intellectual property or moral rights in such submissions, confirm that the work is original and free of third-party infringement, and acknowledge that it is provided solely for evaluation purposes, with no ownership or other rights retained.
Our Privacy Policy outlines how we collect, use, store, and protect your personal data during the recruitment process. This may include information such as your name, contact details, employment history, qualifications, and any other details you provide as part of your application. All data is handled in compliance with applicable data protection and privacy regulations.
Please review our policy here: EC-Council Privacy Policy - User and Company | EC-Council.
Submission of your application will be considered as your acceptance of the terms stated above.
