Cloud Architect - GCP

About Samtek

At Samtek, we're redefining cloud innovation as an engineer-owned and operated, SBA-certified minority-owned small business founded in 2018. Our mission is simple: empower federal agencies and large enterprises with cutting-edge DevSecOps and cloud transformation solutions that drive security, scalability, and speed. From cloud-native application development and platform engineering to robust security implementations, data center migrations, and seamless operations, we deliver modern IT services backed by over 50 years of collective expertise.

We're a diverse, collaborative team that's passionate about pushing the boundaries of technology. Our culture thrives on curiosity, inclusivity, and real impact—whether it's optimizing cloud environments for mission-critical operations or fostering innovation in a supportive, hybrid work setting. Join us to work on high-stakes projects that matter, grow alongside top talent, and be part of a company that's not just building the future of cloud computing, but shaping it.

Samtek: Where engineers lead, and excellence follows.

Samtek Inc is seeking an experienced Google Cloud Platform (GCP) Cloud Architect to lead the strategy, design, architecture, and governance of mission-critical healthcare systems for the Centers for Medicare & Medicaid Services (CMS). This role will focus primarily on GCP (including Anthos for Government and Google Cloud Healthcare solutions) while maintaining interoperability with Azure Government and AWS GovCloud environments as needed. You will design secure, compliant, cost-optimized, cloud-native solutions and drive modernization of CMS systems in a FedRAMP High / CMS ARS environment.

GCP Strategy & Architecture Leadership 

• Develop and maintain enterprise-grade GCP reference architectures, landing zones, Organization Policy constraints, and policy-as-code frameworks using Google Cloud Landing Zone blueprints, Deployment Manager, Terraform, and Config Validator.
• Lead the Cloud Center of Excellence (CCoE) GCP practice and serve as the primary GCP subject-matter expert for CMS Architecture Review Board (ARB) and Technical Review Board (TRB) presentations. 
• Define and enforce GCP governance models (resource hierarchy, IAM, tagging, cost allocation, security baselines, and compliance automation).

Secure GCP Design & Implementation 

• Architect Zero-Trust topologies using VPC Service Controls, Private Google Access, Cloud Interconnect, and Cross-Cloud interconnects where required. 
• Implement enterprise identity federation and workload identity with Google Cloud Identity, Workforce Identity Federation, and integration with Azure Entra ID/AWS IAM Identity Center as needed. 
• Design high-availability, disaster recovery, and multi-region solutions leveraging Cloud Storage multi-region buckets, GKE Autopilot regional clusters, Cloud SQL cross-region replication, and Anthos.

Migration & Modernization on GCP 

• Lead large-scale migrations to GCP using Migrate for Compute Engine, Migrate for Anthos, and BigQuery data transfer services. 
• Containerize and modernize workloads with Google Kubernetes Engine (GKE) Autopilot/Standard, Anthos Service Mesh, Cloud Run, and Cloud Build. 
• Modernize healthcare data platforms using BigQuery, Healthcare API, Cloud Healthcare Data Engine, and unified FHIR/HL7/DICOM pipelines with Dataflow and Dataproc. 
• Enable hybrid and multi-cloud consistency with Anthos clusters on-premises, Azure, and AWS.

Automation & DevSecOps 

• Build infrastructure-as-code pipelines using Terraform Enterprise (GCP provider), Cloud Deployment Manager, Config Connector, and Pulumi. 
• Integrate security and compliance scanning with Security Command Center Premium, Chronicle, and Risk Manager into CI/CD workflows. 
• Automate evidence collection for FedRAMP High, CMS ARS, NIST 800-53, and HITRUST using Security Command Center and Policy Intelligence tools.

Collaboration & Documentation 

• Partner with cybersecurity, application, and DevOps teams to translate CMS requirements into scalable GCP designs. 
• Author and maintain System Security Plans (SSP), architecture diagrams, data flow diagrams, and Authority to Operate (ATO) packages. 
• Mentor junior engineers and deliver training/knowledge-sharing sessions on GCP and Anthos best practices.

Required Skills & Experience 

• 8+ years of cloud architecture experience with at least 4 years focused on Google Cloud Platform in government or highly regulated environments. 
• Hands-on expertise with GCP for Government / Anthos for Government and delivering FedRAMP High or CMS ARS-compliant solutions. 
• Deep experience with GCP resource hierarchy, Organization Policies, IAM (including Workload Identity Federation), VPC-SC, and Private Service Connect. 
• Mastery of IaC for GCP: Terraform (Enterprise GCP provider), Config Connector, Cloud Deployment Manager. 
• Proven track record leading migrations of >500 workloads or >10 TB of data to GCP. 
• Strong scripting and automation skills: Python, Go, Bash, PowerShell. 
• Experience with healthcare interoperability standards (FHIR, HL7, DICOM) and Google Cloud Healthcare API. 
• U.S. citizenship and ability to obtain/maintain CMS Public Trust clearance.

Preferred Qualifications 

• Active Google Professional Cloud Architect and Professional Cloud DevOps Engineer certifications. 
• Additional certifications: CISSP, CCSP, CISM, or Google Professional Data Engineer. 
• Prior CMS SPARC, ESIM, or EPMO task order experience. 
• Expertise with Anthos (on-prem, AWS, Azure), GKE Enterprise, Cloud Run for Anthos, and Config Management. 
• Experience with Azure Health Data Services or AWS HealthLake for cross-cloud interoperability. 
• Published articles, whitepapers, or conference talks on GCP government architecture or Anthos.

How to Apply 

Please submit your resume to: [email protected]