What you’ll do
- Define multi‑year cloud platform strategy and roadmaps (landing zones, account/subscription structure, networking patterns, shared services, observability) aligned to business objectives, risk posture, and budget; present plans, KPIs, and outcomes to executives.
- Build and lead a multi‑disciplinary organization (platform engineering, cloud networking/WAN, database services, storage/backup/DR, FinOps). Set goals, metrics, org design, succession plans, and foster a culture of automation, reliability, and continuous improvement.
- Establish, implement, and govern cloud architectures, policies, standards, and guardrails (IaC, policy‑as‑code, tagging, CMDB/asset hygiene, golden images, secrets management). Approve reference designs and lifecycle plans for scale and supportability.
- Drive service reliability and operational excellence: SLOs/SLAs, monitoring/observability, incident/problem/change management, capacity/performance management, resilience testing/chaos; lead post‑incident reviews and systemic remediation.
- Direct cloud and WAN networking (VPC/VNet design, routing, DNS, private endpoints, service mesh, SD‑WAN, MPLS/Internet, Direct Connect/ExpressRoute/Cloud Interconnect) to ensure secure, resilient connectivity and segmentation.
- Oversee database services (managed and self‑managed where applicable—relational, NoSQL, streaming): provisioning, patching, performance tuning, backup/restore, HA/DR, schema governance, and modernization.
- Lead cloud storage, backup, and DR strategy (object/file/block services, snapshots, replication, backup tooling, retention/legal hold) and validate RPO/RTO through regular recovery tests and cross‑region/zone failover exercises.
- Own the FinOps practice: cost allocation, tagging, budget alerts, commitment planning (SPs/RIs/Savings Plans), rightsizing, elasticity policies, chargeback/showback; partner with Finance for forecasting and variance analysis.
- Manage CSPs/MSPs and tool/vendor ecosystem: negotiate contracts, optimize TCO, track SLAs/OLAs, and evaluate new services.
- Ensure security and compliance with Security, Risk, and Audit (Zero Trust, hardening, vulnerability remediation, identity/privileged access, encryption, logging, audit evidence). Collaborate with Enterprise Architecture, Application, Data, and On‑Prem Infrastructure teams to enable hybrid patterns, migration factories, platform services (Kubernetes/serverless/queues), and self‑service developer experiences.
Minimum education
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or related field; or equivalent practical experience.
Preferred education:
- Master’s degree in Technology Management, Business Administration, or related field.
Minimum experience and qualifications
- 12+ years in infrastructure/platform engineering with 6+ years focused on public cloud at enterprise scale.
- 10+ years of leadership managing managers and cross‑functional teams (platform, networking, DBA/data services, FinOps).
- 4+ years leading leaders (managers/supervisors).
- Demonstrated delivery of large‑scale cloud programs (e.g., landing zone builds, app migrations, network transformation/SD‑WAN, database modernization, DR/resilience uplift).
- Hands‑on depth in two or more areas:
- AWS/Azure/GCP platform services
- IaC (Terraform/Bicep/CloudFormation)
- Cloud networking
- Managed databases (RDS/Aurora/SQL MI/Cloud SQL/NoSQL)
- Kubernetes/containers
- Storage/backup/DR in cloud
- Observability stacks
- Strong grasp of ITIL and SRE practices, with experience operating 24x7 production platforms.
- Vendor and contract management with CSPs/MSPs; budgeting and TCO optimization.
Preferred certifications and industry experience
- AWS Solutions Architect Professional and/or Azure Solutions Architect Expert.
- FinOps Certified Practitioner/Professional.
- ITIL Foundation.
- Kubernetes certification (CKA/CKAD) a plus.
- Biotech/pharma/life sciences experience is preferred.
What you bring
- Mastery of public cloud architectures (AWS/Azure), multi‑account/subscription models, identity and access, network design, DNS, CDN/edge, SD‑WAN; IaC and policy‑as‑code; container platforms; managed DBs and data protection; backup/DR orchestration; observability and AIOps.
- FinOps leadership: tagging and taxonomy, RI/SP planning, anomaly detection, rightsizing, elasticity policies, unit economics, forecasting, and chargeback/showback.
- Security and compliance acumen: Zero Trust, encryption and key management, privileged access, vulnerability and patch management, logging, and evidence practices.
- Operational excellence: ITIL (incident/problem/change), SRE, capacity/performance management, and vendor governance.
- Leadership and communication: strategic planning, stakeholder influence, executive storytelling, talent development, and cross‑functional collaboration.
Scope and impact
- Lead cloud platform engineering and operations, cloud/WAN networking, database services, and cloud storage/backup/DR across all business units.
- Own multi‑million‑dollar OpEx/CapEx budgets (CSP commitments, network contracts, tooling, managed services) and cost allocation models.
- Steward landing zones, shared services, CI/CD/IaC pipelines, SD‑WAN and cloud interconnects, managed DB estates, backup/DR orchestration, and tagging/taxonomy.
- Support a global, multi‑region footprint with 24x7 expectations for critical workloads; ensure audit readiness and regulatory adherence.
Team and reporting
- Lead 4–6 direct reports and 10–20 indirect engineers/administrators across regions and shifts.
- Make hiring, performance, promotion, and termination recommendations; typically holds final hiring authority within policy.
Work environment and physical requirements
- Global role with periodic off‑hours engagement for incidents and participation in on‑call leadership rotations.
- Occasional travel to offices, data centers, and vendor locations.
Ready to architect, scale, and optimize the cloud platforms that accelerate FUJIFILM’s mission? Apply now and help us deliver secure, reliable, and cost‑efficient cloud services at global scale.
As part of any recruitment process, FUJIFILM Biotechnologies collects and processes personal data relating to job applicants. The organisation is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations and may share this as part of the global recruitment process with hiring managers in Europe and the United States.
This is a global position that will support all our sites. This position can be based at any of our locations around the globe. Benefits and compensation will be governed by the location that you are based from and considered your home site.
To all agencies: Please, no phone calls or emails to any employee of FUJIFILM about this requisition. All resumes submitted by search firms/employment agencies to any employee at FUJIFILM via-email, the internet or in any form and/or method will be deemed the sole property of FUJIFILM, unless such search firms/employment agencies were engaged by FUJIFILM for this requisition and a valid agreement with FUJIFILM is in place. In the event a candidate who was submitted outside of the FUJIFILM agency engagement process is hired, no fee or payment of any kind will be paid.