GCP & Network Agentic Architect (f/m/d)
- Pune (IND)
- IT
- Published: 28.05.2026
What do we do?
Pioneering a new era and offering a cohesive alternative to the fragmented landscape of construction software, Thinkproject seamlessly integrates the most extensive portfolio of mature solutions with an innovative platform, providing unparalleled features, integrations, user experiences, and synergies.
By combining information management expertise and in-depth knowledge of the building, infrastructure, and energy industries, Thinkproject empowers customers to efficiently deliver, operate, regenerate, and dispose of their built assets across their entire lifecycle through a Connected Data Ecosystem.
What your day will look like
About the Role
We are looking for a GCP & Network Agentic Architect (f/m/d) to lead Thinkproject's migration to Google Cloud and own the networking and compliance foundation that makes it possible. You will validate and drive the full migration of all applications to GCP, and define and implement the technical controls required for ISO 27001, SOC, and other related industry-standard regulatory compliance frameworks.
This is a senior individual-contributor role reporting to the Cloud Architect Manager (who reports to the CIO), with direct CIO-adjacent visibility. You will sit at the intersection of platform engineering and technology strategy, contributing to platform roadmap decisions — not just executing them. The team is small, high ownership, and based in Pune. You will define the framework for FinOps and cost management to ensure robust cloud financial governance. The team operates at pace; you will be expected to resolve ambiguity, align expectations, and establish technical clarity across a diverse group of stakeholders.
Time allocation (approximate):
~35% GCP migration & regulatory compliance | ~25% networking architecture &
rationalisation | ~20% controls automation & DevOps integration | ~20% FinOps, documentation & cross-team collaboration
Key Responsibilities
GCP Migration & Compliance
- Validate and drive the migration of all Thinkproject applications to GCP — own the migration plan, track progress, surface blockers
- Implement and automate technical controls required for ISO 27001, SOC, and other related industry-standard regulatory compliance frameworks
- Establish and map compliance controls in-production vs controls to-be-implemented, bridging structural gaps
Networking Architecture
- Own the networking layer: rationalise the current configuration, eliminate bottlenecks, and define the optimal networking architecture for Thinkproject on GCP
- Collaborate with Security to define firewall policies, VPC topology, private service connect, and secure egress/ingress patterns
- Ensure the networking foundation is documented, reproducible via IaC, and consumed cleanly by the Service Catalog
Controls Automation & DevOps Collaboration
- Collaborate with DevOps and Engineering to automate GCP component deployment and
compliance controls into CI/CD pipelines - Work with the SE and Compliance teams to map controls in-production vs controls to-be
implemented — and close the gap - Use LLM-assisted tooling to accelerate controls validation, drift detection, and audit preparation
Service Catalog Alignment
- Work closely with the Cloud Infrastructure & Agentic Architect to ensure the Service Catalog makes the best of Google-native capabilities
- Validate that every catalog entry meets GCP networking and security standards before approval
FinOps
- Define the framework for FinOps, resource cost attribution, commitment strategy, and rightsizing guidelines across all migrated workloads
- Establish FinOps reporting baselines and enable engineering teams with cost governance frameworks
What you need to fulfill the role
Required Skills & Qualifications
You have designed and operated GCP networking environments in production, hold hands-on compliance framework execution experience, and can translate security requirements into working IaC. Specifically:
- GCP networking fluency — firewalls, VPCs, Cloud NAT, Private Service Connect,
VPN/Interconnect, Cloud Armor: you can design and troubleshoot these without reference documentation - Expert-level knowledge of the Google Cloud Platform stack across networking and infrastructure layers (GKE, Cloud Run, Cloud Functions, Pub/Sub, Artifact Registry, Identity-Aware Proxy, VPC Service Controls)
- Proven IaC experience with Terraform (required); Ansible a strong plus
- Proven hands-on security compliance experience: ISO 27001, SOC, or equivalent security frameworks — applied in a live cloud environment, not theoretical.
- Hands-on experience with LLM-driven tooling (OpenCode, Claude Code, or equivalent) for infrastructure automation and compliance workflows
- Ability to proactively coordinate with stakeholders to remove ambiguity and build clarity in migration designs
- Experience in Agile/fast-iteration environments with high individual ownership
Nice-to-Have (Bonus Skills)
- Experience with Azure networking (for cross-cloud migration context)
- Prior experience in a SaaS product company and cloud modernization experience
- Knowledge of additional compliance frameworks
Soft Skills
- Intense technical curiosity — you track GCP releases, security advisories, and networking developments before they become industry standard
- Strong problem-solving under constraint — you find paths through compliance complexity and networking debt without waiting for perfect conditions
- Ownership mindset — you own the networking and architectural outcomes to support the migration
- Clear communicator: able to translate compliance requirements into engineering tasks, and engineering blockers into executive-level risk flags
- Highly collaborative: you build working relationships with Security, DevOps, SE, and Compliance teams simultaneously
- Fact-driven and data-driven: you anchor migration and cost management frameworks in evidence
What success looks like
We target a mature GCP environment designed for modern enterprise SaaS. The long-term success of this role is defined by:
- Unified Migration Strategy: A comprehensive, multi-phase GCP migration roadmap is fully established, aligned with all applications, and integrated with active cost-governance tracking.
- Architected Network Foundation: A clean, optimized, and refactored networking layer defined via IaC, fully eliminating previous architecture bottlenecks and integrated cleanly into the platform Service Catalog.
- Automated Compliance Controls: Robust security controls automated directly into deployment pipelines, ensuring continuous alignment with target frameworks like ISO 27001 and SOC without manual intervention.
- Actionable FinOps Framework: Active, self-service cost dashboards and governance models adopted by engineering teams, ensuring sustainable and optimized cloud spending.
You're probably NOT a fit if
- You have GCP architecture knowledge but have never touched networking at the firewall/VPC level in production
- You approach compliance as a documentation exercise rather than an engineering problem
- You need stable, fully-defined infrastructure before you can design on top of it
- You struggle to collaborate across teams to resolve architectural ambiguity
What we offer
- Multicultural team across 7 countries (Germany, France, UK, UAE, Spain, New Zealand, Australia)
- Hybrid-first working
- Continuous learning & certification budget
- Open, inclusive, and high-ownership culture
- Learning programmes | Career growth | Leadership access
At Thinkproject, we run feedback cycles that are honest and frequent. We believe the best engineering cultures are built on trust, transparency, and shared ownership — not hierarchy. Our Pune team is a core part of a global organisation, collaborating across time zones with colleagues in Germany, France, the UK, UAE, Spain, New Zealand, and Australia.
We are a passionate bunch here. To join Thinkproject is to shape what our company becomes. We take feedback from our staff very seriously and give them the tools they need to help us create our fantastic culture of mutual respect. We believe that investing in our staff is crucial to the success of our business.
Your contact:
Mehal Mehta
How to apply
Submit your application at careers.thinkproject.com, including:
- Salary expectations
- Potential start date
- A short write-up (max 300 words) on the most complex cloud networking or compliance challenge you have solved — this is the most important part of your application
Working at thinkproject.com - think career. think ahead.
#LI-MM1
#LI-Hybrid
