Azure Architect Needed: Architect Multi-Tenant MSP Infrastructure via Lighthouse & Bicep
Description:
I am launching a Managed Service Provider (MSP) practice focused on deploying and managing Azure Container Apps for clients. I am looking for a senior Azure expert to consult with me on the optimal, repeatable architecture for onboarding new client tenants.
The Goal:
I want a streamlined process to deploy resources into my clients' Azure subscriptions with minimal friction on their end. My current objective is to use Azure Lighthouse to project my management identity into their tenant, using Service Principals for pipeline deployments (ADO/GitHub Actions).
What I need from you:
Architecture Review: Provide a clear, secure outline for the onboarding flow (e.g., Guest access, Execution of Bicep/CLI scripts, Lighthouse delegation registration).
Best Practices: Guidance on structuring the Bicep templates for multi-tenant deployment, handling role assignments for SPNs, and maintaining security boundaries.
Live Consultation: I am not looking for someone to do the work for me in a vacuum. I need screen-sharing sessions where you guide me through the logic, explain the why behind the infrastructure decisions, and help me refine my current scripts.
Strict Requirements (Non-negotiable):
Proven Experience: You must have architected similar MSP multi-tenant setups using Azure Lighthouse before. Do not apply if you are learning on the job.
No Subscription Access: You will NOT have access to any of my Azure subscriptions or client environments. I will be executing the commands based on your guidance.
Communication: You must be comfortable with interactive screen-sharing (Zoom, Teams, Meet). You should be able to explain complex RBAC and cross-tenant authentication concepts clearly in English.
Apply tot his job
Apply To this Job