Job Title: Senior Microsoft 365 Engineer

Overview

We are seeking a highly experienced Senior Microsoft 365 Engineer to design, implement, and maintain best-practice configurations across our Microsoft 365 E5 environment. The ideal candidate will have deep expertise in Microsoft cloud security, endpoint management, compliance, and collaboration tools, with a proven ability to build scalable, secure, and well-governed enterprise solutions.

Key Responsibilities

• Design and Implement Best Practices
• Develop and enforce governance, configuration, and lifecycle standards across all E5 workloads.
• Define baseline policies for identity, access control, and data protection.
• Microsoft Entra (Azure AD)
• Design and implement secure identity architecture.
• Manage conditional access, MFA, and role-based access controls (RBAC).
• Integrate Entra ID with on-premises and third-party systems.
• Microsoft Intune
• Lead the deployment and management of Intune for device configuration, compliance, and application management.
• Implement endpoint security and compliance baselines across Windows, macOS, iOS, and Android.
• Microsoft Purview & Information Protection
• Configure and operationalize data classification, labeling, and DLP policies.
• Develop strategies for compliance, retention, and insider risk management.
• Microsoft Defender Suite
• Implement Defender for Endpoint, Office 365, and Identity.
• Establish monitoring, incident response, and threat protection policies.
• Exchange Online, SharePoint Online, and Teams
• Ensure secure and efficient collaboration configurations.
• Manage mail flow rules, retention, and compliance policies.
• Establish permission and sharing controls in SharePoint and Teams aligned with organizational policy.
• Access Management and Security Posture
• Design and maintain Conditional Access and Zero Trust architecture.
• Regularly assess and enhance tenant security posture via Secure Score and compliance reports.
• Documentation and Knowledge Sharing
• Develop detailed documentation, runbooks, and governance frameworks.
• Mentor junior engineers and collaborate with IT leadership on roadmap planning.

Qualifications

• 7+ years of experience managing enterprise Microsoft 365 environments.
• Deep technical expertise in Microsoft 365 E5 stack (Entra ID, Intune, Purview, Defender, Exchange, SharePoint, Teams).
• Strong background in security and compliance, including Zero Trust and data protection models.
• Proven experience implementing Conditional Access, DLP, MDM/MAM, RBAC, and device compliance policies.
• Microsoft certifications such as MS-102, SC-100, SC-300, SC-400, or MD-102 preferred.
• Excellent documentation, communication, and project leadership skills.

Preferred Attributes

• Hands-on experience with PowerShell automation, Graph API, or KQL (Defender/Purview).
• Familiarity with hybrid AD environments and AAD Connect.
• Demonstrated ability to lead tenant-wide migrations or E5 rollouts.
• Strong understanding of modern workplace governance and security frameworks.