Sr Microsoft Cloud Architect

Summary: We are seeking a Senior Microsoft Cloud Architect with proven, real-world hands-on experience designing, implementing, and operating Microsoft cloud security and management platforms. This role requires deep production experience with Microsoft Sentinel, Microsoft Defender, Microsoft Purview (DLP), and Microsoft Intune, not just exposure or academic knowledge., Cloud Architecture & Strategy

• Design and govern enterprise architectures across Azure, Microsoft 365, and Entra ID
• Lead cloud modernization initiatives with security-first design principles
• Define architectural standards, reference designs, and best practices

Security Engineering (Hands-On Required)

• Architect, deploy, and manage Microsoft Sentinel in production environments

• Design and operate Microsoft Defender solutions (Endpoint, Office 365, Identity, Cloud)

• Implement Microsoft Purview DLP across Exchange, SharePoint, OneDrive, and Teams

Endpoint & Device Management (Hands-On Required)

• Architect and manage Microsoft Intune across Windows, macOS, iOS, and Android
• Implement Autopilot and compliance-based enrollment strategies

Azure & Infrastructure

• Architect Azure IaaS and PaaS workloads and DR strategies
• Implement Azure Virtual Desktop and Windows 365 solutions

Do you have experience in VPN management?, * 8+ years IT infrastructure or cloud engineering experience

• 5+ years hands-on Microsoft Azure and Microsoft 365 experience
• Demonstrated production experience with Sentinel, Defender, Purview DLP, and Intune
• Strong PowerShell scripting experience
• Deep expertise with Entra ID, including Conditional Access, MFA, identity governance, and privileged access controls
• Strong experience with Azure networking, including VNets, VPN, ExpressRoute, NSGs, Azure Firewall, and private connectivity patterns
• Hands-on experience with hybrid identity, Active Directory, Azure AD Connect, Group Policy, and migration from legacy infrastructure
• Experience automating cloud operations using PowerShell, Microsoft Graph, ARM/Bicep, Terraform, or similar infrastructure-as-code tools
• Proven experience with cloud monitoring, logging, incident response, and security operations in regulated or enterprise-scale environments
• Working knowledge of compliance and governance frameworks such as CIS, NIST, ISO 27001, or Microsoft security baseline standards
• Ability to produce high-quality architecture diagrams, technical documentation, implementation runbooks, and executive-ready design recommendations

Certifications:

• Microsoft Certified: Azure Solutions Architect Expert (AZ-305) required
• Microsoft Certified: Cybersecurity Architect Expert (SC-100) strongly preferred; candidates with Azure Security Engineer Associate (AZ-500), Identity and Access Administrator Associate (SC-300), or Security Operations Analyst Associate (SC-200) plus equivalent architecture experience may also be considered
• Microsoft 365 Certified: Endpoint Administrator Associate (MD-102) preferred for candidates leading Intune, Autopilot, and endpoint security implementations

Hands-On Productions Requirements:

• Proven experience deploying and supporting Microsoft cloud technologies in live enterprise environments, including Microsoft Sentinel, Defender, Purview, Intune, and Windows Autopilot
• Hands-on experience with security configuration, policy deployment, incident response, endpoint management, application packaging, compliance enforcement, and remediation workflows.
• Experience leading production deployments, post-deployment stabilization, operational handoff, and ongoing optimization of Microsoft 365/cloud solutions.
• Candidates should be able to discuss production implementations, architecture decisions, operational challenges, and measurable business outcomes from prior deployments.

Pulled from the full job description

• 401(k)
• Health insurance
• Paid time off
• Vision insurance
• Dental insurance
• Life insurance