Microsoft 365 Administrator

Hybrid Identity & Active Directory Engineering

• Design, maintain, and optimize hybrid identity architecture between Active Directory and Microsoft Entra ID.
• Manage directory synchronization, authentication methods, and identity lifecycle processes.
• Engineer and maintain Group Policy, OU structure, and role-based access models in alignment with cloud governance.
• Oversee conditional access, authentication policies, and privileged access controls.
• Partner with Information Security to enforce identity hardening and Zero Trust principles.

SharePoint Online & OneDrive Engineering

• Design and maintain SharePoint Online architecture including hub sites, communication sites, structured permission models, and governance standards.
• Establish lifecycle management and provisioning standards for SharePoint and Teams-connected sites.
• Oversee OneDrive for Business configuration, sync health, external sharing controls, and data protection policies.
• Implement retention, sensitivity labeling, and information protection controls in alignment with corporate compliance requirements.
• Monitor audit logs, sharing activity, and storage usage to ensure governance compliance.

Intune & Endpoint Management

• Assist with Intune architecture for device enrollment, compliance policies, configuration profiles, and application deployment.
• Engineer endpoint compliance strategies integrated with conditional access and hybrid identity.
• Manage co-management scenarios where applicable between on-premises management and cloud MDM.
• Oversee Windows device lifecycle management, update compliance, and policy enforcement.
• Maintain endpoint reporting and remediation workflows to meet security standards.

Exchange Hybrid Management (Online & On-Premises)

• Administer and optimize Exchange Online and Exchange On-Premises in a hybrid configuration.
• Manage mail flow, connectors, transport rules, and hybrid mail routing.
• Maintain recipient management, shared resources, and mailbox governance across environments.
• Ensure proper configuration of retention policies and compliance controls.
• Monitor mail hygiene, message trace activity, and service health across both cloud and on-prem platforms.
• Support integration between Active Directory and Exchange hybrid components.

Security & Governance Alignment

• Translate Information Security policies into enforceable controls across AD, Entra ID, Exchange, Intune, and SharePoint.
• Support audit readiness by maintaining proper logging, retention, and configuration baselines.
• Monitor and improve security posture across hybrid identity and collaboration platforms.
• Partner with cybersecurity teams during incident response involving identity, messaging, or data exposure.
• Maintain technical documentation and governance standards for the Microsoft platform.

Automation & Continuous Improvement

• Develop PowerShell automation across Active Directory, Exchange (on-prem and online), Entra ID, Intune, and SharePoint.
• Lead root cause analysis for complex hybrid issues and implement long-term remediation strategies.
• Evaluate Microsoft roadmap changes and recommend architectural improvements., Full participation of all employees in a safe, healthy, and respectful environment is key to individual and company success. We are committed to fully utilizing the abilities of all our employees and expect each of our employees to honor this commitment in their daily responsibilities.

• 3 - 5 years of experience administering and engineering Microsoft 365 in a hybrid enterprise environment.
• Strong expertise in:
• Active Directory and hybrid identity
• Microsoft Entra ID
• SharePoint Online & OneDrive
• Intune endpoint management
• Exchange Online and Exchange On-Premises hybrid configurations
• Deep understanding of identity synchronization and authentication models.
• Strong knowledge of enterprise security principles and regulatory compliance requirements.
• Advanced PowerShell scripting and automation skills.
• Experience troubleshooting complex hybrid identity and mail flow issues.
• Strong documentation and cross-functional communication skills.

U.S. Eligibility Requirements

• Must be 18 years of age or older.
• Must be willing to submit a background investigation; any offer of employment is conditioned upon the successful completion of a background investigation.
• Must have unrestricted work authorization to work in the United States. For U.S. employment opportunities, Corient hires U.S. citizens or permanent residents. Exceptions to these requirements will be determined based on shortage of qualified candidates with a particular skill. Corient will require proof of work authorization.
• Corient participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. If E-Verify cannot confirm that you are authorized to work, this employer is required to give you written instructions and an opportunity to contact Department of Homeland Security (DHS) or Social Security Administration (SSA) so you can begin to resolve the issue before the employer can take any action against you, including terminating your employment. Employers can only use E-Verify once you have accepted a job offer and completed the Form I-9.
• Must be willing to execute Corient's Employee Agreement or Confidentiality and Non-Disclosure Agreement, which require, among other things, post-employment obligations relating to non-solicitation, confidentiality, and non-disclosure.

Our dedication to the Employee Experience at Corient is aimed at supporting, empowering, and inspiring our talented team through:

• 401(k) Plan with Employer Matching
• Four Medical Plan options that is generously subsidized by Corient
• Employer paid Dental, Vision & Life and AD&D Insurance
• Employer paid Short-term & Long-term Disability
• Paid Maternity & Parental Leave
• Flexible Spending Accounts & Health Savings Accounts
• Dependent Care FSA
• Commuter & Transit FSA
• Corporate Discount Program - Perkspot
• Training Reimbursement
• Paid Professional Designations
• Giving back to the community - Volunteer days

Corient is one of the fastest-growing wealth management platforms in the United States. We serve more than 10,000 clients and manage over $100 billion of assets through offices located across the country. We combine a boutique's personal service, creativity and objective advice with the extensive resources and vast intellectual capital of an innovative industry leader to create a profoundly different wealth management experience for our clients.