Senior Consultant - Power Platform, Copilot Studio & Purview Gove

About The Position

Requirements

• You can hold a discovery conversation with a Chief Information Officer in the morning, run an Event Storming session with a finance director after lunch, and ship a Dataverse security-role design before dinner. You communicate in plain language to business owners and in precise technical terms to engineers, often in the same meeting.
• You believe governance is a value engine, not a brake. You measure success in ROI delivered, not artifacts produced.
• Power Platform & Copilot Studio (depth required): 5+ years delivering on Microsoft Power Platform in enterprise or mid-market environments, with at least 2 full lifecycles of CoE Kit deployment and operation.
• Deep working knowledge of Power Platform ALM: solution layering, managed solutions, environment strategy, Power Platform Pipelines or the ALM Accelerator, and integration with GitHub Actions or Azure DevOps.
• SailPoint - Proven expertise with Identity Governance & Administration (IGA) platforms, specifically SailPoint
• Hands-on experience implementing, configuring, and maintaining SailPoint solutions (e.g., IdentityIQ, IdentityNow)
• Dataverse — security model, table and relationship design, plug-ins, business rules, and auditing.
• Power Platform DLP policies — connector classification, tenant- vs environment-level scoping, endpoint filtering for HTTP and SQL connectors, custom connector handling.
• Copilot Studio — agent topic design, knowledge sources, generative answers, plugins and connectors, authentication, content moderation, and audit. You have stood up at least one production-grade agent end-to-end.
• Microsoft Purview & M365 governance (depth required): Microsoft Purview Information Protection — sensitivity label taxonomy design, manual labeling, auto-labeling policies (client-side and service-side), and label-driven encryption.
• Microsoft Purview Data Loss Prevention across Exchange, SharePoint, OneDrive, Teams, and Endpoint DLP, including policy tuning, incident triage, and integration with Power Platform DLP.
• Data classification using built-in, custom, exact-data-match, and trainable classifiers.
• Retention labels and retention policies, records management, and disposition review.
• Microsoft Purview Audit (Standard and Premium), audit log search and export, and integration with downstream SIEM.
• Microsoft Compliance Manager — assessment selection, improvement actions, and executive reporting.
• Purview for Copilot — DSPM for AI configuration, sensitivity-aware grounding, prompt and response auditing.
• Identity & observability (depth required): Microsoft Entra ID — app registrations, service principals, conditional access, and how all of the above bind to Power Platform DLP and Purview policies.
• Azure Monitor and Log Analytics — workspace design, diagnostic settings on Power Platform and Dataverse, KQL fluency, workbook authoring, alert rules, and action groups.
• Application Insights for component-level telemetry on custom connectors, plug-ins, and Copilot Studio agents.
• Power BI dashboards that report a value metric a non-technical executive can act on.
• Consulting craft (depth required): Demonstrated ability to author and present architecture artifacts to a CTO-level audience: C4 diagrams, SADs, SDDs, milestone roadmaps.
• A discovery toolkit you actually use — Lean UX, BPMN, Event Storming, or comparable methods for translating ambiguous client problems into a prioritized backlog with measurable outcomes.

Nice To Haves

• Microsoft certifications: PL-600 (Power Platform Solution Architect), PL-400 (Developer), SC-400 (Information Protection & Compliance Administrator), SC-300 (Identity & Access Administrator).
• Experience integrating Power Platform with Microsoft Fabric, Dataverse long-term retention, or Azure SQL.
• Microsoft Sentinel integration for governance signals and audit-log SIEM tier.
• Familiarity with Bicep + Azure Developer CLI (azd) for any Azure-side resources adjacent to the Power Platform estate.
• Prior delivery in regulated environments (medical device, life sciences, healthcare, or financial services) and comfort with the documentation discipline that comes with them.
• Experience as a subcontractor or partner-of-partner — you know how to represent PTM cleanly inside multi-vendor delivery teams and inside the end client’s governance forums.

Responsibilities

• A risk-ranked inventory of every app, flow, agent, environment, sensitivity label, and DLP policy across the client tenant.
• A current-state assessment of ALM, identity, Power Platform DLP, Microsoft Purview information protection, retention, audit, and Compliance Manager posture — mapped to PTM and Microsoft reference architectures.
• A prioritized governance backlog with one-line ROI rationale per item, ready to drive Phase 2 scope confirmation.
• A deployed and operating Power Platform CoE Kit with environment strategy, tenant- and environment-level DLP policies, and connector classification rationale.
• ALM pipelines (Power Platform Pipelines or ALM Accelerator + GitHub Actions / Azure DevOps) serving both citizen-developer and pro-developer paths.
• A Purview governance baseline: sensitivity label taxonomy with auto-labeling rules, M365 DLP policies covering Exchange / SharePoint / OneDrive / Teams / Endpoint, retention label and policy framework, audit (Standard or Premium) configuration, and Compliance Manager assessment posture.
• Copilot Studio agent governance with authenticated Entra-bound knowledge sources, content controls, audit logging, Purview-for-Copilot DSPM-for-AI configuration, and red-team review of high-exposure agents.
• A live observability surface built on Azure Monitor, Log Analytics, Application Insights, and Power BI — including diagnostic settings on Power Platform, KQL workbooks for governance KPIs, alert rules on policy drift, and an executive dashboard reporting against the value metric agreed during Discovery.
• Solution Architecture Document (SAD), Solution Design Document (SDD), and milestone roadmap authored against PTM templates and reviewed under our Maker-Checker discipline.

Benefits

• Competitive contract rate during the engagement; market-aligned base, performance bonus, and benefits package on conversion.