Sr M365 Engineer

About The Position

Requirements

• BS degree and 8+ years of prior relevant experience or Master with 6 years of prior relevant experience. Additional years of experience may be substituted in lieu of degree.
• Must be able to obtain and maintain a Public Trust or higher security Clearance.
• Experience with implementation and administration Microsoft 365 services including Exchange Online, SharePoint Online, OneDrive, Microsoft 365 Apps, Intune, Entra ID, and hybrid Microsoft 365 environments.
• Experience with Microsoft 365 Security Services, Microsoft Defender capabilities, Conditional Access, identity protection, endpoint security, and secure service configuration.
• Demonstrated Knowledge of Microsoft 365 support technology including but not limited to, Active Directory, DirSync, Entra Connect, Active Directory Federation Services (ADFS), Entra, Conditional Access Policies, MFA, PIM, application registrations, and hybrid identity services.
• General Knowledge of Microsoft 365 service administration, Exchange Online mail flow, SharePoint Online, OneDrive, Intune, Entra, endpoint management, routing, and related security appliances or services.
• Strong experience in PowerShell, Microsoft Graph, and scripting/programming languages such as C#, C++, Python, or related technologies to support administration, automation, reporting, system health checks, and operational validation of Active Directory and Microsoft 365 technologies including Exchange Online, SharePoint Online, OneDrive, Entra, Intune, and related services.
• Strong understanding of standard client/server, networking, TCP/IP, and Internet fundamentals.
• Strong knowledge of Microsoft Authentication Protocols, Modern Authentication, identity lifecycle, token-based authentication, and Conditional Access behavior.
• Proven experience with standard monitoring tools, scripting methodologies, practices, automation-based system or environment health checks, and maintaining existing operational automation.
• Experience with Azure application registrations migrating apps from Basic Auth to Modern Auth and supporting application permissions, Graph permissions, certificates, secrets, and service principal lifecycle management.
• Strong Active Directory Group/User object manipulation, Entra user and group administration, dynamic groups, role assignments, and hybrid identity troubleshooting.
• Working knowledge of Microsoft PKI, certificate-based authentication, device certificates, and certificate dependencies for Microsoft 365 and endpoint management services.
• Strong understanding of infrastructure services: DNS, WINS, DHCP and how they support hybrid Microsoft 365, identity, endpoint, and application services.
• Strong technical writing and presentation skills with ability to effectively communicate with all levels of customer organization (technical resources, management).
• Ability to communicate effectively with all leadership levels and multiple IT teams consuming Microsoft 365, identity, endpoint, and automation services.
• Ability to resolve complex problems using significant application of technical knowledge conceptualizing, reasoning and interpretation.
• Ability to obtain a Public Trust clearance.
• Demonstrated knowledge of the Microsoft 365 product suite, including but not limited to SharePoint Online, OneDrive, Teams, Microsoft 365 Groups, Lists, OneNote, Forms, Power Automate, Power BI, and related productivity, collaboration, and automation services.
• Experience using Microsoft 365 products and services to support daily operations, engineering activities, projects, initiatives, customer requirements, and end-user support needs.
• Experience with Intune and Windows device management, including device enrollment, configuration profiles, compliance policies, application deployment, endpoint security, Windows update management, and troubleshooting.

Nice To Haves

• Previous experience working in an Agile Scrum environment.
• Previous experience employing DevOps methodologies.
• Experience with change control principals and ticket with Service Now (SNOW).
• Understanding of agency Capstone and NARA data retention compliance principles.
• Experience with design, planning and implementation in environment with 10,000+ users.
• Experience with Azure services that support Microsoft 365 automation, integration, and operations, including Logic Apps, Azure Automation, Azure Functions, Key Vault, storage accounts, managed identities, service principals, and application registrations.
• Experience building or maintaining Power Automate flows, Power BI reports or dashboards, SharePoint Online lists/libraries, Forms-based intake processes, and other Microsoft 365-based operational tools.

Responsibilities

• Work within an ITIL environment with a large focus on DevOps, automation, and sustaining engineering.
• Provide engineering support for the Microsoft 365 tenant and related services in a hybrid environment.
• Manage email, messaging, collaboration, meeting, and user-management services.
• Independently develop solutions, approaches, or make recommendations to resolve a wide range of complex or difficult problems for both internal/external customers, including vendors.
• Serve as a mentor for Junior Engineers.
• Deliver presentations and produce well-written technical documents tailored to the customer’s environment and objectives.
• Operate in an Agile Scrum methodology, participating in scrum sprint activities related to Microsoft 365 engineering, automation, email, messaging, collaboration, meeting and user-management services, Entra, Intune, and hybrid solutions.
• Troubleshoot and collaborate with other technical functional groups such as Service Desk, Datacomm, Security, Engineering Teams, Endpoint Management, Identity Management, and application teams for all supported technical issues.
• Collaborate with Identity Management, Collaboration, Messaging, Mobility Services, Endpoint Management, Security, and Engineering resources to reach quality results and progressive achievements.
• Understand cross-team dependencies to ensure new or changed solutions comply with department vision, environment, and security considerations.
• Identify opportunities for improved user experience, service reliability, automation, and operational efficiency based on knowledge of existing solutions, current user technology, Microsoft 365 Roadmap and industry trends.
• Understand requirements gathering, evaluation, testing, and lifecycle management for hardware & software.
• Support efforts for large-scale Microsoft 365 administration automation for user T0 self-service, admin support, monitoring system health, and day-to-day operations.
• Provide consultation on the design, plan, and execution of Microsoft 365 workloads including Exchange Online, OneDrive, SharePoint Online, messaging and meeting systems, Entra, Intune, and related service integrations.
• Support the development, deployment and execution of Microsoft 365 services, automation capabilities, and develop roadmaps and services strategies.
• Engineer, deploy, automate, and provide sustaining engineering support for our customer program.
• Assist in developing concise and accurate engineering documentation on current and proposed cloud environment including Visio Diagrams, As-Built documents, recommendations for solutions, run books, knowledge guides, script documentation, system health check procedures, and other operations guides.
• Provide technical and operational subject matter expertise for Microsoft 365 Service adoptions, automation, Entra, Intune, and hybrid service operations in the organization.
• Work with little or no supervision, provide guidance to the team when necessary, and be able to adapt to changing requirements, changing priorities, and complex technical dependencies.
• Maintain, troubleshoot, and enhance existing automation scripts, system health checks, reporting, and operational validation processes; able to pick up, digest, and make changes as necessary to support evolving Microsoft 365 service needs.
• Routinely evaluate related Microsoft 365 processes and work for continuous process improvements and automation and make informed decisions on implementation with proper change process.
• Create new and modify existing PowerShell scripts, Microsoft Graph-based automation, and automation code written in C#, C++, Python, or related scripting/programming languages to automate reporting, administrative tasks, system and environment health checks, operational validation, and support processes based on extensive knowledge of the environment; able to pick up, digest, and make changes to existing scripts and create new processes that can be followed by junior level engineers and administrators.
• Provide strategic planning for the ongoing design, development and improvement of Microsoft 365, Entra, Intune, automation, and hybrid infrastructure services, including requirements and implications as they relate to business continuity and disaster recovery and recommend solutions to Management for consideration.
• Create and maintain documentation related to Microsoft 365 engineering processes, automation scripts, health check processes, and ConOps on a quarterly basis.
• Create and maintain comprehensive documentation for configurations, processes, and procedures related to Microsoft 365 administration, Entra administration, Intune administration, scripting, and automation.
• Take the Lead with issue escalation by Deskside support team, Service Desk, Security, Engineering, and other IT teams for client access, endpoint, identity, automation, and Microsoft 365 service issues for resolution.
• Participate as required with Agile Scrum sprints and other Agile ceremonies.
• Stay abreast of current and emerging technologies, regularly analyzing and evaluating their impact and benefit to the customer by providing recommendations to management.
• Provide guidance to address risks related to data privacy, ethics, compliance, identity, endpoint security, and automation.
• Provide technical and operational support across the Microsoft 365 product suite, including but not limited to SharePoint Online, OneDrive, Teams, Microsoft 365 Groups, Lists, OneNote, Forms, Power Automate, Power BI, and related services used for daily operations, projects, initiatives, and customer support.
• Leverage Microsoft 365 collaboration, productivity, reporting, and automation tools to support internal operations, improve service delivery, and enhance the end-user experience across the customer environment.
• Provide engineering support for Intune-managed Windows devices, including device configuration, compliance, application deployment, endpoint security settings, troubleshooting, and lifecycle management in support of customer requirements.

Benefits

• competitive compensation
• Health and Wellness programs
• Income Protection
• Paid Leave
• Retirement