Microsoft 365 Engineer

Job Overview
The Microsoft 365 Engineer will serve as the primary administrator and owner of our Microsoft 365 platform. This individual will be responsible for day-to-day operations, end-user support, service enhancements, and feature rollouts across a suite of M365 services used throughout the company. This includes but is not limited to: Exchange Online, Outlook, SharePoint, OneDrive, Teams, Purview, and Intune.

This role is critical to enabling productivity, ensuring data security and compliance, and supporting our continued growth through effective platform management.

The Microsoft 365 Engineer operates in a team environment and will provide input on the feasibility of design solutions through the application of advanced skills obtained through several years of experience solving complex issues. They will recommend improvements and new solutions.

Key Responsibilities

Administration & Operations

• Provision, configure, and manage user identities, groups, and licenses in Entra ID (Azure AD). Routinely audit the organization's user and application identities using Entra ID while adhering to Identity and Access Management best practices.
• Manage and maintain the Microsoft 365 tenant, including user accounts, licenses, and security settings. This includes the proper backup of the M365 content including email and files.
• Administer Exchange Online mailboxes, mail flow rules, hybrid connectivity, and retention policies.
• Oversee Outlook on the web/mobile configuration, mailbox policies, and troubleshoot client connectivity.
• Configure, secure, and maintain Microsoft Teams and meeting policies.
• Manage SharePoint Online sites, site collections, permissions, hub sites, and policies for external sharing.
• Implement and maintain data governance and compliance controls with Microsoft Purview (e.g., DLP, Information Protection, Insider Risk Management).
• Develop best practices, governance frameworks, and lifecycle management plans for collaboration services.

Security & Compliance

• Enforce conditional access, multifactor authentication, and identity protection policies in Entra ID.
• Ensure proper integration between on-premises Active Directory and Azure Active Directory for seamless user authentication and access management.
• Configure retention labels, sensitivity labels, and compliance policies across Exchange, Teams, and SharePoint via Purview.
• Conduct periodic audits, reviews of access, and remediation of security vulnerabilities.
• Implement and enforce cloud security protocols to prevent unauthorized access and cyber threats.

Monitoring & Troubleshooting

• Utilize Microsoft 365 admin center, Defender portal, and PowerShell to monitor service health, usage, and security alerts.
• Investigate and resolve complex issues related to mail routing, client connectivity, Teams meetings, and SharePoint access.
• Develop and maintain operational runbooks, automation scripts (PowerShell, Graph API), and dashboards.
• Respond to security alerts to eradicate threats within the environment.

Collaboration & Support

• Work with service desk and application teams to integrate third-party tools and enforce change management.
• Provide end-user training, documentation, and proactive communications on feature updates and best practices.
• Participate in on-call rotation and perform off-hours support and maintenance as required.

Windows Server Management

• Manage Windows Server environments to ensure optimal performance, security, and reliability.
• Install, configure, and maintain server hardware and software components.

Job Type: Full-time

Pay: From $110,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Flexible spending account
• Health insurance
• Paid time off
• Tuition reimbursement
• Vision insurance

Work Location: In person