Senior M365 & Exchange Engineer
Systems Planning & Analysis · Alexandria, VA · 2 wk ago
Information Technology$140k/yrFull-time
Responsibilities
- Design, deploy, and manage Exchange Online environments to ensure secure, reliable, and efficient messaging services.
- Administer mail flow, connectors, transport rules, distribution groups, shared mailboxes, resource accounts, auditing configurations, and retention policies.
- Maintain and optimize Exchange Online Protection (EOP) and Defender for Office 365 to manage threats, filter spam, and ensure message hygiene.
- Perform advanced troubleshooting for email delivery, hybrid mail flow, secure mail routing, and service health issues.
- Support migrations, tenant integrations, and lifecycle-management activities.
- Administer Azure Active Directory (Azure AD) / Entra ID, including users, groups, roles, conditional access, and identity governance.
- Manage authentication and access controls, including Conditional Access, MFA, SSO, and passwordless capabilities.
- Support hybrid identity solutions such as Azure AD Connect / Entra Connect, federation services, pass-through authentication, MFA/SSO integrations, and synchronization technologies.
- Implement and enforce RBAC, least privilege, privileged identity management (PIM), and identity security best practices.
- Manage enterprise application integrations, app registrations, service principals, OAuth permissions, and SaaS identity lifecycle.
- Manage and support Office 365 services, including SharePoint Online, OneDrive for Business, Microsoft Teams, and compliance tools.
- Apply and maintain governance models, including DLP policies, retention policies, information protection labels, and data security controls.
- Monitor and improve tenant posture using Microsoft Secure Score, audit logs, and compliance center insights.
- Support cross-platform integrations across Microsoft 365 workloads to ensure a consistent, secure user experience.
- Ensure compliance with frameworks such as NIST SP 800-171, CMMC, and ISO 27001 as they apply to Microsoft 365 and identity environments.
- Implement cloud security hardening, conditional access baselines, authentication protections, and auditing policies.
- Contribute to security assessments, audits, incident response processes, and remediation activities.
- Monitor service health and performance across Microsoft 365 and Azure AD using built-in and enterprise monitoring tools.
- Develop automation and alerting using PowerShell, Microsoft Graph API, or Azure automation tools to enhance operational efficiency.
- Partner with infrastructure, endpoint, networking, cybersecurity, and application teams to deliver integrated solutions.
- Provide Tier III support and mentor junior administrators and support personnel.
- Engage with vendors and managed service providers to resolve issues and implement enhancements.
- Document configurations, operational procedures, governance policies, and architectural decisions for knowledge sharing.
Qualifications
- Education: Bachelor’s degree in Information Technology, Computer Science, or a related field, or equivalent experience.
- Experience: 8+ years of system administration experience with Microsoft technologies. 5+ years administering Microsoft 365, Exchange Online, and Azure AD.
- Technical Skills: Strong expertise in Exchange Online, Azure AD, and Microsoft 365 administration. Hands-on experience with identity governance, conditional access, MFA/SSO, and app registration. Strong scripting skills using PowerShell, Azure CLI, or Graph API.
- Soft Skills: Strong troubleshooting and analytical skills. Excellent communication and cross-functional collaboration abilities. Ability to document technical solutions, governance, and best practices.