Service Engineer
MicroAge · Phoenix, AZ · 3 wk ago
HybridEngineering$85k/yrFull-time
Services Engineer II
Compensation: Starting at $85,000 (DOE)
About the role
Maintain Defender security posture by reviewing onboarding status, sensor health, policy assignment, and device compliance reporting.
Responsibilities
- Investigate and remediate endpoint security incidents, including isolating devices, collecting diagnostics, reviewing timeline events, and coordinating remediation actions with internal teams.
- Support Microsoft 365 Defender portal administration, including incidents, alerts, advanced hunting queries, secure score recommendations, and threat protection reporting.
- Support Microsoft Entra ID — Identity & Access, including user lifecycle management, provisioning, deprovisioning, license assignment, and role-based access control.
- Configure, test, and troubleshoot Conditional Access policies and MFA enforcement in line with each client’s security baseline and risk appetite.
- Support Microsoft Entra Connect synchronization for clients in hybrid environments, resolving sync errors and maintaining clean identity data.
- Support SSO configurations and enterprise application registrations, supporting both new integrations and ongoing application access reviews.
- Triage and respond to Entra ID Protection alerts, sign-in anomalies, and risky user events within agreed response SLAs.
- Support Exchange Online — Messaging & Mail Flow, including mailboxes, distribution groups, shared mailboxes, and resource accounts across client tenants in a consistent, documented manner.
- Support Microsoft Defender for Office 365 protection policies per client, including anti-spam, anti-phishing, Safe Links, and Safe Attachments.
- Utilize Message Trace, Exchange Online PowerShell, and mail flow diagnostics to investigate and resolve delivery failures within SLA.
- Monitor client mailbox health, quota utilization, and audit log activity, flagging anomalies and advising clients on remediation.
- Support Microsoft Teams — Collaboration & Telephony, including support and tuning Teams policies per client, covering messaging, meetings, live events, app permissions, and external/guest access configurations.
- Liaise with client network teams and internal engineers to validate QoS, firewall, and bandwidth configurations for optimal Teams performance.
- Support and maintain Data Loss Prevention (DLP) policies across Exchange Online, SharePoint, OneDrive, and Teams for clients in regulated industries.
- Afford Data Loss Prevention (DLP) policies across Exchange Online, SharePoint, OneDrive, and Teams for clients in regulated industries.
- Support and maintain retention labels, retention policies, and records management schedules aligned to each client’s compliance and legal obligations.
- Support client eDiscovery issues.
Qualifications
- Experience: 2–4 years of Microsoft 365 administration experience, ideally gained within a Managed Service Provider or multi-client environment.
- Skills: Proven ability to manage concurrent workloads across multiple client tenants with differing configurations, SLAs, and business requirements; proficiency in PowerShell scripting for M365 administration, including the Exchange Online, Microsoft Graph, and Intune PowerShell modules.
- Technical Skills: Strong understanding of Entra ID identity concepts including OAuth 2.0, SAML, RBAC, Conditional Access, and hybrid identity models; ability to read and interpret diagnostic logs, message traces, sign-in logs, and audit data across multiple tenants; familiarity with PSA and ITSM platforms such as ConnectWise, Nilear for ticket management and time tracking; working knowledge of networking fundamentals (DNS, TCP/IP, SMTP, TLS) as they relate to M365 services and client infrastructure; understanding of Microsoft CSP licensing models, including M365 Business, E3/E5, and how to advise clients on license optimization.
- Preferred Skills and Qualifications: 3+ years required experience in M365; 1+ year of MSP, or similar client facing industry, experience highly preferred; strong knowledge and proficiency of the following: M365 Apps, Exchange Online, SharePoint Online, OneDrive, MS Teams, Azure basics, Endpoint Management, Threat protection/Security, Identity/Access management, Purview; experience with creating and utilizing PowerShell scripts; Microsoft certifications (e.g., MS-900, MS-700, MS-100, MS-101 etc.); proficiency in Exchange Server and related components; strong problem-solving skills to understand and resolve both simple and complex technical issues while communicating clearly with all stakeholders; ability to determine priorities effectively by managing multiple tickets, projects, and clients; affinity for developing strong business relationships across multiple levels of an organization; have exceptional written and verbal communication skills; MicroAge Benefits — Comprehensive health, dental, vision, and 401K plans; Company paid basic life insurance, long term disability, and parental leave; Quarterly company contribution towards Health Savings Account (HSA); Flexible hybrid work schedule; Frequent performance recognition awards; Paid Time Off (PTO); Paid Holidays; Associate Referral Bonus; Military Differential Pay for Active Military Associates.