Azure Architect

Location: 100% Remote must be in the United States and willing to work Eastern business hours

Employment Type: Permanent / Direct Hire / Full-time

Work Authorization: Due to client requirements, only candidates who do not require sponsorship now or in the future will be considered.

Benefits: medical, dental, vision, LTD/STD, HSA/FSA, term life, and supplemental health insurances (e.g., Aflac) for all employees (and their families if needed)

About the Role:

We are seeking a highly skilled and exceptionally strong Azure Architect to join our dynamic team. This critical role demands an individual with deep expertise and a proven track record of successfully designing, implementing, and optimizing complex hybrid cloud solutions. The ideal candidate will be instrumental in enhancing our Microsoft Azure and Microsoft 365 environments, with a particular focus on robust security, efficient endpoint management, and seamless hybrid infrastructure integration.

If you thrive on tackling challenging architectural problems, possess a deep understanding of Microsoft's cloud ecosystem, and can drive significant improvements, we want to hear from you.

Key Responsibilities:

• Architect, implement, and optimize Microsoft Intune solutions for unified endpoint management, encompassing device compliance, application deployment, Windows Autopilot, and BYOD strategies across diverse platforms.
• Design, implement, and manage Azure Arc solutions to extend Azure management, governance, and security capabilities to hybrid environments (on-premises servers, Kubernetes clusters, etc.).
• Architect and optimize Azure networking and connectivity for hybrid integration, including ExpressRoute, VPNs, and robust network security (e.g., Azure Firewall, segmentation).
• Implement and manage comprehensive monitoring, logging, and alerting solutions for Azure and hybrid environments using Azure Monitor, Log Analytics, and Microsoft Sentinel.
• Lead the architecture and implementation of hybrid identity solutions leveraging Microsoft Entra ID (Azure AD Connect, Conditional Access, MFA, PIM).
• Architect and implement critical Microsoft 365 security and compliance features, including Data Loss Prevention (DLP), Microsoft Purview, and integrating M365 security signals with Microsoft Sentinel.
• Contribute to the governance and evolution of Azure Landing Zones and enterprise-scale architecture to ensure consistent and scalable cloud adoption.
• Troubleshoot complex technical issues and identify/address technical debt across Azure and Microsoft 365 environments, driving continuous improvement.

Required Skills & Experience:

• A bachelor's degree in any field of study is required.
• 8+ years of hands-on IT infrastructure experience, including 5+ years specifically in a Cloud or Azure Architect role.
• Deep, demonstrable expertise in Microsoft Intune, covering device enrollment, configuration, compliance policies, application deployment, and Windows Autopilot.
• Profound hands-on experience with Azure Arc, specifically managing Windows/Linux servers and/or Kubernetes clusters in hybrid environments.
• Expert-level knowledge of Microsoft Entra ID (formerly Azure Active Directory), including hybrid identity (Azure AD Connect), Conditional Access, Identity Protection, and authentication protocols.
• Strong understanding of Microsoft 365 core services (Exchange Online, SharePoint Online, Teams, OneDrive) from an administrative and architectural perspective.
• Proven experience with Azure networking (VNETs, NSGs, Azure Firewall, VPN Gateway, ExpressRoute) and cloud security best practices.
• Experience with Azure monitoring and logging solutions (Azure Monitor, Log Analytics) and SIEM integration (Microsoft Sentinel).
• Solid understanding of cloud security principles, governance, and compliance frameworks.
• Excellent problem-solving, analytical, and critical thinking skills.
• Strong communication and interpersonal skills, with the ability to articulate complex technical concepts clearly.

Nice-to-Have Skills:

• Relevant Microsoft Azure certifications (e.g., Azure Solutions Architect Expert AZ-305).
• Experience with Microsoft 365 security and compliance features (e.g., Microsoft Purview, Microsoft Defender for Endpoint/Cloud Apps/Identity).
• Familiarity with PowerShell scripting for automation and management across Azure and Microsoft 365.
• Experience with Infrastructure as Code (IaC) tools like Bicep or Terraform.
• Knowledge of the Microsoft Power Platform (Power Apps, Power Automate, Power BI) and their integration with M365/Azure.
• Understanding of FinOps practices and cloud cost optimization strategies.