Job Requirements
Remote
Clearance Unspecified Polygraph not specified
Mid Level Career (5+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Role: We are seeking a M365 Engineer to support Microsoft 365 and endpoint management operations within a federal environment. This role will assist in managing user requests, maintaining cloud and on-prem identity systems, and supporting core M365 services including Entra ID, SharePoint, Access Management & SCuBA Compliance, Exchange Online, Intune.
Key Responsibilities
Identity & Access Management (Entra ID)
• Administer and maintain Microsoft Entra ID (Azure Active Directory), including users, groups, roles, and enterprise applications
• Implement and manage RBAC, Conditional Access Policies, and MFA enforcement aligned with Zero Trust
• Support identity lifecycle processes (provisioning, deprovisioning, role changes, and access reviews)
• Configure and maintain SSO integrations with SaaS and enterprise applications
• Monitor and respond to identity-related security alerts and risks (Identity Protection, sign-in risk policies)
SharePoint Online Administration
• Administer and manage SharePoint Online environments, including site collections, permissions, and governance policies
• Support document management, collaboration workflows, and content lifecycle management
• Implement data governance and compliance policies (retention labels, DLP, sensitivity labels)
• Troubleshoot user access issues and optimize SharePoint performance and usability
• Design and enforce secure collaboration architectures aligned with compliance standards
Access Management & Governance
• Enforce least privilege access and Zero Trust architecture principles across M365 services
• Conduct periodic access reviews and entitlement audits to ensure compliance
• Implement and manage Privileged Identity Management (PIM) for elevated access control
• Maintain access governance policies, SOPs, and audit artifacts
• Integrate identity controls with enterprise SIEM/SOC tools (e.g., Splunk, Microsoft Sentinel)
SCuBA Compliance & Security Hardening
• Implement and maintain Microsoft 365 Secure Configuration Baseline (SCuBA) controls across M365 services
• Assess tenant configurations against CISA SCuBA baselines and remediate gaps
• Enforce secure configurations across:
• Entra ID (identity protection, authentication strength, CA policies)
• Exchange Online, SharePoint Online, and Teams security settings
• Develop and maintain SCuBA compliance documentation and audit artifacts
• Support continuous monitoring and reporting of compliance posture and deviations
• Partner with cybersecurity teams to ensure alignment with federal mandates and Zero Trust maturity models
Operations & Continuous Improvement
• Provide Tier 2/3 support for M365-related issues and service requests
• Develop automation using PowerShell and Microsoft Graph API
• Monitor system health, usage, and performance across M365 services
• Identify opportunities for automation, optimization, and cost efficiency
• Maintain technical documentation, SOPs, and knowledge base articles
Required Qualifications
• Bachelor’s degree in IT, Computer Science, or related field (or equivalent experience)
• 3+ years of experience administering Microsoft 365 environments
• Hands-on experience with:
• Microsoft Entra ID (Azure AD)
• SharePoint Online
• Access Management (RBAC, MFA, Conditional Access)
• Experience implementing or supporting SCuBA (Secure Configuration Baseline) compliance
• Knowledge of identity federation (SAML, OAuth, OIDC)
Preferred Qualifications
• Experience supporting federal environments
• Microsoft certifications such as:
• Microsoft Certified: Identity and Access Administrator Associate
• Microsoft 365 Certified: Enterprise Administrator Expert
• Experience with:
• Microsoft Defender Suite
• Microsoft Purview / Compliance Center
• Microsoft Intune / Endpoint Management
• Familiarity with hybrid identity (on-prem AD + Entra ID)
• Experience using compliance assessment tools and automation for baseline enforcement
Key Responsibilities
Identity & Access Management (Entra ID)
• Administer and maintain Microsoft Entra ID (Azure Active Directory), including users, groups, roles, and enterprise applications
• Implement and manage RBAC, Conditional Access Policies, and MFA enforcement aligned with Zero Trust
• Support identity lifecycle processes (provisioning, deprovisioning, role changes, and access reviews)
• Configure and maintain SSO integrations with SaaS and enterprise applications
• Monitor and respond to identity-related security alerts and risks (Identity Protection, sign-in risk policies)
SharePoint Online Administration
• Administer and manage SharePoint Online environments, including site collections, permissions, and governance policies
• Support document management, collaboration workflows, and content lifecycle management
• Implement data governance and compliance policies (retention labels, DLP, sensitivity labels)
• Troubleshoot user access issues and optimize SharePoint performance and usability
• Design and enforce secure collaboration architectures aligned with compliance standards
Access Management & Governance
• Enforce least privilege access and Zero Trust architecture principles across M365 services
• Conduct periodic access reviews and entitlement audits to ensure compliance
• Implement and manage Privileged Identity Management (PIM) for elevated access control
• Maintain access governance policies, SOPs, and audit artifacts
• Integrate identity controls with enterprise SIEM/SOC tools (e.g., Splunk, Microsoft Sentinel)
SCuBA Compliance & Security Hardening
• Implement and maintain Microsoft 365 Secure Configuration Baseline (SCuBA) controls across M365 services
• Assess tenant configurations against CISA SCuBA baselines and remediate gaps
• Enforce secure configurations across:
• Entra ID (identity protection, authentication strength, CA policies)
• Exchange Online, SharePoint Online, and Teams security settings
• Develop and maintain SCuBA compliance documentation and audit artifacts
• Support continuous monitoring and reporting of compliance posture and deviations
• Partner with cybersecurity teams to ensure alignment with federal mandates and Zero Trust maturity models
Operations & Continuous Improvement
• Provide Tier 2/3 support for M365-related issues and service requests
• Develop automation using PowerShell and Microsoft Graph API
• Monitor system health, usage, and performance across M365 services
• Identify opportunities for automation, optimization, and cost efficiency
• Maintain technical documentation, SOPs, and knowledge base articles
Required Qualifications
• Bachelor’s degree in IT, Computer Science, or related field (or equivalent experience)
• 3+ years of experience administering Microsoft 365 environments
• Hands-on experience with:
• Microsoft Entra ID (Azure AD)
• SharePoint Online
• Access Management (RBAC, MFA, Conditional Access)
• Experience implementing or supporting SCuBA (Secure Configuration Baseline) compliance
• Knowledge of identity federation (SAML, OAuth, OIDC)
Preferred Qualifications
• Experience supporting federal environments
• Microsoft certifications such as:
• Microsoft Certified: Identity and Access Administrator Associate
• Microsoft 365 Certified: Enterprise Administrator Expert
• Experience with:
• Microsoft Defender Suite
• Microsoft Purview / Compliance Center
• Microsoft Intune / Endpoint Management
• Familiarity with hybrid identity (on-prem AD + Entra ID)
• Experience using compliance assessment tools and automation for baseline enforcement
group id: 10368240