Job Requirements
Denver, CO
Public Trust Polygraph Unspecified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Job Title: Microsoft Security and Endpoint SME
Contract Duration: 6+ month contract to hire (candidates must be open to conversion)
Location: Ideal candidate will live in the Denver area and available for hybrid schedule (2-3 days onsite)
Role Overview Seeking a senior-level Microsoft Subject Matter Expert to lead the design, implementation, and operational strategy across Microsoft security, endpoint management, and data protection platforms. This individual will build a foundational Microsoft security architecture from the ground up, enabling stronger utilization of existing Microsoft E5 licensing while establishing consistent governance, policies, and tooling to support global teams.
This position introduces a new capability focused on designing, deploying, and operationalizing Microsoft security and endpoint services, with a strong focus on Purview, Intune, Defender, and SharePoint Online governance.
Key Objectives
Core Responsibilities
Microsoft Purview & Data Protection
Intune, MAM & Endpoint Management
Microsoft Defender & Application Protection
SharePoint Online Governance & Access Control
Strategic Advisory & Enablement
Required Skills & Experience
Preferred Qualifications
Engagement Context
Contract Duration: 6+ month contract to hire (candidates must be open to conversion)
Location: Ideal candidate will live in the Denver area and available for hybrid schedule (2-3 days onsite)
Role Overview Seeking a senior-level Microsoft Subject Matter Expert to lead the design, implementation, and operational strategy across Microsoft security, endpoint management, and data protection platforms. This individual will build a foundational Microsoft security architecture from the ground up, enabling stronger utilization of existing Microsoft E5 licensing while establishing consistent governance, policies, and tooling to support global teams.
This position introduces a new capability focused on designing, deploying, and operationalizing Microsoft security and endpoint services, with a strong focus on Purview, Intune, Defender, and SharePoint Online governance.
Key Objectives
- Build and establish a scalable Microsoft security and data protection foundation
- Maximize utilization and value of existing Microsoft E5 licenses
- Standardize governance, policies, and tools across security, endpoint, and data environments
- Provide support for global teams with primary coverage in North America
- Increase enterprise-wide adoption and effectiveness of Microsoft platforms
Core Responsibilities
Microsoft Purview & Data Protection
- Architect and define a baseline Purview framework, including naming conventions, audit settings, and standard policies
- Establish a clear strategy for Data Loss Prevention (DLP), including scope, enforcement, and monitoring
- Lead the design and rollout of Purview as a newly implemented capability
- Align Purview configurations with overall data security and compliance requirements
Intune, MAM & Endpoint Management
- Define and execute Intune strategy, including configuration and policy deployment across devices and applications
- Support Mobile Application Management (MAM) initiatives and enforcement policies
- Integrate Intune and endpoint processes with ServiceNow for streamlined operations
- Collaborate with security and operations teams to ensure alignment with broader enterprise security initiatives
Microsoft Defender & Application Protection
- Support implementation and optimization of Defender, with an emphasis on protecting third-party applications
- Define best practices for leveraging Defender across endpoints and applications
- Ensure Defender capabilities align with overall endpoint and data security strategy
SharePoint Online Governance & Access Control
- Act as the SME for SharePoint Online security and access management
- Develop governance models for permissions, access control, and data exposure
- Ensure SharePoint security integrates with Purview and DLP strategies
Strategic Advisory & Enablement
- Provide guidance to define organizational goals for Microsoft security and endpoint platforms
- Develop a clear ECIF-based business case tied to E5 utilization and measurable value outcomes
- Advise on budget alignment in coordination with enterprise funding strategies
- Partner with internal stakeholders to drive security initiatives and Microsoft platform adoption
Required Skills & Experience
- Extensive hands-on experience with Microsoft Purview, Intune, Defender, and SharePoint Online
- Demonstrated success designing Microsoft security architectures from the ground up
- Strong expertise in data protection, endpoint management, and identity-based access control
- Experience integrating Microsoft tools with ServiceNow
- Comfortable operating across advisory, architecture, and initial implementation responsibilities
- Experience working within large-scale, global enterprise environments
Preferred Qualifications
- Experience developing ECIF or similar Microsoft investment/business cases
- Familiarity with driving Microsoft adoption and consumption through structured programs
- Background supporting enterprise security transformation initiatives
Engagement Context
- This role is designed to complement existing extended teams, not replace them
- Focused on new architecture, foundational design, and initial implementation efforts
- Expected to significantly enhance Microsoft platform adoption and overall value realization
group id: 10364617