Abnormal AI is hiring a Microsoft Cloud Architect & Automation Specialist

Responsibilities

• Serve as the primary Microsoft technical expert and decision-maker for the migration project
• Develop strategic roadmaps for both migration and long-term Microsoft environment management
• Evaluate and recommend technical solutions that align with business objectives
• Collaborate with stakeholders to establish technical requirements and success criteria
• Provide technical guidance and mentorship to team members
• Lead the migration of approximately 500 mailboxes (~2.5TB of data) from Google Workspace to M365
• Configure the migration environment according to organizational requirements
• Recommend and implement appropriate migration tools and methodologies
• Conduct test and pilot migrations with diverse use cases
• Provide post-migration support for test, pilot, and production users
• Validate migrated mailboxes for availability, mail flow, and access
• Review existing Intune cloud services in the legacy M365 tenant
• Design and implement Mobile Application Management (MAM) and application protection policies
• Configure MDM Profiles for Mobile Devices
• Implement governance policies and conditional access policies for BYOD iOS and Android devices
• Assist with licensing and license assignment automation
• Implement security baselines and configure security groups
• Design and configure the email environment including: Mailbox design and configuration
• Design and configure the email environment including: Policy and structure design
• Design and configure the email environment including: Mail flow, connectors, transport rules, SPF/DKIM/DMARC knowledge is a plus
• Configure shared and resource mailbox configuration
• Configure conditional access for compliant devices
• Implement endpoint security and encryption measures
• Ensure security policy alignment with legacy M365 tenant
• Configure and test imageless endpoint deployment including: Autopilot Management
• Configure and test imageless endpoint deployment including: Endpoint compliance and conditional access policies
• Configure and test imageless endpoint deployment including: Remediation scripts
• Configure and test imageless endpoint deployment including: PatchMyPC integration
• Configure and test imageless endpoint deployment including: Entra/Windows365 solutions for cloud PC needs
• Configure and test imageless endpoint deployment including: Autopatch Management
• Deploy applications
• Migrate existing endpoints to the new environment
• Configure Microsoft Purview for DLP, Information Protection, and compliance
• Configure Microsoft Defender for M365 and Defender for Endpoint
• Configure Secure Score, Attack Simulation, and Safe Links/Attachments
• Build API-based solutions to automate migration processes and ongoing management tasks
• Develop custom scripts and tools to enhance operational efficiency
• Create self-service options for common user requests to reduce IT workload
• Implement monitoring and alerting systems with automated remediation
• Establish automated testing and validation processes for configurations and updates
• Develop scalable architecture for ongoing Microsoft environment management
• Create automation roadmaps for continuous improvement of the environment
• Establish governance frameworks and best practices for system administration
• Build reporting and analytics capabilities to track system health and performance
• Plan for future expansion to manage additional platforms beyond Microsoft
• Maintain security posture through automated scanning and remediation
• Document common administrative and operational maintenance tasks
• Create documentation for custom automation solutions and APIs
• Develop runbooks for automated and manual processes
• Offer guidance on best practices for ongoing environment management

Requirements

• Proven experience in migrating from Google Workspace to Microsoft 365
• In-depth knowledge of M365 configuration and administration
• Expertise in Microsoft Intune and mobile device management (iOS and Android)
• Strong understanding of identity management, including SSO integration with Okta
• Proficiency in configuring and managing conditional access policies
• Knowledge of security and compliance solutions within the Microsoft ecosystem
• Experience with endpoint management and deployment solutions
• Strong programming and scripting skills (PowerShell, Python, JavaScript, etc.)
• Experience developing and implementing API-based automation solutions
• Background in creating self-service and automated workflows for routine tasks
• Ability to design and implement infrastructure-as-code solutions
• Demonstrated ability to translate business requirements into technical solutions

Nice to Have

• Google Workspace administration knowledge
• Familiarity with Splunk integration
• Experience with cloud-based APIs and webhooks
• Experience leveraging M.io for free/busy coexistence
• Knowledge of containerization and orchestration (Docker, Kubernetes)
• Experience with infrastructure-as-code tools (Terraform, ARM templates, etc.)
• Background in developing custom connectors and integrations between systems
• Experience with monitoring and analytics including: M365 Admin Center reports
• Experience with monitoring and analytics including: Azure AD Sign-in logs and activity logs
• Experience with monitoring and analytics including: Defender and Compliance dashboards
• Experience with monitoring and analytics including: Usage analytics (Power BI, Viva Insights)
• Microsoft certifications (MS-900, MS-100, MS-101, SC-900, etc.)
• Experience in providing client-facing consulting services
• Background in developing self-service portals and automation frameworks

Benefits

• Certain roles are eligible for a bonus, restricted stock units (RSUs), and benefits
• Abnormal AI is an equal opportunity employer
• Pre-employment checks are conducted as part of secure hiring practices