Responsibilities
- Maintain expert-level understanding of the Microsoft 365 environment, including Exchange Online, Teams, SharePoint, OneDrive, Viva, and related workplace technologies, to support integrations, migrations, and engineering initiatives.
- Lead Microsoft 365 migration activities across different scenarios, including tenant-to-tenant, cross-platform, and new deployments, ensuring continuity for mailboxes, calendars, files, Teams, and shared resources.
- Oversee domain and DNS transitions for acquired organizations, including registrar changes, DNS replication, MX record updates, email routing verification, and configuration of SPF, DKIM, and DMARC records.
- Develop and maintain automation scripts using PowerShell and Microsoft Graph API, and leverage AI-powered tools like M365 Copilot and GitHub Copilot to streamline operations and engineering workflows.
- Manage workplace services using ITIL best practices for incident, problem, change, and service request management, with Freshdesk serving as the primary service management platform.
- Take full ownership of identity systems during integrations, including cloud-based identity (Microsoft Entra ID), on-premises Active Directory, and their hybrid configurations.
- Design and implement Conditional Access policies, Privileged Identity Management (PIM), and role-based access controls across all applications and services.
- Configure and manage Single Sign-On (SSO) integrations for internal and external applications using SAML, OAuth 2.0, and OpenID Connect.
- Manage the full lifecycle of user identities during mergers and acquisitions, including onboarding, role changes, offboarding, and automated provisioning or deactivation via Entra ID governance and SCIM.
- Strengthen identity security by enforcing multi-factor authentication, passwordless methods, and zero-trust access models across all user groups.
- Evaluate the device inventory of acquired entities, assessing operating systems, MDM/RMM coverage, patch levels, encryption, and software compliance to determine enrollment, re-imaging, or replacement needs.
- Enroll devices into MDM and RMM platforms using automated provisioning methods such as Windows Autopilot and Apple Business Manager’s Automated Device Enrollment.
- Create and manage Intune configuration profiles, compliance policies, app protection policies (MDM/MAM), and self-service app catalogs for Windows and macOS devices.
- Implement and configure RMM solutions across acquired device fleets to enable monitoring, patching, automated remediation, and endpoint visibility prior to operational handover.
- Integrate identity, MDM, and RMM systems into a unified device compliance framework, ensuring all devices are authenticated, policy-compliant, and secure before accessing corporate systems.
- Lead technical execution of integration projects, including planning, implementation, and stabilization after cutover, in coordination with solutions architects for application deployment.
- Define and carry out integration strategies tailored to the source environment—whether tenant migration, platform transition, on-premises lift-and-shift, or new deployment—with minimal user impact.
- Conduct comprehensive technical assessments of acquired environments, covering identity systems, collaboration tools, device fleets, servers, domains, DNS, email records, web assets, SaaS usage, and software compliance.
- Create and maintain detailed project documentation, including integration playbooks, migration runbooks, schedules, risk logs, and rollback plans.
- Perform post-migration reviews, capture key learnings, and refine integration processes for continuous improvement.