Lead M365 Engineer

As a Lead M365 Engineer, you will be in a Client facing role, within our Acceleration Delivery Center contributing to pre-sales activities, portfolio activities, and hands-on project delivery for AIS' service offerings. The purpose of the role is to be a customer facing architect and engineer delivering M365 cloud project and consulting work. The successful applicant will work closely with the customer and AIS delivery team ensuring a highly satisfied customer experience. This role includes ownership of technical, non-technical and service elements related to M365 cloud project engagements.

What You'll Be Doing

• Work in a team with other smart AIS employees using cutting edge technologies to solve challenging business problems
• Utilize AIS' methods, assets and tools from end-to-end in the design and implementation of solutions which leverage M365 cloud services. There is a purpose of the role working within a M365 delivery team to ensure that we are delivering what is expected by:
  • Ensuring that the architecture meets the functional and non-functional requirements.
  • Ensuring that the architecture complies with the overall Client's IT policies and strategies, obtaining authorized waivers where deviation is required.
  • Ensuring that the architecture is consistent with and supports the productivity and financial performance objectives of the project.
  • Implementation of the architecture in Client's environment with delivery team
  • Provide escalation support and remediation for Engineering team roles on projects

Location and Travel Details

This is a remote position with occasional travel (if needed).

Profile of Success

• Must have at least 2-5+ years' Architecture experience (from an established Consulting Company, or Enterprise) Designing, Implementing, Configuring, Testing, Migrating & Securing Exchange (on-premises/online) & Exchange Hybrid solutions:
• From Exchange (5.5 - 2019) to Exchange Online
• Must have Architectural Proficiency with Exchange Hybrid Designs & how the following solutions could break Hybrid Co-Existence as well as how they need to be Designed to work with Hybrid Co-Existence
• Network Break & Inspect Devices (Cloud Access Security Brokers, Data Loss Prevention, Proxy devices, Secure Web Gateways, WAN Accelerators & Optimizers)
• Firewalls and Load Balancers
• Must have Architectural Proficiency with M365 Hybrid Designs & how they must be designed in the following scenarios:
• To maintain Exchange Hybrid Co-Existence in a multi-Active Directory Forest/Exchange Org Topology
• To maintain Data Sovereignty compliance (GDPR) when Multi-Geo must be used
• To implement Microsoft Zero Trust for the main domain areas (Identities, Endpoint, Policy Optimization, Zero Trust Policy, Threat Protection, Network, Data, Apps, Infrastructure)
• To implement Enterprise File systems to OneDrive, SharePoint Online/Teams, or Azure Files for SMB
• Understand SharePoint Hybrid and SharePoint on-line models
• Migrations from SharePoint on-premises, Gsuite, other CMS tools to SharePoint on-line and OneDrive for Business
• Must have Architectural understanding on how Third Party Archive & Journaling Email Data (Enterprise Vault, Mimecast) on legal hold is migrated appropriately (to maintain Data Immutability)
• Must have Architectural Proficiency with integrating Microsoft and non-Microsoft Mobile Device/Mobile Application Management & Unified Endpoint Management solutions with Exchange/Office 365 (Intune, Airwatch, Workspace One etc.) as well as other third party email aware apps (Unified Communications/Messaging, Fax, Printer/Scanners)
• Must have Architectural Proficiency (Design, Build, Migrate) with Office 365 Email Protection Mechanisms:
• SPF, DKIM and DMARC (along with ARC)
• Data Loss Prevention, RMS/IRM, Azure Information Protection (Classification-Labelling & Sensitive Information Types), Office 365 Message Encryption & Transport Rules
• Legal/Litigation Holds, Retention, Deletion and Data Immutability
• Office 365 Advanced Threat Protection
• Microsoft and non-Microsoft Email Hygiene/Gateway Products (ProofPoint, Exchange Online Protection, Mimecast etc.)
• Must have architectural understanding of Microsoft 365 protections
• CAS
• DLP
• ATP
• AIP

Desirable Skills

• IDM/Single Sign On experience
• Microsoft ADFS, Azure AD Connect and Azure AD Premium (Seamless Sign On & Pass Through Authentication), Azure AD Identity Protection (Risk based Conditional Access), Conditional Access, Azure Multi-Factor Authentication (and how to Design Azure Conditional Access Custom Controls with on-premises MFA solutions), Azure Privileged Identity/Access Management (Just In Time, Just Enough Administration, Admin/User Access Reviews)
• Okta or Ping SSO
• Migrations from Lotus Notes & GroupWise, along with InterOrg (Exchange to Exchange) and GSuite/O365 Tenant to Tenant Migrations
• Device experience
• Intune Mobile Device & Mobile App Management
• Other Mobile Device Mgmt/Mobile Application Mgmt solutions (Airwatch/Workspace One, Blackberry UEM, JAMF, MaaS360 etc)
• System Center Configuration Manager/MS EndPoint Configuration Manager and integration with Intune for co-management of devices (laptops, desktops, mobile)
• Intune
• Third party experience
• Avepoint
• ShareGate
• BitTitan

About AIS

AIS, Dedicated to Our People

AIS employees can spend their entire career at AIS doing challenging, rewarding work and reach their desired level of achievement and responsibility. We offer the opportunity to move up, without the obligation to move out of a position where one excels. We are committed to our employee's success; however, they define it.

It's our dedication to our employees that inspired our leadership to invest in our future and become partially employee-owned through an Employee Stock Ownership Program (ESOP).

Our employees are our greatest strength, and we do all that we can to serve them. We invest in technology as early adopters, allowing us to create transformative and innovative solutions for our customers while exposing our team to cutting edge technology.

We hire outstanding individuals who are committed to curiosity, passionate about emerging technology, and who are excited to find innovative solutions for the biggest tech challenges facing international brands and government agencies today.

We Invest in Individuals Committed to Innovation

AIS is seeking professionals of a certain character and level of excellence. People that we can learn from and that we can help grow to achieve their personal career goals.

We are looking for:

• Smart people with a passion for technology
• Strong technical capabilities with a consultancy mindset
• Close involvement with local technical communities
• A willingness to think outside of the box to provide innovative solutions to clients
• Ability to solve challenging technical business problems
• Self-directed professionals

Our Core Values

• Client Success
• C ontinued Learning and Technical Excellence
• Strong Client Relationships
• Citizenship and Community

EEO Statement

Applied Information Sciences is an Equal Opportunity Employer and does not discriminate on the basis of race, national origin, religion, color, gender, sexual orientation, age, disability, protected veteran status, or any other basis covered by law. Employment decisions are based solely on qualifications, merit, and business need.