Microsoft 365 & Azure Systems Engineer | Senior Cloud Infrastructure Engineer

Role Overview

This is not a basic System Administrator or helpdesk role. This is a Senior Managed Services Engineer (Level 3) responsible for advanced cloud, infrastructure, and Microsoft 365 engineering across a multi-client Managed Services Provider (MSP) environment.

The role requires deep technical ownership across identity, endpoint management, cloud infrastructure, automation, and escalated support. You will be expected to design, implement, and maintain secure and scalable environments, not just support existing systems.

Key Responsibilities

• Advanced administration of Microsoft 365, including Exchange Online, Teams, SharePoint, and OneDrive
• Design and management of tenant configurations and governance policies
• Troubleshooting complex cross-service issues across Microsoft 365 workloads

• Full lifecycle management of identities using Microsoft Entra ID (Azure AD)
• Design and implementation of Conditional Access policies
• Administration of Privileged Identity Management (PIM)
• Identity governance, role-based access control (RBAC), and security hardening

• Design and management of Microsoft Intune environments
• Device onboarding using Windows Autopilot
• Endpoint configuration policies, compliance policies, and application deployment
• Endpoint security and device lifecycle management (Endpoint Management preferred)

• Administration of Microsoft Azure infrastructure including:
• Virtual Machines (VMs)
• Networking (VNets, subnets, routing, DNS)
• Storage accounts and data services
• Resource governance and cost optimisation
• Support and troubleshooting of hybrid environments

• Administration of Windows Server environments
• Active Directory management and maintenance
• Group Policy Object (GPO) design, implementation, and troubleshooting
• Hybrid identity integration between on-prem and cloud

• Management of backup solutions such as Acronis and/or Kaseya
• Design and testing of disaster recovery strategies
• Restoration testing and business continuity planning

• Experience with MSP tooling such as:
• Datto RMM
• IT Glue
• Halo PSA
• Documentation, asset management, and service workflow alignment across multiple clients

• Strong proficiency in PowerShell scripting (must be able to write, modify, and troubleshoot scripts)
• Exposure to Microsoft Graph API / REST API automation (highly desirable)
• Automation of repetitive administrative tasks and reporting

• Act as final escalation point for complex technical incidents
• Work across multiple client environments with competing priorities
• Provide root cause analysis and permanent resolution strategies
• Collaborate with L1/L2 teams and mentor junior engineers

Critical Requirements (Non-Negotiable)

Candidates must have direct hands-on experience with the creation, configuration, and deployment of:

• Microsoft Intune environments (from setup or major implementation)
• Conditional Access policies in Entra ID
• Group Policy Object (GPO) configuration in Active Directory

Candidates must demonstrate real-world experience (not theoretical knowledge) in:

• Multi-tenant or MSP environments
• End-to-end Microsoft 365 administration
• Identity and endpoint architecture design

• Strong background in MSP or enterprise IT environments
• Proven experience as a Senior Systems Engineer or Cloud Engineer
• Comfortable operating in fast-paced, multi-client infrastructure settings
• Strong troubleshooting mindset with deep technical ownership
• Highly structured, documentation-driven approach