Security Architect - M365 / Modern Workplace
Summary:
Do you have the right skills and experience for this role Read on to find out, and make your application.
We are seeking a highly experienced and strategic Modern workplace / M365 Security Architect to lead the design, governance, and oversight of Microsoft 365 security solutions across the enterprise. This role extends to cover the whole Modern Workplace Delivery portfolio which covers all technology capabilities which intersect with end user productivity and associated systems. This role is critical in shaping and enforcing a secure environment, aligning with organizational goals, compliance mandates, and evolving threat landscapes.
This role is a pivotal role which resides in the delivery function but must have strong relationships with Information Security function to help accelerate design & solution assurance.
Key Responsibilities:
Define and lead the architectural design of secure Microsoft 365 environments, including Exchange Online, SharePoint Online, OneDrive, Teams, and Microsoft Entra ID.
Develop and maintain the enterprise security architecture strategy for M365, aligned with Zero Trust principles and business requirements.
Architect and implement security controls and frameworks using Microsoft security technologies such as Microsoft Defender XDR, Microsoft Purview (Compliance, DLP, Insider Risk), Entra ID, and Intune.
Provide architectural security assurance for other technologies which fall into the delivery portfolio.
Guide governance around identity, access management, data protection, device management, and threat protection within the M365 ecosystem.
Collaborate with stakeholders across IT, security, legal, and compliance teams to ensure alignment on security policies and controls.
Conduct security risk assessments, design mitigation strategies, and provide technical leadership for incident response and remediation related to M365 and other end user services.
Stay current with M365 roadmap developments and evolving cyber threats to proactively recommend improvements.
Required Skills and Qualifications:
Extensive experience in architecting secure M365 solutions in complex enterprise environments.
Deep expertise in Microsoft security technologies including Defender for Office 365, Microsoft Purview, Entra ID (formerly Azure AD), and Intune.
Strong knowledge of security frameworks (e.g., Zero Trust, NIST, ISO 27001, CIS), regulatory compliance (e.g., GDPR, HIPAA), and risk management.
Solid understanding of cloud identity models, conditional access, MFA, RBAC, and privileged access management.
Proficiency with automation and scripting (e.g., PowerShell, Microsoft Graph API) for configuration and monitoring.
Microsoft certifications such as SC-100 (Cybersecurity Architect), SC-300, MS-500, or AZ-500 strongly preferred.
