Microsoft 365 Architect

Microsoft 365 Architect

Location: TX-Dallas

$70-$75 per hour

70% Remote

Right to Hire

Job Description:

Location: Dallas(Addison), TX or Boston MA - expectation to travel (20-30%)
Duration: 1 year contract to hire

Role Summary
We are seeking a hands on Microsoft 365 Architect (Implementation & Run) to design, deploy, and operate a secure, scalable Microsoft 365 platform for large enterprise customers. This role owns the end to end solution lifecycle—architecture through implementation, hypercare, steady state operations, and continual improvement—and partners with application teams to integrate M365 with ERP and other line of business systems.
Scope: Global tenant(s) supporting 10k+ users; hybrid identity and network dependencies; integrations with ERP/LOB applications; 24x7 operations and support readiness.

Key Responsibilities
Architecture & Build

• Design end to end Microsoft 365 solutions for large enterprise environments covering Exchange Online, Teams, SharePoint Online, OneDrive, and Entra ID, including multi geo, hybrid, and tenant governance considerations.
• Lead greenfield and modernization builds including identity, security, compliance, governance, collaboration, and operating model (RBAC, naming/creation policies, lifecycle, service requests, escalation paths).
• Produce enterprise architecture deliverables (HLD/LLD), configuration standards, reference architectures, and runbooks; establish change management and release/patching processes aligned to ITIL.
• Integrate M365 with enterprise systems including ERP platforms (e.g., SAP, Oracle, Dynamics) and other LOB applications using SSO, identity provisioning, Microsoft Graph/API patterns, Power Platform, Teams/SharePoint extensibility, and secure data access controls.
• Define enterprise prerequisites and reference designs for network readiness (proxy, firewall, QoS), Teams Voice (Direct Routing/Operator Connect), and endpoint management (Intune, Autopilot, device compliance) to ensure a production-grade deployment.
• Establish governance guardrails at scale (Teams/Groups creation policies, SharePoint information architecture, external sharing controls, guest lifecycle, Power Platform environments/DLP, and app governance) balancing user adoption and risk.

ERP & Line of Business Integrations

• Partner with ERP owners and integration teams to define use cases such as Teams notifications/approvals, document management in SharePoint, and workflow automation driven by ERP events.
• Design secure integration patterns (OAuth/OIDC/SAML, app registrations, managed identities, least privilege permissions, certificate/key management, private endpoints where applicable).
• Enable and govern Power Platform (Power Automate/Power Apps) connectors, DLP policies, environments, and ALM to support ERP and LOB integrations at scale.

Security, Identity & Compliance

• Architect and configure Entra ID (Azure AD), SSO, MFA, Conditional Access, and identity governance.
• Implement compliance, DLP, retention, and sensitivity label policies aligned to regulatory frameworks (GDPR, HIPAA, NIST).
• Deploy Microsoft Defender for Office 365 and ATP features to protect user and organizational data.
• Implement Microsoft Purview capabilities including Information Protection, eDiscovery, Audit, Insider Risk, and Communication Compliance as required; align designs to Zero Trust principles.

Migration & Deployment

• Lead migrations from legacy systems to M365 (Exchange?EXO, File shares?SharePoint/OneDrive, other tools?Teams).
• Conduct pre migration assessments including identity, network, and application readiness.
• Use Microsoft and third party migration tools such as SPMT and FastTrack.
• Create migration waves and execution plans including pilot criteria, cutover/rollback, communications, training, and adoption success metrics; coordinate with security, network, and application owners.
• Lead M365 initiatives for carve outs/divestitures (and acquisitions as needed): tenant strategy (separate vs. shared), identity separation, data/application migration, TSA planning, cutover runbooks, and risk management to meet regulatory and business timelines.

Support & Optimization

• Serve as the Tier 3 SME for escalations across M365 services, driving root cause analysis, performance tuning, and post implementation stabilization (hypercare).
• Own platform health and service management: monitoring/alerting, audit and sign in logs, Secure Score/compliance dashboards, capacity/performance, licensing optimization, and SLA/SLO reporting.
• Develop automation (PowerShell, Graph, IaC where applicable), operational runbooks, and governance frameworks for onboarding/offboarding, lifecycle management, backup/restore considerations, and disaster recovery/BCP alignment.
• Drive operational excellence: define support model (L1/L2/L3), on-call/escalation paths, vendor/Microsoft case management, regular service reviews, and a continuous-improvement backlog tied to outages and user experience.

Stakeholder Collaboration

• Work directly with customer technical teams and leadership to translate business needs into technical designs.
• Provide architectural guidance, platform roadmaps, knowledge transfer, and operational best practices.

Required Skills & Experience

• 12+ years architecting, implementing, and supporting Microsoft 365 environments in large enterprise (high user counts, multiple business units, complex governance, hybrid dependencies).
• Expert knowledge of Exchange Online, Teams architecture, SharePoint Online, OneDrive, and Entra ID (Azure AD).
• Strong experience building M365 environments from scratch, including security, governance, and compliance.
• Proficiency in PowerShell automation and configuration scripting.
• Experience integrating M365 with ERP/LOB applications (e.g., SAP/Oracle/Dynamics) using SSO (SAML/OIDC), SCIM/user provisioning, Graph/APIs, and Power Platform integration patterns.
• Strong background in post implementation operations: incident/problem/change management, service health monitoring, capacity planning, and producing/maintaining runbooks and knowledge articles (ITIL-aligned).
• Hands-on experience with Intune (device compliance, configuration profiles, app deployment) and Teams Phone (policies, SBCs/Direct Routing or Operator Connect) in enterprise environments.
• Working knowledge of integration middleware and API management (e.g., Azure API Management, Logic Apps, Service Bus/Event Grid) and how to apply them to ERP ? M365 integration scenarios.
• Preferred certifications: Microsoft 365 Enterprise Administrator Expert, Azure Solutions Architect Expert, Security (SC-100/SC-300) or equivalent.
• Added value: experience delivering M365 carve out/divestiture programs (tenant/identity separation, migration under TSA constraints, cross tenant collaboration, and Day 1/Day 2 readiness).
• Familiarity with enterprise integration, networking dependencies, and hybrid identity.

About US Tech Solutions:
US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit www.ustechsolutions.com.

Disclaimer:
US Tech Solutions is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.