×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Support Cloud Computing

M365 - Service and Architecture Lead

Job in Kansas City, Jackson County, Missouri, 64101, USA
Listing for: NXP Semiconductors
Full Time position
Listed on 2026-02-23
Job specializations:
  • IT/Tech
    Cybersecurity, IT Support, Cloud Computing
Salary/Wage Range or Industry Benchmark: 90000 - 120000 USD Yearly USD 90000.00 120000.00 YEAR
Job Description & How to Apply Below
M365 - Service and Architecture Lead page is loaded## M365 - Service and Architecture Lead locations:
Noidatime type:
Full time posted on:
Posted Todayjob requisition :
R-Role

Summary:

We are seeking a hands-on Microsoft 365 Administrator to manage and continuously improve our Microsoft cloud productivity, collaboration, identity, security, and endpoint landscape. You will be the subject matter expert for Entra  (Azure AD), Microsoft 365 core services, Defender, Intune, and Purview, with an emphasis on security, automation, compliance, and user experience.

You will also oversee the design, governance, automation, and optimization of the M365 platform, ensuring high performance, secure collaboration, and alignment with corporate standards.

You will partner with Security, Collaboration, Data, Privacy, and End User Computing teams to ensure a secure, reliable, and measurable value across the business.

Job Responsibility:

Tenant & Identity
• Own tenant-level configuration and lifecycle, including licensing, service health, message center, and roadmap adoption.
• Manage Entra : users, groups, devices, service principals, application registrations, Enterprise Apps, and gallery/non-gallery SSO integrations (SAML/OIDC/OAuth2).
• Implement and maintain Conditional Access policies, MFA, Passwordless, and Risk-based access.
• Govern Privileged Identity Management (PIM) for roles and groups; enforce least privilege and just-in-time elevation.
• Configure Entra  / Cloud Sync for directory synchronization; resolve identity lifecycle and UPN conflicts.
• Enforce Identity Protection baselines: risky users/sign-ins, token protection, continuous access evaluation.

Security & Compliance
• Implement and maintain Security Defaults, Baseline Policies, and secure configurations aligned to CIS/Microsoft recommendations.
• Administer Microsoft Purview: DLP, Information Protection/Sensitivity Labels, Auto-labeling, Data Lifecycle, eDiscovery (Standard/Premium), Audit, Communication Compliance, Insider Risk.
• Configure Safe Links/Safe Attachments, anti-phishing/anti-spam rules, and authentication hardening.
• Collaborate with Security to operationalize alerts, hunting, and incident response in Defender/XDR and Crowdstrike (if applicable).Collaboration Services
• Exchange Onlineo Administer mail flow, connectors, transport rules, shared mailboxes, RBAC, retention policies, and litigation holds.o Manage hybrid coexistence (if any), MTA integrations, quarantine review, and message trace investigations.
• SharePoint Online & One Driveo Govern site provisioning, site designs, hub architecture, permissions models, external sharing policies, and lifecycle.o Manage storage quotas, retention/records policies, DLP for sites, and data residency as applicable.o Guide information architecture, metadata, and collaboration best practices.
• Microsoft Teamso Configure Teams policies/profiles, app permissions, external access/guest access, meeting/recording/retention settings.o Oversee Teams Rooms, devices, and voice/telephony integration (if applicable).o Implement lifecycle governance for Teams/Groups (naming, expiration, classification, archival).Endpoint & Device Management
• Enroll and manage Windows, macOS, iOS/iPadOS, Android devices; compliance policies, configuration profiles, remediation.
• Autopilot provisioning, application deployment, patching, update rings, Bit Locker/File Vault, Defender management.
• Conditional access enforcement tied to device compliance; platform hardening baselines.

Threat Protection
• Configure and tune Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps (MCAS).
• Onboard devices, manage indicators, attack surface reduction, device control, web content filtering.
• Investigate incidents, run advanced hunting queries, coordinate with Sec Ops for response.

Automation & Operations
• Automate repetitive tasks with Power Shell (Exchange Online, Entra, MSOnline, Teams, SharePoint, Graph), Graph API, and Power Automate where appropriate.
• Create runbooks for provisioning/deprovisioning, license assignment, lifecycle, and compliance enforcement.
• Maintain operational documentation,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search