Senior Azure Architect – Identity & Endpoint Engineer

Job Summary:

The Senior Azure Architect Identity & Endpoint Engineer designs, implements, and manages enterprise identity and endpoint services within Microsoft Azure. This role serves as the technical authority for identity, access, and endpoint configuration services across cloud and hybrid environments. 

*This position is contingent upon contract award.*

Job Duties and Responsibilities:

Core Responsibilities 

• Design, implement, and maintain enterprise identity architectures within Microsoft Azure, supporting secure authentication, authorization, and access management across cloud and hybrid environments 

• Serve as the technical authority for identity and access management (IAM) solutions, including Microsoft Entra ID (Azure AD), ADFS, and hybrid identity integrations 

• Architect and manage endpoint engineering and device management solutions, leveraging Microsoft Endpoint Configuration Manager (MECM/SCCM) and Microsoft Intune 

• Define and enforce identity and endpoint standards, policies, and configurations to ensure consistency, security, and scalability across the enterprise. 

• Design and support identity federation, single sign-on (SSO), conditional access, and authentication flows across enterprise systems 

• Integrate identity and endpoint services with Azure-hosted workloads and on-premises infrastructure 

• Collaborate with Information Assurance and cybersecurity teams to design and implement security controls related to identity, access, and endpoint management 

• Support compliance, audit, and authorization activities by providing architecture documentation, control mappings, and technical guidance 

• Lead troubleshooting and resolution of complex identity and endpoint issues, including authentication failures, access problems, and device compliance issues 

• Evaluate and recommend improvements to identity and endpoint architectures, balancing security, usability, and operational impact 

• Guide system and platform engineers on identity integration patterns and endpoint management best practices 

• Maintain authoritative architecture diagrams, standards, and technical documentation for identity and endpoint services 

• Support lifecycle activities for identity and endpoint platforms, including upgrades, migrations, and modernization efforts 

• Participate in strategic planning and technical reviews to ensure identity and endpoint services align with enterprise architecture and mission needs 

Job Requirements (Education/Skills/Experience):

Required Qualifications 

• Experience: 

• Minimum 4 years of relevant experience (with significant depth in identity and endpoint engineering) 

• Education: 

• Bachelor’s degree in IT, Cybersecurity, or related field 

• OR equivalent combination of education, training, and experience 

• Azure Expertise (Required): 

• Proven experience managing identity services within Microsoft Azure 

• Certifications (Required): 

• Microsoft Certified: Azure Administrator Associate or higher 
• Must meet DoD 8570 / 8140 IAT-II requirements (examples in the table include Security+, SSCP, GSEC, etc.) 

• Technical Expertise (Required): 

• Microsoft Entra ID (Azure AD) 

• ADFS and hybrid identity architectures 

• Microsoft Endpoint Configuration Manager (MECM / SCCM) 

• Microsoft Intune 

• Security Requirement: 

• Active Secret clearance

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.