Cloud Delivery Engineer

Location: Greater NYC Area

The Opportunity

A premier global professional services organization is seeking a high-level Senior Cloud Delivery Engineer to architect and manage our critical Azure and Microsoft 365 ecosystems. In this role, you will be the primary technical authority for our cloud infrastructure and mobile productivity platforms, ensuring that thousands of global users can operate securely and seamlessly across any device and time zone.

Core Responsibilities

• Cloud Infrastructure & Identity: Lead the architecture, implementation, and optimization of Azure Landing Zones, Entra ID (Azure AD), and Resource Groups. Serve as the primary resource for cloud networking, identity services, and access governance.

• Modern Mobility (MDM/MAM): Act as the lead engineer for Microsoft Intune, overseeing the full lifecycle of iOS, Android, Windows, and macOS endpoints. Design and enforce advanced Application Protection Policies to secure data on both corporate and BYOD assets.

• Security & Access Control: Architect and troubleshoot complex Conditional Access logic, Multi-Factor Authentication (MFA), and Certificate-Based Authentication (CBA). Manage Azure App Proxy and VPN configurations for mobile authentication.

• Messaging & Collaboration: Manage the health and security of Exchange Online, including complex mail flow, security baselines, and the transition or coexistence with legacy on-premises systems.

• Security Posture: Partner with internal Risk and Compliance teams to align Microsoft 365 and Azure services with global data residency and confidentiality standards. Leverage Microsoft Defender (Endpoint/O365) to maintain a robust security perimeter.

• Project Leadership: Act as the technical lead on global infrastructure initiatives; develop comprehensive technical standards, diagrams, and operational runbooks for the wider team.

• Operational Excellence: Provide Tier 3 escalation support for complex cloud incidents; mentor junior staff and stay ahead of the Microsoft roadmap to lead the adoption of high-value new features.

Technical Qualifications

• Experience: 5–7 years of hands-on experience administering large-scale Microsoft 365 tenants in a high-concurrency, global environment.

• Technical Mastery:

  • Proven success deploying Intune at scale, including Autopilot and cross-platform app deployment.

  • Deep expertise in Entra Sign-in Logs, application registrations, and Privileged Identity Management (PIM).

  • Advanced PowerShell scripting skills for M365 and Azure automation.

• Security & Compliance: Strong understanding of security features within the Microsoft ecosystem, including data-sharing controls and device configuration profiles.

• Industry Context: Previous experience in a highly regulated, high-pressure global environment is strongly preferred.

• Soft Skills: Demonstrated ability to manage stakeholders and drive outcomes for complex technical projects.

• Education: Bachelor’s degree in Computer Science, Information Systems, or a related field. Microsoft certifications are highly valued.

• Location Requirement: Must be based in the NYC area