Frontgrade Technologies
M365 Engineer-Identity & Access Management (IAM)
Join to apply for the M365 Engineer-Identity & Access Management (IAM) role at Frontgrade Technologies. Frontgrade is a leading provider of high‑reliability solutions for defense, space, intelligence, commercial, and civil applications. With more than six decades of experience, the team solves complex technology challenges across the U.S. and around the globe.
Why Work For Us We take care of our people and provide competitive health, wealth, and wellbeing benefits from day one. You’ll also discover learning and development opportunities so you can take your career to the next level—and beyond.
Other Benefits Include
Competitive Benefits: Medical (FSA + HSA), Dental, and Vision
Immediate 401K Vesting/Matching
Career Opportunity and Growth
Tuition Reimbursement
Student Loan Repayment
Generous PTO and 11 paid holidays per year (8 regular and 3 floating)
8 weeks of 100% Paid Family Leave
Profit Sharing Plan applies to all non‑Annual Incentive Plan and non‑Sales Incentive Plan employees.
Overview We are seeking a hands‑on, experienced M365 Engineer to serve as the primary administrator and owner of our Microsoft 365 platform. The role covers day‑to‑day operations, end‑user support, service enhancements, and feature rollouts across a suite of M365 services used throughout the company, including but not limited to: Exchange Online, SharePoint, OneDrive, Teams, Purview, Forms, Power Automate, Security & Compliance Center, and Intune. In addition, this role carries critical Identity & Access Management (IAM) responsibilities to ensure secure, compliant, and efficient access across both our cloud (Azure AD/Entra ID) and on‑premises Active Directory environments. The position is critical to enabling productivity, ensuring data security and compliance, and supporting our continued growth through effective platform management and integration during M&A activity.
Key Responsibilities
Serve as the enterprise‑wide subject matter expert and administrator for Microsoft 365 services.
Manage daily operations and resolve incidents or requests related to M365 tools.
Support and enhance email, file storage, collaboration, automation, and compliance features.
Perform data discovery, eDiscovery, and ad hoc investigations in support of Legal, HR, and Security teams.
Design, implement, and document new services or configurations to support business and compliance needs.
Drive platform improvements, feature adoption, and user education.
Collaborate with cybersecurity teams to ensure configuration alignment with NIST/FedRAMP requirements.
Execute projects related to new feature rollouts, tenant configuration, and user onboarding/offboarding automation.
Support tenant separation and migration activities in support of M&A initiatives.
Maintain policies and best practices for Power Automate flows and SharePoint/Teams governance.
Manage mobile device and application policies through Intune.
Stay up to date on Microsoft roadmap updates and assess their impact on our environment.
Administer Active Directory (AD) and Azure AD/Entra ID identities, groups, and access roles in a hybrid environment.
Ensure proper provisioning, modification, and de‑provisioning of user accounts across cloud and on‑prem systems.
Implement and manage Conditional Access, MFA, passwordless authentication, and SSO integrations.
Maintain role‑based access control (RBAC) and enforce least‑privilege access.
Administer Privileged Identity Management (PIM) and monitor privileged access usage.
Conduct regular access reviews, audits, and compliance reporting.
Monitor and respond to identity‑related security incidents, including suspicious sign‑in attempts and account compromise.
Automate IAM and AD tasks using PowerShell, Graph API, and Group Policy.
Support identity federation, directory synchronization, and hybrid trust relationships.
Qualifications & Experience
Computer Engineering, Computer Science, or Information Technology (Bachelor's degree).
Minimum five (5) years of experience in a specialized functional discipline. OR (9) years of experience may be considered in lieu of a Bachelor's Degree. OR (3) years of experience may be considered with a Master's Degree.
Deep technical expertise with M365 core services (Exchange Online, SharePoint, Teams, Intune, Purview, etc.).
Strong experience managing hybrid identity environments (Active Directory + Azure AD/Entra ID).
Experience with PowerShell scripting for administration and automation.
Familiarity with M365 Security & Compliance Center and data governance tools.
Experience in regulated industries or organizations subject to compliance requirements (e.g., ITAR, NIST 800‑171, CMMC).
Preferred Experience
Experience with tenant‑to‑tenant migrations or complex M&A environments.
Microsoft 365 Certified: Enterprise Administrator Expert, Microsoft Certified: Identity and Access Administrator Associate, or similar certification.
Familiarity with FedRAMP‑authorized environments.
Experience integrating M365 with ServiceNow or other ITSM platforms.
Additional Information
This position requires access to technology, materials, software or hardware that is controlled by either ITAR or EAR U.S. export laws. As a condition to this job offer, in order to be employed in this position, you must be able to obtain a U.S. Government export license(s), as required by law.
Pay Range: $110,832.00 - $138,540.00 annually. Applicable pay within the posted range may vary based on factors including, but not limited to, geographical location, job function of the position, education, and experience of the successful candidate.
Equal Opportunity Employer We welcome differences and celebrate new ideas. We believe the diversity of our people inspires our creativity and drives our innovation. Everyone is welcome here, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or genetic information. We are committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation due to a disability for any part of the employment process, please email Careers@Frontgrade.com.
#J-18808-Ljbffr
Why Work For Us We take care of our people and provide competitive health, wealth, and wellbeing benefits from day one. You’ll also discover learning and development opportunities so you can take your career to the next level—and beyond.
Other Benefits Include
Competitive Benefits: Medical (FSA + HSA), Dental, and Vision
Immediate 401K Vesting/Matching
Career Opportunity and Growth
Tuition Reimbursement
Student Loan Repayment
Generous PTO and 11 paid holidays per year (8 regular and 3 floating)
8 weeks of 100% Paid Family Leave
Profit Sharing Plan applies to all non‑Annual Incentive Plan and non‑Sales Incentive Plan employees.
Overview We are seeking a hands‑on, experienced M365 Engineer to serve as the primary administrator and owner of our Microsoft 365 platform. The role covers day‑to‑day operations, end‑user support, service enhancements, and feature rollouts across a suite of M365 services used throughout the company, including but not limited to: Exchange Online, SharePoint, OneDrive, Teams, Purview, Forms, Power Automate, Security & Compliance Center, and Intune. In addition, this role carries critical Identity & Access Management (IAM) responsibilities to ensure secure, compliant, and efficient access across both our cloud (Azure AD/Entra ID) and on‑premises Active Directory environments. The position is critical to enabling productivity, ensuring data security and compliance, and supporting our continued growth through effective platform management and integration during M&A activity.
Key Responsibilities
Serve as the enterprise‑wide subject matter expert and administrator for Microsoft 365 services.
Manage daily operations and resolve incidents or requests related to M365 tools.
Support and enhance email, file storage, collaboration, automation, and compliance features.
Perform data discovery, eDiscovery, and ad hoc investigations in support of Legal, HR, and Security teams.
Design, implement, and document new services or configurations to support business and compliance needs.
Drive platform improvements, feature adoption, and user education.
Collaborate with cybersecurity teams to ensure configuration alignment with NIST/FedRAMP requirements.
Execute projects related to new feature rollouts, tenant configuration, and user onboarding/offboarding automation.
Support tenant separation and migration activities in support of M&A initiatives.
Maintain policies and best practices for Power Automate flows and SharePoint/Teams governance.
Manage mobile device and application policies through Intune.
Stay up to date on Microsoft roadmap updates and assess their impact on our environment.
Administer Active Directory (AD) and Azure AD/Entra ID identities, groups, and access roles in a hybrid environment.
Ensure proper provisioning, modification, and de‑provisioning of user accounts across cloud and on‑prem systems.
Implement and manage Conditional Access, MFA, passwordless authentication, and SSO integrations.
Maintain role‑based access control (RBAC) and enforce least‑privilege access.
Administer Privileged Identity Management (PIM) and monitor privileged access usage.
Conduct regular access reviews, audits, and compliance reporting.
Monitor and respond to identity‑related security incidents, including suspicious sign‑in attempts and account compromise.
Automate IAM and AD tasks using PowerShell, Graph API, and Group Policy.
Support identity federation, directory synchronization, and hybrid trust relationships.
Qualifications & Experience
Computer Engineering, Computer Science, or Information Technology (Bachelor's degree).
Minimum five (5) years of experience in a specialized functional discipline. OR (9) years of experience may be considered in lieu of a Bachelor's Degree. OR (3) years of experience may be considered with a Master's Degree.
Deep technical expertise with M365 core services (Exchange Online, SharePoint, Teams, Intune, Purview, etc.).
Strong experience managing hybrid identity environments (Active Directory + Azure AD/Entra ID).
Experience with PowerShell scripting for administration and automation.
Familiarity with M365 Security & Compliance Center and data governance tools.
Experience in regulated industries or organizations subject to compliance requirements (e.g., ITAR, NIST 800‑171, CMMC).
Preferred Experience
Experience with tenant‑to‑tenant migrations or complex M&A environments.
Microsoft 365 Certified: Enterprise Administrator Expert, Microsoft Certified: Identity and Access Administrator Associate, or similar certification.
Familiarity with FedRAMP‑authorized environments.
Experience integrating M365 with ServiceNow or other ITSM platforms.
Additional Information
This position requires access to technology, materials, software or hardware that is controlled by either ITAR or EAR U.S. export laws. As a condition to this job offer, in order to be employed in this position, you must be able to obtain a U.S. Government export license(s), as required by law.
Pay Range: $110,832.00 - $138,540.00 annually. Applicable pay within the posted range may vary based on factors including, but not limited to, geographical location, job function of the position, education, and experience of the successful candidate.
Equal Opportunity Employer We welcome differences and celebrate new ideas. We believe the diversity of our people inspires our creativity and drives our innovation. Everyone is welcome here, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or genetic information. We are committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation due to a disability for any part of the employment process, please email Careers@Frontgrade.com.
#J-18808-Ljbffr