Senior Microsoft Engineer

Senior Microsoft Engineer page is loaded## Senior Microsoft Engineerlocations: Remotetime type: Full timeposted on: Posted Yesterdayjob requisition id: 45578**Welcome to Clearway Health** - a recognized Great Place to Work and destination organization! We are an award-winning culture where talented people are respected, informed, engaged, empowered, developed – and where they want to grow and make a difference. We offer a wide range of benefits, perks and wellness programs in addition to continuous learning opportunities to help you grow. At Clearway Health, diversity, equity, inclusion and belonging are an essential part of our business and workplace culture. Clearway Health emerged as a solution from Boston Medical Center to improve access to care, provide personal support and manage the complex specialty medication needs of vulnerable patients and their families. We partner with hospitals, health systems and the communities they care for to accelerate their specialty pharmacy programs. At Clearway Health, we take great pride in our High Five! Values to provide best in class experiences for our , our . We welcome you to follow us on where you can also learn more about our , , , and .**POSITION SUMMARY:**The Senior Microsoft Engineer will lead the secure design, configuration, and lifecycle management of Clearway’s Microsoft 365 environment, including Intune, Entra ID, SharePoint, Teams, and Microsoft Defender. This position owns the Microsoft configuration and compliance posture, ensuring alignment with AICPA SOC 2 Type 2, ISO/IEC 27001, and NIST SP 800-53 standards.**ESSENTIAL RESPONSIBILITIES/DUTIES:*** Architect and manage Microsoft 365 including Exchange Online, SharePoint, Teams, OneDrive, and Entra ID.* Build and maintain Intune compliance and configuration profiles for Windows and macOS devices.* Implement Conditional Access, MFA, and SSO policies across all user and application contexts.* Harden Microsoft environments according to AICPA SOC 2 Type 2, ISO 27001, NIST SP 800-53, and CIS Benchmarks.* Administer Microsoft Defender for Endpoint, Defender for Office 365, and Defender for Identity.* Automate configuration and reporting tasks using PowerShell and Microsoft Graph API.* Manage third-party endpoint applications deployed through Intune.* Maintain comprehensive asset and license inventories.* Work with the Senior Systems Engineer to automate onboarding and offboarding processes.* Provide configuration documentation and audit evidence for compliance frameworks.**EDUCATION:*** College Degree required. May consider experience in absence of diploma.**CERTIFICATES, LICENSES, REGISTRATIONS**:* MCSE or Microsoft 365 Certified: Enterprise Administrator Expert (required or within six months of hire).* Microsoft Certified: Security Administrator Associate (SC-200 or SC-300) preferred.* Familiarity with Microsoft Purview, DLP, and hybrid identity environments (Microsoft and AWS).* Familiarity with Terraform or Infrastructure-as-Code principles.**EXPERIENCE:*** Minimum of 5 years enterprise experience in Microsoft 365 administration and security.* Deep knowledge of Intune, Entra ID (Azure AD), Conditional Access, and Microsoft 365 tenant management.* Demonstrated success in hardening environments to AICPA SOC 2 Type 2, HIPAA, and NIST SP 800-53 standards.* Strong PowerShell scripting and automation skills.* Experience managing third-party endpoint applications and asset inventories.* Excellent troubleshooting, documentation, and communication skills.**KNOWLEDGE AND SKILLS:****Deep expertise in Microsoft 365 / Entra ID / Intune architecture*** Understanding of tenant-level configuration, identity governance, Conditional Access, SSO, and lifecycle management.**** **Knowledge of modern device management and provisioning*** Experience with Windows Autopilot, macOS ADE, configuration profiles, and application deployment.**Understanding of enterprise collaboration platforms*** SharePoint Online, Teams, OneDrive structure, and lifecycle management with best practices for permissions and provisioning.**Automation and scripting proficiency*** Strong PowerShell and Microsoft Graph scripting to automate provisioning, reporting, and environment configuration.**Technical problem-solving and troubleshooting*** Ability to quickly diagnose issues across identity, devices, applications, and network dependency layers.**Documentation and configuration design*** Ability to create runbooks, diagrams, and repeatable configuration standards for infrastructure operations.**Ability to plan and execute infrastructure changes without service disruption*** Demonstrated success managing Microsoft platform changes, updating policies, and coordinating rollout across the business with zero downtime.**Ability to lead platform ownership and cross-team collaboration*** Coordinate with IT, security, vendors, and business units to ensure the Microsoft environment is scalable, reliable, and aligned to business needs.**SPECIAL WORKING CONDITIONS (ON-CALL, TRAVEL, SHIFT, COVERAGE):** 10% travel for meetings and strategy sessionsClearway Health has been recognized as a Great Place To Work for two consecutive years as well as a Fortune Best Workplaces in Health Care!We are an award-winning culture where talented people are respected, informed, engaged, empowered, developed – and where they want to grow and make a difference. At Clearway Health, diversity, equity, inclusion, and belonging are essential parts of our business and workplace culture. We offer a wide range of benefits, perks, and wellness programs in addition to continuous learning opportunities to help you grow.Clearway Health emerged as a solution from Boston Medical Center to improve access to care, provide personal support, and manage the complex specialty medication needs of vulnerable patients and their families. We partner with hospitals, health systems, and the communities they care for to accelerate their specialty pharmacy programs.According to the Federal Trade Commission (FTC), there has been a rise in employment offer scams. Our current job openings are listed on our website and applications are received only through our website. We do not reach out to individuals via text, we do not ask or require downloads of any applications, or “apps” and applicant screenings, interviews and job offers are not conducted over text messages or social media platforms. We do not ask individuals to share personal or banking information during the recruiting process. To avoid becoming a victim of an employment offer scam, .
#J-18808-Ljbffr