SHI GmbH
About Us
Since 1989, SHI International Corp. has helped organizations change the world through technology. We've grown every year since, and today we're proud to be a $15 billion global provider of IT solutions and services.
Over 17,000 organizations worldwide rely on SHI's concierge approach to help them solve what's next.
But the heartbeat of SHI is our employees - all 6,000 of them.
If you join our team, you'll enjoy:
Our commitment to diversity, as the largest minority- and woman-owned enterprise in the U.S.
Continuous professional growth and leadership opportunities.
Health, wellness, and financial benefits to offer peace of mind to you and your family.
World-class facilities and the technology you need to thrive - in our offices or yours.
Job Summary
The Solutions Architect - M365 Entra will lead the design, implementation, and optimization of Microsoft Entra identity and access management solutions for our customers and partners. This role focuses on architecting secure, scalable, and compliant identity infrastructures using Microsoft Entra technologies, including Entra ID, Conditional Access, MFA, and identity governance. The architect will serve as a technical leader, guiding customers through complex deployments and integrations across hybrid and cloud environments.
This is a remote position with a home office setup as determined by SHI management.
Role Description
Architect and implement Microsoft Entra solutions, including:
Entra ID (formerly Azure AD)
Identity Governance
Privileged Identity Management (PIM)
Entitlement Management
Access Reviews
Lifecycle Workflows
application integrations with Entra (SAML, OIDC, SCIM, WSFED, Application Proxy)
Deployment of Entra GSA (Global Secure Access)
Self-Service Password Reset (SSPR)
Conditional Access policies
Multi-Factor Authentication (MFA)
External Identities
Lead identity modernization projects, including:
Migration from legacy identity systems to Microsoft Entra
Hybrid identity configurations and synchronization (e.g., Entra Connect)
Design and enforce Zero Trust security models using Microsoft Entra
Develop and automate identity lifecycle processes using PowerShell and Graph API
Collaborate with security and compliance teams to ensure identity solutions meet regulatory requirements
Provide technical leadership in customer engagements, including workshops, assessments, and roadmap planning
Deliver best practices, documentation, and knowledge transfer to clients
Support pre-sales efforts by scoping projects, estimating effort, and presenting solutions to stakeholders
Troubleshoot complex identity and access issues in hybrid and cloud environments
Drive revenue growth within the professional services team by identifying new opportunities and optimizing service offerings.
Collaborate with SHI Stakeholder partner teams to create synergistic service solutions
Engage with SHI sales teams, including front line sellers and customer success managers, to ensure a unified approach to service delivery and client engagement
Contribute to practice development by identifying areas for growth, leading innovation initiatives, and creating and maintaining practice standards to ensure high-quality service delivery
Build and maintain strong relationships with key clients and partners, ensuring high levels of satisfaction and retention
Demonstrate deep expertise in Service Delivery and provide thought leadership and guidance to clients and SHI teams on best practices, trends, and innovations in technology
Analyze current business processes and make recommendations for improvement based on industry trends and professional business knowledge
Stay current with new technologies and frameworks, drive the retirement of legacy solutions/technologies, and recommend adopting new partners or solution components
Guide strategic customers as they design and implement Microsoft 365 projects ranging from greenfield deployments, tenant consolidations, and business transformations through on-site and remote engagements
Behaviors and Competencies
Problem-Solving: Can proactively identify and take ownership of complex problem-solving initiatives, initiate preventative measures, collaborate with others to find solutions, and drive successful outcomes.
Communication: Can effectively communicate complex ideas and information to diverse audiences, facilitate effective communication between others, and mentor others in effective communication.
Adaptability: Can lead others through change, help teams adapt to new directions, and create a culture open to change.
Leadership: Can take ownership of complex team initiatives, collaborate with others in decision-making processes, and drive team performance.
Teamwork: Can build and lead multiple teams, fostering a cooperative environment and ensuring effective communication between team members.
Self-Motivation: Can take ownership of complex personal or professional initiatives, collaborate with others when necessary, and drive results through self-motivation.
Skill Level Requirements
Deep understanding of Microsoft Entra architecture and capabilities
Strong knowledge of identity protocols (SAML, OAuth2, OIDC, WS-Fed)
Experience with integrating HR provisioning solutions with Entra and Active Directory
Experience with implementing SCIM provisioning in applications with existing production applications
Strong understanding of secure external network access
Experience with hybrid identity and directory synchronization
Strong project management and communication skills
Ability to translate business requirements into technical solutions
Excellent troubleshooting and analytical skills
Strong documentation and presentation abilities
Ability to work independently and collaboratively in a remote environment
Other Requirements
Completed Bachelor's Degree or relevant work experience
5 years of technical experience with increasing responsibility
3 years of experience designing and implementing Microsoft Entra or Azure AD solutions
3 years of experience with identity and access management (IAM) in enterprise environments
3 years of experience with scripting and automation (PowerShell, Graph API)
Willingness to travel occasionally
Certifications:
Microsoft Certified: Identity and Access Administrator Associate (or equivalent)
Microsoft Certified: Cybersecurity Architect Expert (preferred)
Preferred Qualifications:
Experience with Microsoft Entra Permissions Management and Workload Identities
Experience with Microsoft Defender for Identity and Microsoft Purview
Familiarity with third-party identity providers and federation services
2+ years of experience in an architect-level role
The base salary for this position is $108,000 - $144,000. The estimated on-target earnings, or OTE, which includes a base salary and bonus are $135,000 - $180,000. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
Equal Employment Opportunity - M/F/Disability/Protected Veteran Status
Since 1989, SHI International Corp. has helped organizations change the world through technology. We've grown every year since, and today we're proud to be a $15 billion global provider of IT solutions and services.
Over 17,000 organizations worldwide rely on SHI's concierge approach to help them solve what's next.
But the heartbeat of SHI is our employees - all 6,000 of them.
If you join our team, you'll enjoy:
Our commitment to diversity, as the largest minority- and woman-owned enterprise in the U.S.
Continuous professional growth and leadership opportunities.
Health, wellness, and financial benefits to offer peace of mind to you and your family.
World-class facilities and the technology you need to thrive - in our offices or yours.
Job Summary
The Solutions Architect - M365 Entra will lead the design, implementation, and optimization of Microsoft Entra identity and access management solutions for our customers and partners. This role focuses on architecting secure, scalable, and compliant identity infrastructures using Microsoft Entra technologies, including Entra ID, Conditional Access, MFA, and identity governance. The architect will serve as a technical leader, guiding customers through complex deployments and integrations across hybrid and cloud environments.
This is a remote position with a home office setup as determined by SHI management.
Role Description
Architect and implement Microsoft Entra solutions, including:
Entra ID (formerly Azure AD)
Identity Governance
Privileged Identity Management (PIM)
Entitlement Management
Access Reviews
Lifecycle Workflows
application integrations with Entra (SAML, OIDC, SCIM, WSFED, Application Proxy)
Deployment of Entra GSA (Global Secure Access)
Self-Service Password Reset (SSPR)
Conditional Access policies
Multi-Factor Authentication (MFA)
External Identities
Lead identity modernization projects, including:
Migration from legacy identity systems to Microsoft Entra
Hybrid identity configurations and synchronization (e.g., Entra Connect)
Design and enforce Zero Trust security models using Microsoft Entra
Develop and automate identity lifecycle processes using PowerShell and Graph API
Collaborate with security and compliance teams to ensure identity solutions meet regulatory requirements
Provide technical leadership in customer engagements, including workshops, assessments, and roadmap planning
Deliver best practices, documentation, and knowledge transfer to clients
Support pre-sales efforts by scoping projects, estimating effort, and presenting solutions to stakeholders
Troubleshoot complex identity and access issues in hybrid and cloud environments
Drive revenue growth within the professional services team by identifying new opportunities and optimizing service offerings.
Collaborate with SHI Stakeholder partner teams to create synergistic service solutions
Engage with SHI sales teams, including front line sellers and customer success managers, to ensure a unified approach to service delivery and client engagement
Contribute to practice development by identifying areas for growth, leading innovation initiatives, and creating and maintaining practice standards to ensure high-quality service delivery
Build and maintain strong relationships with key clients and partners, ensuring high levels of satisfaction and retention
Demonstrate deep expertise in Service Delivery and provide thought leadership and guidance to clients and SHI teams on best practices, trends, and innovations in technology
Analyze current business processes and make recommendations for improvement based on industry trends and professional business knowledge
Stay current with new technologies and frameworks, drive the retirement of legacy solutions/technologies, and recommend adopting new partners or solution components
Guide strategic customers as they design and implement Microsoft 365 projects ranging from greenfield deployments, tenant consolidations, and business transformations through on-site and remote engagements
Behaviors and Competencies
Problem-Solving: Can proactively identify and take ownership of complex problem-solving initiatives, initiate preventative measures, collaborate with others to find solutions, and drive successful outcomes.
Communication: Can effectively communicate complex ideas and information to diverse audiences, facilitate effective communication between others, and mentor others in effective communication.
Adaptability: Can lead others through change, help teams adapt to new directions, and create a culture open to change.
Leadership: Can take ownership of complex team initiatives, collaborate with others in decision-making processes, and drive team performance.
Teamwork: Can build and lead multiple teams, fostering a cooperative environment and ensuring effective communication between team members.
Self-Motivation: Can take ownership of complex personal or professional initiatives, collaborate with others when necessary, and drive results through self-motivation.
Skill Level Requirements
Deep understanding of Microsoft Entra architecture and capabilities
Strong knowledge of identity protocols (SAML, OAuth2, OIDC, WS-Fed)
Experience with integrating HR provisioning solutions with Entra and Active Directory
Experience with implementing SCIM provisioning in applications with existing production applications
Strong understanding of secure external network access
Experience with hybrid identity and directory synchronization
Strong project management and communication skills
Ability to translate business requirements into technical solutions
Excellent troubleshooting and analytical skills
Strong documentation and presentation abilities
Ability to work independently and collaboratively in a remote environment
Other Requirements
Completed Bachelor's Degree or relevant work experience
5 years of technical experience with increasing responsibility
3 years of experience designing and implementing Microsoft Entra or Azure AD solutions
3 years of experience with identity and access management (IAM) in enterprise environments
3 years of experience with scripting and automation (PowerShell, Graph API)
Willingness to travel occasionally
Certifications:
Microsoft Certified: Identity and Access Administrator Associate (or equivalent)
Microsoft Certified: Cybersecurity Architect Expert (preferred)
Preferred Qualifications:
Experience with Microsoft Entra Permissions Management and Workload Identities
Experience with Microsoft Defender for Identity and Microsoft Purview
Familiarity with third-party identity providers and federation services
2+ years of experience in an architect-level role
The base salary for this position is $108,000 - $144,000. The estimated on-target earnings, or OTE, which includes a base salary and bonus are $135,000 - $180,000. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
Equal Employment Opportunity - M/F/Disability/Protected Veteran Status