Sr. Enterprise Architect-AD, Intra, O365

Role: Sr. Enterprise Architect-AD, Intra, O365

Location: Houston, TX (Onsite)

Duration: Contract To Hire

Job Description:

URGENT: Enterprise Architect: Active directory , Azure, Identity access management integration, office 365 email

Working with MSP

30% of his time will be spent on applications team, engineers, Lot of integration work

Rest is working with Cyber Security Team

Work with a lot of teams

4 days in office, 1 day home

Global company

Soft skills being able to work with various teams

CTH

The Senior Principal Technology Specialist - Enterprise Architect is tasked with solving unique and complex problems that broadly impact the business. The Senior Principal Technology Specialist - Enterprise Architect is considered a specialist in the field of Technology, and they offer a broad base of knowledge of on-premises and cloud infrastructure technology. The Senior Principal Technology Specialist - Enterprise Architect impacts the direction and resource allocation of programs and projects in their discipline and works within general functional policies and industry guidelines and best practices.

The Senior Principal Technology Specialist - Enterprise Architect role requires conceptual and innovative thinking to develop creative solutions to Technology challenges. The Senior Principal Technology Specialist - Enterprise Architect blends strategic vision with hands-on technical expertise to architect, secure, and scale infrastructure and third-party integrations, ensuring alignment with the highest security, reliability, and compliance standards.

This position is an Individual Contributor role. The role directly reports to the Director, Information Technology Infrastructure and routinely interacts with Global IT / Global Business Leads / Project Management / Engineering / Operations.

Responsibilities

• Execute a wide range of infrastructure initiatives, including deploying and integrating technologies across the global enterprise.
• Design, implement, and maintain secure, scalable, and resilient on-premises and cloud environments.
• Design, implement, and manage solutions for Office 365, Azure, Hybrid environments, Email services, Microsoft Teams, Single Sign-On (SSO) integrations, LDAP integrations, Cloud, Serverless compute, virtualization, SaaS, Public Key Infrastructure (PKI) certificate management, as well as authentication and authorization frameworks.
• Formulate and execute strategic initiatives ensuring the ongoing health, stability, and resiliency of email, Microsoft Teams, Active Directory, Azure Entra ID, cloud services, and Identity and Access Management ecosystems.
• Develop and execute a strategic vision for the CB&I Information Technology practice by leveraging innovative technologies, establishing best practices across infrastructure and application integration, and driving continuous improvement to optimize service delivery and customer satisfaction.
• Design and implement integration services with Third-Party Systems including cloud services, federated services, Active Directory, SSO, application integrations, email, SaaS, IaaS, virtualization, automation, security systems, and identity management platforms.
• Adapt leading security frameworks, including CIS Benchmarks, AWS Foundational Security Best Practices (FSBP), and Microsoft Cloud Security Benchmark (MCSB), to enhance cybersecurity effectiveness.
• Engineer, deploy, and operate security tools to enable visibility, control, and operational effectiveness.
• Develop and implement robust security policies and processes in collaboration with the Cybersecurity team.
• Develop, review, maintain, and disseminate comprehensive and accessible documentation including configuration details, changes, troubleshooting guides, standard operating procedures, business processes, and runbooks to ensure operational clarity and compliance.
• Collaborate with IT teams, third parties, and cross-organizations to gather business requirements, assist with business plan development, and implement technologies such as integrated innovative infrastructure, IaaS, cloud solutions, and applications, ensuring seamless and future-ready operation across the organization.
• Leverage expertise in cloud governance and network infrastructure frameworks to develop and enforce policies and procedures that support continuous improvement and compliance.
• Collaborate closely with stakeholders to define and validate technology opportunities that align with current and future product capabilities while guiding successful execution from planning through delivery.
• Serve as a subject matter expert within your area of responsibility mentoring members of the global IT organization, delivering technical and operational cross-training, and providing advanced support for problem-solving and root cause analysis.
• Design and implement predictive and preventive system maintenance techniques including lifecycle management strategies.
• Collaborate with stakeholders to author and execute disaster recovery and business continuity plans.

Qualifications

• Minimum bachelor's degree in computer science, Computer Engineering, Management Information Systems or related field or equivalent work experience.
• Preferred 15 or more years of experience in Information Technology Infrastructure.
• 8 or more years of experience in a leadership role within a technology services organization, with a strong focus on Microsoft Azure, cloud environments, Active Directory, Hybrid environments, O365, Microsoft Teams, email, MTA, SaaS services, IAM, security controls, and third-party integrations.
• Experience planning and migrating acquisitions, divestitures, and on-perm systems to SaaS and cloud services.
• Comprehensive understanding of on-prem and Azure Active Directory architecture, features, and functionalities including domains, sites, replication, GPOs, and Kerberos authentication.
• Extensive experience designing, implementing, and maintaining Office 365, Azure Tenant, and Microsoft Teams in a hybrid/Azure environment.
• Demonstrate knowledge of security principles designing and implementing robust Active Directory, Azure, O365, email, and third-party security configurations.
• Proven track record of successfully leading and growing Azure-focused technical services teams.
• History of delivering tier 3 and tier 4 support across email, MTA, Microsoft Teams, Active Directory, Azure Entra ID, cloud services (Azure and AWS), identity and access management ecosystems, server deployment, capacity management, and hybrid on-prem AD services including authentication, DFS, GPO, and LDAP with strong expertise in Active Directory.
• Proficient in creating and modifying transport rules, security policies, DMARC, DKIM, and SPF
• Deep exchange knowledge proficiency in managing mailboxes, delegation, shared mailboxes, mail flow rules, SMTP, spam protection implementation, and distribution lists.
• Well-versed in designing and implementing high-availability solutions for uninterrupted email services, Active Directory, Azure, and cloud environments.
• Integrating Identity Access Management (IAM) solutions in cloud environments. AWS, Azure, GCP, and other cloud environments.
• Demonstrated proficiency in security protocols and standards such as SAML, OAuth, OpenID Connect, LDAP, and SCIM.
• Proficiency and knowledge of automation tools and scripting languages (e.g., Python, PowerShell/Automate, Power BI) for automating and managing of Active Directory, Azure, Email, O365, and reporting.
• Proven ability to diagnose and resolve complex Active Directory, Azure, Hybrid environments, O365, Microsoft Teams, and third-party integrations related to user access, synchronization, and security.
• Demonstrated ability to combine strategic governance principles such as Microsoft Cloud Adoption Framework (CAF) and AWS Well-Architected framework with practical implementation to optimize cost, resource management, security, compliance, identity and access controls, and operational excellence.
• Experience with backup, recovery, and replication techniques.
• Background in server performance tuning, optimization, monitoring, and automation.
• Experience in Virtualization and VMWare performance tuning, optimization, monitoring, and automation.
• Familiarity with configuring and implementing cloud databases and environments (e.g., AWS, Azure).
• Familiarity with reporting tools (e.g., Power BI, Entra, O365 Audit and compliance Reports, Device Management).
• Demonstrated ability to define multi-year cloud strategy and roadmaps, balancing innovation, and operational stability.
• Experience with implementing, managing, maintaining, and troubleshooting on-prem and cloud email systems including Mail Transfer Agents.
• Experience with securing Azure and Active Directory resources using role-based access controls, conditional access, and least privilege principles.
• Proven track record of architecting and deploying Active Directory domains, Azure Entra ID, Azure tenant, forests, and trusts, including site design, replication strategies, and security configurations.
• Preferred certifications: Azure Solutions Architect, MS Cybersecurity Architect, AWS Cloud Solutions Architect, MS IAM

Skills and Behaviours

• In addition to providing technical leadership, build and nurture strong partnerships across business, engineering, security, and operations teams, consistently upholding the organization's vision, core values, and business principles.
• Proactively embraces and promotes the company's values and culture, including diversity & inclusion and a healthy and safe work environment
• Analytical problem-solving skills and attention to detail
• Must have excellent organizational, project management, and communication skills.
• Ability to work in a collaborative team environment and communicate complex technical concepts effectively.
• Strong knowledge of IT infrastructure, systems, cybersecurity, and emerging technologies
• Deliver exceptional customer service by combining strong customer focus with initiative-taking communication, responsiveness, and technical expertise.
• Demonstrated understanding of Identity and Access Management concepts, including authentication, authorization, SSO MFA, and federation.
• Must be able to successfully work on multiple projects simultaneously and work under tight deadlines in a results-oriented environment.
• Ability to think creatively and develop solutions quickly in critical environments.
• Leverages collaboration skills to solve problems with global peers across various functions.
• Possess strong verbal & written communication skills in English, with demonstrated experience in effectively speaking to all levels of the organization including executive level, SMEs (Subject Matter Experts), and Principal Technologists.
• In depth understanding of recovering Active Directory, cloud technology, integrated solutions, and infrastructure components in a DR situation.

Please share valid resumes to [email protected]