Microsoft 365 & Messaging Infrastructure Architect

Sagility is a tech-enabled BPM services provider, a thought partner providing a broad spectrum of transformational services, to enable our clients provide efficient and hi-quality care across the healthcare system. SagilityTM combines industry-leading technology and transformation-driven BPM services with decades of healthcare domain expertise to help clients draw closer to their members. We optimize the entire member/patient experience through service offerings for clinical, case management, member engagement, provider solutions, payment integrity, claims cost containment, and analytics.

Leading industry analyst firms have consistently cited our service excellence, breadth of offerings, and ability to execute. The most recent being recognized as a leader for Healthcare Payer Operations in 2022 as a part The Healthcare Payer Operations PEAK Matrix Assessment report by Everest Group. To learn more about our recognitions please visit our AWARDS SECTION

We have 48,000+ employees in 15 cities across 5 countries – India, Philippines, USA, Jamaica, and Colombia.

Objectives and Responsibilities of the Senior Microsoft 365 & Messaging Infrastructure Architect

We are seeking a highly experienced Senior Microsoft 365 & Messaging Infrastructure Architect responsible for enterprise-wide Microsoft 365 operations, identity lifecycle management, email security, SSO integrations, and hybrid infrastructure governance. The role demands deep technical expertise across M365, Email Gateway, SSO, DNS, Certificates, and Security platforms.

Primary Technology Stack

Microsoft 365 / Office 365 Infrastructure

• Enterprise administration of Microsoft 365
• Identity lifecycle: ID creation / deletion / modifications
• License management & optimization
• Mailbox restoration & recovery
• DL & Security group administration
• Exchange Online health monitoring & log analysis via Exchange Online
• Transport rules as per business requirements
• Litigation hold, retention, archiving & deletion policies
• Monthly audit reporting (OWA, ActiveSync, POP, IMAP enabled mailboxes)
• Email migrations (On-prem Cloud)

SharePoint, OneDrive & Teams

• Administration of SharePoint Online & OneDrive
• Site & portal creation and governance
• Retention & compliance policies
• Administration of Microsoft Teams (Teams governance, policies, integrations)
• Live Townhall / Board meetings (Webcast management)

Identity & Access Management (IAM)

• Enterprise administration of Microsoft Entra ID
• Conditional Access policy design & enforcement
• Azure AD Connect configuration & sync health management
• Directory Sync server management
• Federation & protocol integration (SAML 2.0, WS-Fed, OpenID)
• SSO, MFA, and SSPR governance
• Domain & identity reconsolidation programs
• Application SSO integration (SaaS-based apps)

Security, Compliance & Data Protection

• Administration of Azure Information Protection & RMS
• Unified Labeling Client deployment & governance
• MDM management via Microsoft Intune
• Mobile Device Management (iOS & Android)
• Office 365 Audit log & alert monitoring
• Security rule creation & access restriction frameworks
• Endpoint DLP & CASB integration
• Certificate Authority & certificate deployment for application servers

Email Gateway & Threat Protection

• Management of Mimecast Email Security
• Malware, phishing, spoofing & zero-day protection (ATP)
• SMTP relay (On-Prem & Cloud)
• Email DLP rule configuration per business process
• Email restriction & policy governance
• SPF, MX, DKIM, A, and CNAME record management

Infrastructure & Supporting Platforms

• AD server patch management
• Federation server management
• Certificate Authority server management
• DNS management via Amazon Route 53
• SFTP Server administration
• ManageEngine tools:
• ManageEngine ADAudit Plus
• ManageEngine ADManager Plus
• ManageEngine M365 Manager Plus
• CASB platform administration

Collaboration & Communication Tools

• Integration and governance of:
• Cisco Webex
• Zoom
• TEAMS
• Microsoft Teams Rooms (MTR) integration with Telepresence
• Executive live webcast & townhall event technology management

Key Responsibilities

• Own end-to-end M365 tenant health & security posture
• Define governance model for Identity & Collaboration
• Perform compliance & audit readiness activities
• Lead migrations, domain consolidation & modernization initiatives
• Optimize licensing & cost management
• Monitor zero-day threats & email attack surface
• Maintain 99.9%+ service availability
• Provide monthly executive reports (security, mailbox usage, protocol exposure)

Qualification:

• Degree in Computer Science, Engineering, or a related field.
• years ofMicrosoft365 architecture experience
• High expertise with Microsoft Azure.
• Expertise in windows PowerShell scripting
• Expert in Conditional access, App protection, and Defender cloud app Security,
• Advance knowledge of Microsoft Graph API, Power app, and automation
• Experience with Intune Endpoint Management for iOS |Windows
• Senior Microsoft Azure Certification
• Enterprise administrator expert MS101
• Microsoft365 MS102 Administrator
• Expert knowledge of Microsoft graph API, Power app, and automation