Contract Microsoft Security Architect

Microsoft Security Architect / Senior Consultant

Armor Defense Inc. is seeking a Microsoft Security Architect / Senior Consultant to lead and deliver advanced consulting engagements across the full Microsoft security ecosystem. This role goes beyond a single product area, requiring deep architectural expertise spanning Microsoft Defender (Endpoint, Cloud, Identity, Office 365, and OT), Microsoft Sentinel, Microsoft Purview (Information Protection, DLP, Data Governance), Microsoft Entra (ID, Permissions Management, Verified ID, Workload Identities), and Conditional Access policy design.

The successful candidate will serve as a trusted advisor to enterprise customers, conducting security assessments, designing end-to-end security architectures, and implementing solutions that address modern threats, data protection requirements, AI readiness, and Zero Trust maturity. This role combines hands-on technical delivery with strategic advisory, pre-sales support, and the development of reusable intellectual property for Armor Defense's Professional Services practice.

This is a contract engagement with flexibility for part-time or full-time commitment, depending on the project pipeline. In addition, based on the project pipeline, the possibility of conversion to a full-time employee also exists. The candidate will work closely with Armor Defense's delivery leadership, account teams, and Microsoft partner ecosystem to drive customer outcomes and expand Armor's consulting footprint.

Consulting, Delivery, and Architecture

• Lead and execute billable consulting engagements focused on the full Microsoft security stack, helping enterprise customers modernize their security posture and address emerging challenges, including AI governance, Zero Trust adoption, and hybrid/ multi-cloud protection.
• Conduct comprehensive security assessments across customer environments, evaluating their deployment of Defender, Sentinel, Purview, Entra, and Conditional Access, and deliver prioritized improvement roadmaps.
• Design and implement security architectures that integrate Microsoft Defender for Endpoint, Defender for Cloud, Defender for Identity, Defender for Office 365, and Defender for IoT/OT into unified detection and response frameworks.
• Architect and deploy Microsoft Sentinel environments, including data connector configuration, analytics rule development, automation playbooks (SOAR), workbook creation, and threat hunting queries (KQL).
• Design and implement Microsoft Purview Information Protection and DLP strategies, including sensitivity labeling, auto-labeling policies, trainable classifiers, exact data match (EDM), and endpoint DLP across Microsoft 365, Azure, and on-premises environments.
• Architect Microsoft Entra solutions, including Conditional Access policy frameworks, Identity Governance (access reviews, entitlement management, lifecycle workflows), Permissions Management for multi-cloud environments, and Workload Identity federation.
• Design Conditional Access policies aligned to Zero Trust principles, incorporating device compliance, risk-based authentication, session controls, and integration with Defender for Cloud Apps (MCAS) for real-time enforcement.
• Review existing customer implementations across the Microsoft security stack and recommend improvements to maximize the value of security investments while reducing risk.

Scoping and Engagement Definition

• Support the development of Statements of Work (SOWs) and scoping documents by providing technical input on the level of effort, solution approach, and deliverables across the Microsoft security portfolio.
• Collaborate with Armor Defense's account and delivery teams to define engagement scope, success criteria, and resource requirements for new consulting projects.

Required skills:

• 4+ years of experience in cybersecurity, security engineering, sales engineering, or solution consulting, with a strong focus on Microsoft security technologies.
• 2+ years of hands-on experience with Microsoft security solutions, including Microsoft Defender (full stack), Microsoft Sentinel, Microsoft Purview, Microsoft Entra, and Conditional Access.
• 1+ years of customer-facing experience in a delivery, pre-sales, or consulting capacity.
• Demonstrated expertise in endpoint, on-premises, and cloud security concepts, features, and reference architectures across the Microsoft platform.
• Specific deep expertise in at least three of the following: Microsoft Sentinel (SIEM/ SOAR), the full Defender stack (including Defender for Cloud and OT), Microsoft Purview (Information Protection, DLP, Data Governance), Microsoft Entra (Identity Governance, Permissions Management), and Conditional Access policy design.
• Experience leading and delivering consulting engagements with high-quality outcomes delivered on time and within budget.
• Proven ability to develop technical and conceptual reference architectures for enterprise security environments.
• Strong ability to correlate and communicate security gaps with their respective business risks to executive stakeholders.
• Broad security expertise with a deep understanding of security principles, risk management, compliance frameworks, and Zero Trust architecture.
• Excellent written and verbal communication skills in English, with senior-level presentation and stakeholder engagement capabilities.
• Strong problem-solving skills and the ability to work independently and as part of distributed teams.
• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related discipline (or equivalent professional experience).

Preferred:

• Relevant Microsoft Security certifications: SC-200 (Security Operations Analyst), SC-300 (Identity and Access Administrator), SC-400 (Information Protection Administrator), AZ-500 (Azure Security Engineer), or MS-500.
• Experience with Microsoft Copilot for Security and understanding of AI-driven security operations.
• Familiarity with Azure Information Protection (AIP) scanner, Microsoft Purview Data Governance (data cataloging, data map, lineage), and compliance portal capabilities.
• Experience designing Conditional Access frameworks that integrate with Intune device compliance, Microsoft Defender for Cloud Apps, and risk-based authentication via Entra ID Protection.
• Exposure to non-Microsoft security platforms (AWS Security Hub, GCP Security Command Center) for multi-cloud advisory engagements.
• Experience with data governance frameworks such as DAMA-DMBOK and data protection regulations (GDPR, CCPA, HIPAA, PCI DSS, or regional equivalents).
• Understanding of AI/ML data pipelines and the security and governance prerequisites for responsible AI deployment.
• Prior experience in large-scale enterprise environments spanning financial services, healthcare, aviation, energy, telecommunications, or government.
• Experience managing consulting engagements from the provider side, including SOW development, scope management, SLA delivery, and client relationship management.
• CISSP, CISM, or other recognized industry security certifications

Why Armor

Join Armor if you want to be part of a company that is redefining cybersecurity. Here, you will have the opportunity to shape the future, disrupt the status quo, and be a part of a team that celebrates energy, passion, and fresh thinking. We are not looking for someone who simply fills a role – we want talent who will help us write the next chapter of our growth story.

Armor Core Values:

• Commitment to Growth: A growth mindset that encourages continuous learning and improvement with adaptability in the face of challenges.
• Integrity Always: Sustain trust through transparency + honesty in all actions and interactions regardless of circumstances.
• Empathy In Action: Active understanding, compassion, and support for the needs of others through genuine connection.
• Immediate Impact: Taking initiative with swift, informed actions to deliver positive outcomes.
• Follow-Through: Dedication to delivering finished results with attention to quality and detail to achieve the desired outcomes.

Work Environment

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. The noise level in the work environment is usually low to moderate. The work environment can be either in an office setting or remotely from anywhere.

Equal opportunity employer - it is the policy of the company to comply with all employment laws and to afford equal employment opportunity to individuals in all aspects of employment, including in selection for job opportunities, without regard to race, color, religion, sex, national origin, age, disability, genetic information, veteran status, or any other consideration protected by federal, state or local laws.